Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/OTzIt9LccKJ9QPpFnk5WwAXMxjo.mft
File: OTzIt9LccKJ9QPpFnk5WwAXMxjo.mft (raw, json)
Hash identifier: q+I17Z1Ae07yoTeqexarqBC+tp3+lJMugkAoEKUSKQk=
Subject key identifier: 5C:EC:34:CE:DB:40:D0:1D:8E:0F:B1:8B:BC:91:37:2D:4A:42:C9:1E
Authority key identifier: 39:3C:C8:B7:D2:DC:70:A2:7D:40:FA:45:9E:4E:56:C0:05:CC:C6:3A
Certificate issuer: /CN=393cc8b7d2dc70a27d40fa459e4e56c005ccc63a
Certificate serial: 019368584D1831137F2B3DD38CA2FD9C0E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTzIt9LccKJ9QPpFnk5WwAXMxjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/OTzIt9LccKJ9QPpFnk5WwAXMxjo.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 12:00:37 +0000
Manifest this update: Tue 26 Nov 2024 12:00:37 +0000
Manifest next update: Wed 27 Nov 2024 12:00:37 +0000
Files and hashes: 1: HVjfY1r3U8S8K0J_OGYPyWZcT-s.roa (hash: 2x05a6vJIHVK5o76xiDLo8EmT+rNsKBIS+mU7PCleFE=)
2: OTzIt9LccKJ9QPpFnk5WwAXMxjo.crl (hash: bAYIq6Lr5onserrVSF1uqYKe834ZG/Kwge5pEEMjSzw=)
3: vSinTsDMoDn1k0fgANWbx5R-osw.roa (hash: hbbFcnj2E5Y7indy98SO69Ke26KwMap2QKuldcJu4z8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/OTzIt9LccKJ9QPpFnk5WwAXMxjo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/OTzIt9LccKJ9QPpFnk5WwAXMxjo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTzIt9LccKJ9QPpFnk5WwAXMxjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:58:4d:18:31:13:7f:2b:3d:d3:8c:a2:fd:9c:0e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=393cc8b7d2dc70a27d40fa459e4e56c005ccc63a
Validity
Not Before: Nov 26 12:00:37 2024 GMT
Not After : Nov 27 12:00:37 2024 GMT
Subject: CN=5cec34cedb40d01d8e0fb18bbc91372d4a42c91e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:18:3e:53:7c:61:0b:fe:a7:5e:c8:53:60:27:
d6:e4:b0:7c:ea:4c:09:de:dc:ad:78:6b:64:10:45:
5c:94:4a:d7:17:57:92:5d:21:4f:8a:3e:e5:b3:f0:
d8:c5:fe:5e:33:35:4f:6e:75:03:77:49:6e:78:2b:
21:75:76:85:64:60:f9:ca:b1:83:b7:f2:58:a5:8d:
03:f2:a2:c5:54:5b:7b:7b:1a:4b:40:81:f6:99:d8:
6f:e8:e5:c1:d7:d7:ee:ce:bc:ec:7b:be:54:b8:cb:
0e:04:d2:10:87:5d:f3:d4:4f:97:fc:a7:0c:05:bc:
63:58:90:db:fc:77:e8:b7:01:36:52:f9:84:9d:fc:
7b:68:97:97:1f:2b:56:c8:68:5a:b8:1f:ba:84:89:
3d:b3:78:4e:69:43:6a:49:0c:37:e9:88:23:0f:2d:
cc:b0:56:40:e5:f5:36:fd:8d:0c:8c:aa:96:53:fe:
06:e8:69:46:d4:d5:8e:b3:c6:40:5b:36:0a:b5:f8:
11:6e:52:29:8f:53:c3:76:52:14:4a:a1:e4:8c:ba:
e5:82:46:92:ab:dd:55:13:3f:20:4f:70:cc:25:69:
de:e4:e6:ab:b3:f0:20:70:d3:c7:c8:38:00:ca:54:
2c:82:dc:69:3d:a1:a8:88:22:28:24:43:39:42:9c:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:EC:34:CE:DB:40:D0:1D:8E:0F:B1:8B:BC:91:37:2D:4A:42:C9:1E
X509v3 Authority Key Identifier:
keyid:39:3C:C8:B7:D2:DC:70:A2:7D:40:FA:45:9E:4E:56:C0:05:CC:C6:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTzIt9LccKJ9QPpFnk5WwAXMxjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/OTzIt9LccKJ9QPpFnk5WwAXMxjo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/OTzIt9LccKJ9QPpFnk5WwAXMxjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:d3:4d:27:9d:33:f9:7e:21:d4:f2:80:5e:8b:7d:9e:66:87:
b9:a0:86:8f:14:f1:57:02:26:7d:ab:e2:e2:4a:ad:95:eb:77:
13:9d:88:c6:18:ad:20:9c:46:95:cc:ff:4c:32:f8:97:01:fc:
7d:fe:a2:3a:df:5e:f8:d1:90:93:11:1e:3e:1a:01:ef:9a:de:
3f:c2:b7:b1:c2:9b:2d:81:2f:bf:01:af:19:f7:5c:bd:eb:83:
da:57:ef:cd:a3:8f:24:44:22:66:f1:b4:ee:7e:64:eb:5f:31:
23:b8:18:31:c8:89:d8:a9:cd:78:b8:f9:17:40:fa:a5:03:d5:
29:fe:8c:82:2f:7a:77:5e:1a:40:2b:25:f0:05:09:99:f2:1b:
96:f5:5b:fb:3e:07:ad:b1:57:81:17:64:91:8a:35:48:ba:6b:
2c:12:dc:0a:26:42:3b:fe:af:d3:07:9d:09:08:c9:0c:32:83:
7c:ea:fe:7a:3a:5c:29:02:ad:c1:15:48:81:67:3e:75:2c:ac:
59:41:61:f8:2f:df:35:ef:5f:a2:07:06:6e:7b:da:39:cf:05:
90:d9:f8:3b:00:c1:ba:1d:60:32:32:16:80:85:0e:cb:39:bf:
d5:b1:fb:63:57:f8:d5:08:ff:21:bd:4c:a3:b7:6a:18:4a:9f:
7a:55:89:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 17:35:31 2024 by rpki-client on console-fra.rpki-client.org