Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
File: IZUnwiTwCiiy9MtOExLXSNXKUWk.mft (raw, json)
Hash identifier: Okl9T0MFj9zI1zuksePMtdoEtsNjwQyjPSSSKRwzGA4=
Subject key identifier: F8:98:22:F9:A7:97:C0:D7:53:BE:83:4F:1A:D4:26:53:7F:87:E2:7F
Authority key identifier: 21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
Certificate issuer: /CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Certificate serial: 019368C619755D70C32C186E1E1644CA21CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
Manifest number: 1378
Signing time: Tue 26 Nov 2024 14:00:33 +0000
Manifest this update: Tue 26 Nov 2024 14:00:33 +0000
Manifest next update: Wed 27 Nov 2024 14:00:33 +0000
Files and hashes: 1: AZAWI7Jm47jMnUaUcaPRfCagUas.roa (hash: geacct04dXn/RmslkR2/z9rdBGicSaFYFRLYjMo34CM=)
2: IZUnwiTwCiiy9MtOExLXSNXKUWk.crl (hash: sp3hIEgovfhycMLlTPOY2CKydvKq5zEdZdlI/er4LWU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:c6:19:75:5d:70:c3:2c:18:6e:1e:16:44:ca:21:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Validity
Not Before: Nov 26 14:00:33 2024 GMT
Not After : Nov 27 14:00:33 2024 GMT
Subject: CN=f89822f9a797c0d753be834f1ad426537f87e27f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d2:4c:18:6f:d2:21:d8:d9:3e:60:c1:5c:da:
39:35:29:50:5a:ea:cf:c3:90:01:b8:bd:55:33:63:
bb:a8:32:9a:06:43:d8:f7:8d:e1:0a:68:22:b7:d0:
ec:5d:64:e1:d4:e1:74:d6:55:a0:09:ca:51:77:34:
8e:93:82:54:04:1a:23:cd:12:6e:73:6c:b8:ee:e1:
9a:48:cd:c3:23:98:a5:1b:dd:18:fd:f1:dd:69:1f:
f8:aa:20:05:73:85:37:ab:90:0a:2b:20:17:14:48:
c0:93:f2:bd:88:2d:1e:04:9d:17:f9:32:6a:dd:6a:
42:5c:9e:16:14:5d:d4:9a:d9:aa:6d:fb:73:4b:23:
3f:e3:2a:7e:21:53:db:22:3f:3e:d4:6c:8c:03:d4:
41:68:ea:0d:9a:b2:16:5d:b2:e3:ac:2b:66:ba:c6:
ad:08:c8:ae:30:88:1c:b8:b1:8b:17:95:8e:df:33:
43:da:f7:25:45:2a:d9:7f:b1:2d:e2:86:d8:9a:e7:
0a:c7:ba:a4:35:79:ee:f6:b6:3f:4c:30:32:51:d9:
31:40:8b:ac:1a:da:91:db:88:3d:ad:7a:7a:d2:89:
8f:01:a9:c5:94:5a:44:25:79:24:c0:85:fe:90:78:
36:83:fa:56:42:6b:d0:39:f2:e8:9d:90:28:07:e8:
52:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:98:22:F9:A7:97:C0:D7:53:BE:83:4F:1A:D4:26:53:7F:87:E2:7F
X509v3 Authority Key Identifier:
keyid:21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:2b:2c:c5:19:a8:6a:6c:d5:f4:2d:72:2d:05:0b:ef:f7:45:
78:5e:ad:43:03:0b:1c:34:8b:81:70:9d:1c:c8:bb:13:07:3b:
f6:96:fa:2d:76:c3:43:50:74:a1:6a:c3:a3:b3:0a:53:52:4d:
ab:03:86:70:47:c3:5b:7f:d9:4e:10:06:68:91:ce:d5:49:a6:
ef:fd:f3:bb:8e:53:79:3c:81:bd:b1:f7:e5:66:15:ff:a0:f5:
0d:f0:ea:50:f1:b1:7f:e9:e1:56:c8:74:aa:71:24:7b:b9:c3:
f9:76:d9:38:e4:2e:71:21:ed:52:8c:8d:fc:34:ec:88:1c:89:
cf:af:a2:05:aa:52:81:94:f4:65:b8:6a:b9:fe:7b:ea:57:de:
c3:a6:6d:d0:d6:a2:6a:27:bc:b6:fd:c6:b0:6c:02:f6:9e:a0:
b0:73:9f:1d:44:f3:dc:23:47:c7:f3:7f:be:07:bc:48:46:74:
4b:fc:f1:ac:c9:02:3b:77:9e:c3:a5:58:ec:53:6f:a6:c5:a2:
81:71:80:9b:1e:3f:b5:eb:b4:68:68:e9:f5:c3:28:e6:ba:17:
e9:42:53:16:30:47:04:94:ab:8e:3b:f0:10:9f:bf:90:20:3a:
39:69:92:ec:32:74:eb:1c:58:89:25:be:32:bc:8f:f8:db:6c:
a8:0e:67:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 17:39:08 2024 by rpki-client on console-ams.rpki-client.org