Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
File: D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json)
Hash identifier: qrniI4alCiQ51HIP1u75vC+5ZmZmaRfrc/2HqhNucFQ=
Subject key identifier: 10:8D:33:2E:3E:7A:1B:A0:6B:61:40:31:E7:5C:82:7E:21:AD:55:BB
Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Certificate serial: 019406EA9D2AE43D9DB23F147B683D9946F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
Manifest number: 025B
Signing time: Fri 27 Dec 2024 07:00:26 +0000
Manifest this update: Fri 27 Dec 2024 07:00:26 +0000
Manifest next update: Sat 28 Dec 2024 07:00:26 +0000
Files and hashes: 1: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: iP7XDEmGpN5vbZuZf8SXzB1CqjE6uXxps1a1yQeOPTc=)
2: esxcU4tAq5ae85DzY22MVJMLovY.roa (hash: sNpZmcNQ+S3KbbB+0RafSl8FpcJ1EwfwB/oUrqsihns=)
3: rbOAF9-_bLgdSF_MfAX0y_l7e30.roa (hash: lb8JqwxQc2+Z/cl3nd42Gaa8kLo1mbBI34PCJ/ayolw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:ea:9d:2a:e4:3d:9d:b2:3f:14:7b:68:3d:99:46:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Validity
Not Before: Dec 27 07:00:26 2024 GMT
Not After : Dec 28 07:00:26 2024 GMT
Subject: CN=108d332e3e7a1ba06b614031e75c827e21ad55bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:08:e2:f4:9b:8e:a2:3d:4a:b6:f4:07:34:62:
80:28:89:9f:c5:72:bb:03:4b:c1:c9:1d:de:ae:ec:
24:35:e6:bb:53:1c:08:e9:c0:c2:4c:53:c5:3d:35:
e4:92:7a:8f:70:4c:01:7d:96:f2:7e:5e:87:f6:bc:
c0:19:05:e0:02:78:c5:f4:e5:9e:50:1b:16:ab:8c:
1f:a8:3e:85:a0:bf:99:c9:99:1b:14:e2:62:fc:a6:
38:bc:91:1e:0d:70:63:e3:1f:e8:37:e0:50:00:de:
7b:66:b8:a3:22:30:e1:39:13:a3:78:03:de:96:f7:
f2:55:29:62:60:47:e8:b0:20:44:37:94:78:a0:26:
49:a5:7c:ec:f7:73:4a:b0:83:27:86:9e:98:34:54:
d0:e4:ed:17:0a:95:37:29:6a:f6:bb:f4:15:fc:d6:
4b:d2:17:19:97:9d:b2:50:54:76:5f:96:19:27:43:
da:d7:3d:63:23:53:61:e8:db:d8:d9:21:5b:fe:5c:
0d:d9:81:a6:37:b7:b4:e4:bd:6b:16:73:48:2d:d7:
5b:7a:67:d4:06:69:63:0b:1e:13:f8:83:02:0c:ef:
b7:67:0a:5d:d8:10:f4:3d:6d:9f:f2:5c:8a:ba:b7:
ae:5e:21:c5:c4:d2:5a:16:c0:18:7d:f5:a2:f7:e7:
8d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8D:33:2E:3E:7A:1B:A0:6B:61:40:31:E7:5C:82:7E:21:AD:55:BB
X509v3 Authority Key Identifier:
keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:c0:92:fa:4f:2e:56:cd:ef:67:7c:2c:02:3f:2f:ef:0f:96:
fb:5f:6c:35:24:30:e7:37:5a:36:71:4e:aa:2b:b2:ae:67:da:
8c:36:8f:c1:bf:cd:25:29:1e:0f:93:b9:62:87:6c:b4:c5:d6:
a2:49:19:98:31:30:df:f6:04:f3:f9:9b:0c:49:41:ae:ac:70:
6c:5e:5a:4d:c6:63:85:d2:63:2f:8e:1d:e5:72:55:6e:62:39:
21:73:6a:fb:e8:33:d9:26:bd:da:4c:a9:13:39:49:ca:73:7a:
20:1d:65:8f:9a:eb:52:9c:52:cc:cb:55:09:1f:4c:8c:48:d4:
81:45:5e:97:71:52:b1:e3:b9:d2:77:cb:ee:31:aa:4b:52:90:
65:9f:f7:5a:3b:1e:ab:b2:0b:fa:e8:90:73:87:5f:fd:14:ca:
29:46:26:df:dd:8b:4c:22:93:c8:b8:75:47:c2:f4:e9:a5:d1:
f6:62:db:18:d2:cf:f0:b1:d5:57:de:55:a2:65:42:06:1d:eb:
cf:85:ce:26:57:aa:1d:5a:09:63:dd:d2:34:f5:b6:0d:f7:a9:
d3:23:37:45:9e:48:30:74:2d:14:b6:60:52:ff:64:3d:f1:d3:
7b:9a:2c:8e:f6:b9:07:f1:bb:46:7a:2a:72:28:95:1d:60:13:
eb:25:06:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 09:38:22 2024 by rpki-client on console-ams.rpki-client.org