Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json)
Hash identifier: E0Yre9tb6vhIWXS9px/taU9JnapLYCNJauPsHZGjyYY=
Subject key identifier: F7:F8:E8:97:31:A6:D0:E7:30:A9:F7:5D:F3:F8:F2:D9:4B:F9:06:41
Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c
Certificate serial: 01935689CCE7B77C40A7BC755DC4124ED7FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
Manifest number: 11BA
Signing time: Sat 23 Nov 2024 01:01:31 +0000
Manifest this update: Sat 23 Nov 2024 01:01:31 +0000
Manifest next update: Sun 24 Nov 2024 01:01:31 +0000
Files and hashes: 1: _9J8B85rfLQf89br2WOu4yPWFHI.roa (hash: pmBio6M6PmjY6HE0emFwiWb4/d8aZ7o7ngU4OMHUOh8=)
2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: 9+cqiH0R/8CGyd5B9fRfxuuxT3tRI6eM2eNRAsUJajc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:cc:e7:b7:7c:40:a7:bc:75:5d:c4:12:4e:d7:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c
Validity
Not Before: Nov 23 01:01:31 2024 GMT
Not After : Nov 24 01:01:31 2024 GMT
Subject: CN=f7f8e89731a6d0e730a9f75df3f8f2d94bf90641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7a:3f:dd:63:07:c5:14:b6:d3:ed:b2:f2:c7:
36:12:94:ea:6a:6b:21:81:4e:7f:80:e2:a5:2c:93:
34:45:5e:ef:a9:84:6b:96:d9:b0:3c:94:05:fc:19:
f7:d2:fa:c7:e8:42:ed:71:c2:22:39:35:4f:95:c3:
10:ef:9b:5a:d5:0c:f1:d9:ae:38:fa:fb:6a:9a:65:
e2:e5:4f:80:eb:0d:d4:d8:59:89:0a:34:91:56:89:
93:e3:72:9e:a7:5c:66:d0:76:cc:59:a7:da:21:6c:
26:27:4b:f4:6a:bd:c9:02:b2:d6:9c:d6:e7:87:ac:
35:89:55:b1:59:f9:3e:64:7d:72:c0:7f:7d:08:dc:
52:dc:0c:c6:c3:24:d6:2d:51:e4:b9:7d:27:91:09:
90:06:64:bb:2c:4a:27:32:04:b5:41:bc:15:9c:44:
e2:79:f2:84:de:f4:11:8c:9f:4a:a0:6d:d0:e1:51:
d7:76:85:42:57:94:c4:39:e8:42:55:aa:7d:4e:d2:
23:7a:d9:47:39:ad:01:4c:6c:aa:e7:9a:41:11:f0:
ae:f7:dc:83:e3:55:a6:ff:5e:4c:21:91:aa:dd:fc:
3a:b0:45:e1:73:1a:e3:1e:25:1b:3e:f2:f2:4f:a1:
9c:85:c7:aa:84:67:1a:52:4a:a0:42:a9:b7:dc:33:
7b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F8:E8:97:31:A6:D0:E7:30:A9:F7:5D:F3:F8:F2:D9:4B:F9:06:41
X509v3 Authority Key Identifier:
keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:fd:b1:90:56:7f:06:cc:85:7a:5a:94:8d:e8:03:db:08:1d:
a1:a5:93:85:aa:9f:ab:bf:99:a7:01:9f:3d:e6:c5:27:43:73:
5f:82:8e:e2:bd:7a:2a:31:1a:84:b0:1c:fc:25:89:50:e6:95:
da:9d:f2:91:bc:13:e2:84:07:e8:1a:8b:3d:8b:11:7c:04:92:
e9:d4:2e:1c:6a:7d:be:ec:e4:e9:3a:f1:4e:9f:39:7a:18:cf:
74:ff:55:16:51:27:f6:b2:32:a1:ea:61:f5:8d:3c:65:fd:d6:
c4:e9:b1:6a:4d:bb:df:62:8f:c0:0f:e4:c5:28:c7:15:05:4d:
ea:3a:e6:57:4c:0f:d5:02:ff:84:07:f0:54:25:4d:48:6a:91:
c0:7e:dd:a4:f8:87:b5:54:1c:aa:74:bf:47:c7:cd:62:63:54:
8c:be:dc:bf:cd:71:16:6b:40:b1:70:8a:0d:00:16:f1:0f:9d:
66:1d:fc:2a:02:2d:82:88:66:0f:d2:c5:6c:71:d8:be:2e:40:
bc:c0:0d:c8:75:92:f9:e3:1d:7c:61:a4:f4:8b:fd:c0:49:b4:
bd:4c:03:b1:01:8d:4b:dc:5e:ca:50:d3:28:b3:7e:6d:36:ef:
f0:b6:02:7d:bc:51:ff:81:95:df:ee:85:0a:3f:69:b5:e8:b0:
cb:8f:86:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:50:57 2024 by rpki-client on console-fra.rpki-client.org