Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier: tiC6rCnPvciAmC4LXx8IGXf8yLvNvGmrFuSHNWorqeM=
Subject key identifier: 2C:4C:E5:72:3A:04:66:BF:BD:59:28:58:31:DE:A0:0C:82:E0:FD:DD
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial: 0193568ADF0BB942EA009CA68A438C75B8D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 01:02:41 +0000
Manifest this update: Sat 23 Nov 2024 01:02:41 +0000
Manifest next update: Sun 24 Nov 2024 01:02:41 +0000
Files and hashes: 1: 1-J6se5zowrtWItRwtV6xQe6lk2k.roa (hash: XYSY+1SG7aQ0lPBdAc5JVqSBHnpVnHDR9CE5wloK8jA=)
2: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: kp2MMPVQHDdZAHjB1Fw51nlejOJtP1gwYspaYunuLd4=)
3: iunF3EfDLS-7di3NPxJd9ZdH04Y.roa (hash: FmWV3hGBb6NnH91Prx/r2HeBbyV+yFqwxvLATibPORM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:df:0b:b9:42:ea:00:9c:a6:8a:43:8c:75:b8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
Validity
Not Before: Nov 23 01:02:41 2024 GMT
Not After : Nov 24 01:02:41 2024 GMT
Subject: CN=2c4ce5723a0466bfbd59285831dea00c82e0fddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:98:b4:4d:04:d2:48:80:5b:13:8b:52:8a:62:
99:7d:bd:40:53:a3:98:fc:36:d5:6f:41:b3:19:1e:
ca:4b:89:06:e4:e1:de:52:ec:1a:c9:0c:6e:3c:67:
e7:56:e8:21:b9:8a:c7:07:a8:6d:6f:ba:47:f6:90:
11:da:c2:d5:90:af:e6:83:f5:51:76:cc:a1:f1:47:
32:d3:5b:81:c3:f3:8f:6c:bc:b9:3b:0d:09:61:88:
87:6f:f3:cf:eb:02:07:5d:3e:da:fb:eb:ad:5a:b5:
dc:eb:6b:52:3a:2f:02:fe:3f:23:43:dc:9a:09:2d:
b0:56:1b:65:dd:03:ec:67:d9:2e:12:4e:5c:de:29:
3a:ec:4b:87:3b:32:0b:43:cd:f7:a2:67:9f:88:80:
b6:98:f3:b1:64:d5:8c:ab:84:a5:a7:1b:ad:56:31:
79:2b:72:34:60:06:9b:87:f3:3f:c3:e4:f4:45:6a:
9f:7d:b5:f6:8a:d2:4f:0c:12:b8:e6:d7:58:b7:07:
da:67:0e:e7:88:da:b6:e6:c7:5d:6c:8a:c9:7f:c3:
4d:54:15:64:41:d5:6d:d8:c0:3d:5b:1b:a0:7a:bd:
2d:15:45:dc:d9:d9:85:bd:7a:0f:91:14:a8:f1:2e:
8e:b2:c6:99:c7:4b:32:ab:e8:73:4b:f9:d2:c6:b7:
2f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:4C:E5:72:3A:04:66:BF:BD:59:28:58:31:DE:A0:0C:82:E0:FD:DD
X509v3 Authority Key Identifier:
keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:66:27:f6:e4:86:e8:9e:de:dc:dc:d3:52:0e:23:a3:23:96:
ad:5c:87:b1:81:69:c2:07:80:f6:1e:46:bd:fb:45:c7:7b:56:
61:df:dc:b1:2b:c5:62:b6:f7:9f:8e:3b:22:a4:a2:e9:87:c2:
91:84:e3:51:e6:d2:3a:d5:13:89:43:26:65:39:b1:ee:48:f7:
ed:8c:4a:81:e1:3c:c8:5e:e8:81:c6:d4:c4:6d:e2:34:26:7f:
b7:b4:b3:ce:66:e3:e8:a7:67:b1:92:11:d9:e8:b9:11:01:da:
b8:d9:87:d8:a8:74:c2:4b:5b:8f:1a:82:ca:fa:02:6d:87:15:
8a:d1:8a:18:86:55:71:bb:9d:5b:a9:89:79:ad:f8:90:58:31:
cc:ae:35:1b:38:c4:c2:e1:3b:d8:26:96:c1:5b:ac:bb:b8:da:
3a:67:eb:26:a8:db:ac:fa:e6:cf:33:73:0e:a4:c7:4b:bf:89:
7d:fc:03:29:df:fb:85:10:95:5a:69:48:eb:00:a0:65:2e:25:
12:4e:88:3c:93:bb:83:93:45:e0:04:72:88:f6:b8:cb:01:5d:
1e:05:9c:a0:e5:9c:fa:ea:be:46:98:76:73:66:da:8d:86:3b:
8c:3e:4a:f9:9e:59:6d:72:0a:79:a5:c6:c9:84:3d:f3:94:16:
5d:75:fd:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:39:12 2024 by rpki-client on console-ams.rpki-client.org