Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
File: D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json)
Hash identifier: Llge7G2mfRLekAPMAFLyi5HoG+yuA1myRGcO6dRyLZQ=
Subject key identifier: 23:4F:A5:5D:A8:6E:D0:61:7C:BF:2F:EB:DF:8A:7F:E2:B6:2C:C5:CD
Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Certificate serial: 0191FA1055005E9BC2D4311992BB64CF1B3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
Manifest number: 014B
Signing time: Mon 16 Sep 2024 09:00:59 +0000
Manifest this update: Mon 16 Sep 2024 09:00:59 +0000
Manifest next update: Tue 17 Sep 2024 09:00:59 +0000
Files and hashes: 1: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: xhJhSV8KXTM82hYaArUB/HqdqUkV5jNZb6LQRMxisbM=)
2: rbOAF9-_bLgdSF_MfAX0y_l7e30.roa (hash: lb8JqwxQc2+Z/cl3nd42Gaa8kLo1mbBI34PCJ/ayolw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 09:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:10:55:00:5e:9b:c2:d4:31:19:92:bb:64:cf:1b:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Validity
Not Before: Sep 16 09:00:59 2024 GMT
Not After : Sep 17 09:00:59 2024 GMT
Subject: CN=234fa55da86ed0617cbf2febdf8a7fe2b62cc5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5c:1b:37:73:dd:12:5d:fd:ff:ac:2b:77:b1:
7c:ec:bc:9e:61:37:c7:ab:87:3a:26:3a:fe:fa:80:
33:83:68:34:1d:2c:b5:83:bf:15:33:14:b4:95:6f:
0c:7a:51:0b:47:44:d2:13:72:7c:21:16:41:23:9b:
8d:2e:03:ee:c8:ba:09:24:05:01:31:5f:3b:44:74:
41:54:e4:e2:48:f7:d7:54:d2:a2:ea:67:48:4c:09:
65:86:24:c7:d6:2e:aa:d0:eb:10:04:ab:f4:c6:fa:
01:f3:82:87:57:57:10:26:60:ee:83:35:c6:50:f9:
f5:f4:4e:d6:dd:7c:3e:9a:63:1e:19:7c:86:53:0b:
ac:a8:38:60:ef:05:cb:17:13:2d:fa:27:c5:70:27:
9e:0c:e1:81:1e:b3:c0:2a:00:56:9b:b5:5c:10:29:
17:a2:ae:1a:df:c5:90:a4:d6:31:41:53:da:27:fb:
4f:64:d4:63:78:cd:2f:bd:5e:95:48:2e:cb:27:06:
ba:6e:d6:eb:c7:97:ea:d6:99:b9:2b:ee:d6:07:98:
e6:11:14:9e:4f:74:34:5a:bd:32:92:c8:63:8d:6e:
76:e0:7d:b9:b3:50:c3:4d:92:7a:ee:5c:d9:8a:f3:
fb:cb:3f:b5:a0:ab:df:cf:c0:f0:59:db:9d:72:06:
98:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4F:A5:5D:A8:6E:D0:61:7C:BF:2F:EB:DF:8A:7F:E2:B6:2C:C5:CD
X509v3 Authority Key Identifier:
keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:7a:18:6d:9f:f9:8d:72:65:f4:96:36:b4:20:6b:84:a0:ad:
ef:02:f9:af:3b:42:9a:2a:53:23:d9:4a:44:fa:ff:4e:d0:00:
79:f1:c2:1a:93:07:7b:44:40:3a:65:cc:61:bb:83:5b:c2:49:
2a:90:84:cd:66:a2:ef:13:1d:e0:ca:df:ab:fd:a6:53:3f:f3:
a9:52:b4:3f:86:94:99:a0:50:2d:a0:f8:dc:08:8c:5c:7a:b5:
ab:09:9a:29:5a:27:86:ce:06:42:14:48:4b:3a:14:c4:90:67:
a7:2e:7a:2f:11:98:7b:1e:aa:7d:96:8a:e0:66:40:63:fd:2c:
f8:e0:aa:a4:0f:cd:dd:cb:33:2c:81:38:06:c5:dd:6d:b5:c7:
6a:aa:29:40:7a:c9:ed:ab:a4:df:7b:0d:d2:9d:3d:8d:50:8c:
ee:5b:60:d5:d6:12:5f:e3:db:17:99:4e:e9:99:70:32:0a:f0:
a0:a7:20:41:b4:02:d6:60:49:67:d3:df:a0:43:3f:40:d7:26:
8e:c5:cb:01:1d:86:e5:61:89:1c:fd:a8:1c:5d:eb:22:a3:4e:
5f:f4:a4:55:9b:b6:51:0f:91:1d:00:fd:aa:07:ca:92:78:a1:
48:8d:f6:8f:0b:d4:56:be:36:b8:a5:ca:97:25:d8:43:4b:25:
9e:42:b9:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:08:47 2024 by rpki-client on console-ams.rpki-client.org