Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json)
Hash identifier: nMccK37hbu/EcJcy4X4awOy5/KX1owShNeTRSPTJtDM=
Subject key identifier: E8:5C:AA:3B:17:BF:24:3E:42:28:AA:2E:85:25:F5:15:AB:0F:FB:1B
Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138
Certificate serial: 019354D14592B92B98E9B13C286A7BB21DA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
Manifest number: 0175
Signing time: Fri 22 Nov 2024 17:00:21 +0000
Manifest this update: Fri 22 Nov 2024 17:00:21 +0000
Manifest next update: Sat 23 Nov 2024 17:00:21 +0000
Files and hashes: 1: WFlDfDZRhOzLZVY7Dy6Bb4po6WQ.roa (hash: OIvuaI8Sl9ejGKJepuJjP2n+VtNwdCnsMsdmJ+0i1ZM=)
2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: kOqYMwdC+tBAjsFfwsUiVOLJySJdUOCrJ8nwwT6NYxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:d1:45:92:b9:2b:98:e9:b1:3c:28:6a:7b:b2:1d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a041670001660a3720b77d764d836852190138
Validity
Not Before: Nov 22 17:00:21 2024 GMT
Not After : Nov 23 17:00:21 2024 GMT
Subject: CN=e85caa3b17bf243e4228aa2e8525f515ab0ffb1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:21:46:e1:c6:e6:f9:22:91:24:41:b7:8c:
b1:32:01:25:95:fb:30:b6:71:c1:67:d1:32:86:1e:
79:a6:6e:40:a8:e0:6c:4b:e5:53:4a:70:4e:47:ed:
06:88:af:38:e1:de:06:e8:3c:dd:f1:6b:97:ed:1d:
26:b8:07:88:45:ba:44:78:0e:db:2f:a8:fc:23:57:
57:da:d2:fe:6b:2c:0f:9e:ed:b4:ea:27:b0:74:08:
51:60:be:2c:bc:ba:26:1b:3d:56:c1:6c:60:2d:21:
ec:2e:90:3d:7a:a9:36:eb:ee:ec:57:08:37:ef:c2:
ab:eb:fb:c4:3d:d6:ef:c9:6a:31:bc:d0:c8:61:a3:
b9:16:9b:8b:0b:1a:32:88:0a:1a:b0:1c:bf:ee:9e:
4a:07:66:3c:e0:8f:91:01:f4:05:4a:9d:79:f0:f1:
ec:f4:93:df:a3:ad:85:8d:e2:d5:96:fc:4b:ae:ed:
a9:92:2b:8a:e5:13:de:f3:a1:ed:c8:4b:08:74:8d:
81:4f:60:9f:c1:c9:ce:1f:ee:70:53:8c:64:a7:38:
18:3f:a8:55:21:93:a2:eb:6a:7b:76:50:98:77:74:
f1:f6:ba:40:68:8e:7b:41:c9:26:04:2f:36:4c:7f:
11:c9:32:eb:36:d9:54:da:2a:44:1f:57:a3:2e:ca:
e6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5C:AA:3B:17:BF:24:3E:42:28:AA:2E:85:25:F5:15:AB:0F:FB:1B
X509v3 Authority Key Identifier:
keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:3f:ee:93:75:23:73:8f:5c:41:4b:61:ec:a5:b7:8e:97:7d:
81:c9:93:d5:25:ff:37:41:09:ef:ad:e4:ef:04:c0:c0:e0:8c:
1e:cd:0d:a4:c0:c1:b3:1d:9e:28:83:6d:21:a0:3a:f2:9b:de:
38:95:34:0b:ab:af:78:60:93:63:29:62:56:2f:8a:73:60:8a:
a2:3c:22:75:7a:0e:28:2f:f5:15:60:9b:32:a0:9a:0d:2d:50:
d5:0e:a9:43:0d:fe:35:9a:e5:c1:40:b9:cf:23:2d:5e:a6:b7:
1a:47:03:67:a7:e7:1a:8d:57:40:d5:a6:26:5d:19:8a:9e:34:
ea:c2:7e:df:78:9a:11:07:7a:d6:20:95:77:8e:c6:73:e8:39:
24:71:54:15:28:72:17:fc:2e:ea:7a:d4:06:45:50:13:37:46:
64:c6:cb:f7:2b:0c:0e:20:17:64:55:07:2f:ad:f7:e8:a8:09:
e9:92:92:20:e4:0b:02:c7:dc:56:1f:8b:1b:6f:b6:d6:28:a6:
10:4e:63:54:5a:da:a0:d6:e7:91:15:64:73:5a:05:b1:c8:a5:
ba:85:9f:49:98:e1:42:d7:c1:7c:59:87:a4:f3:24:1c:4b:26:
56:73:84:4a:1d:54:9f:3e:8a:2b:fd:e9:99:00:16:42:67:3a:
17:d6:9a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:01:51 2024 by rpki-client on console-fra.rpki-client.org