Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: 1zXC1e5kHqpnFp8ED0daLCY219TcVDqIX8LC3jDAEt4=
Subject key identifier: 46:06:FB:EB:72:0C:B3:EA:08:70:1D:52:D4:DB:33:1E:93:0A:B3:A1
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 0193587949B540C87666CC2E063109443BA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 0BE4
Signing time: Sat 23 Nov 2024 10:02:43 +0000
Manifest this update: Sat 23 Nov 2024 10:02:43 +0000
Manifest next update: Sun 24 Nov 2024 10:02:43 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: +BOAtpDPtS9cs8bi5P6dFHxDpG0+gABXSgut2PhKHf0=)
2: Y01m_eXKWQ_kP2LoSoPXsUAMIiw.roa (hash: uzcYe7F5+i22LwizrGErC1WNYJKgwFyA16Vlk2Kx62w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:79:49:b5:40:c8:76:66:cc:2e:06:31:09:44:3b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: Nov 23 10:02:43 2024 GMT
Not After : Nov 24 10:02:43 2024 GMT
Subject: CN=4606fbeb720cb3ea08701d52d4db331e930ab3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1c:c1:6a:e6:76:a1:35:98:50:b9:e7:ae:c3:
d3:07:20:91:ea:a9:39:dc:84:3a:0e:45:bb:91:19:
ff:e7:dc:02:44:1a:50:75:91:88:4a:79:d1:0e:a3:
28:bf:8e:85:28:72:d1:2f:ee:6f:ec:3d:36:d0:34:
22:fb:93:df:5e:6a:5b:98:b8:5f:be:b3:ac:36:af:
02:f6:34:4c:a6:ba:43:51:9a:39:14:c0:5c:5f:35:
bc:c4:1c:a3:bb:0b:33:21:40:8b:ea:b2:4e:92:62:
86:9f:12:88:a0:9b:f5:71:8b:a0:6f:4d:af:f1:f4:
37:0a:8d:21:1c:b5:7e:19:b6:81:c1:b3:04:e4:6f:
d7:0f:40:aa:a9:51:13:43:f1:9b:aa:b3:6b:e8:9d:
64:60:55:1e:b7:f3:99:28:01:19:d2:d0:fd:94:6e:
55:83:d5:51:0a:aa:43:b8:25:31:25:09:ea:bf:90:
e1:96:b4:08:77:06:a5:ec:47:d5:bb:1e:d7:48:d2:
56:ed:59:48:e2:26:7b:c0:c0:75:9e:e5:fe:08:cb:
6b:b6:11:d6:d9:d1:1c:82:36:55:e5:69:bb:f3:70:
6a:1d:b4:99:8d:80:c6:07:79:cb:02:3c:40:35:9d:
a8:14:9d:57:c4:5e:7d:10:e9:cd:3b:c8:f8:4d:b6:
78:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:06:FB:EB:72:0C:B3:EA:08:70:1D:52:D4:DB:33:1E:93:0A:B3:A1
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:a5:17:86:01:ce:65:64:0f:1d:b2:fb:f7:82:9f:4c:74:0b:
93:8e:fd:dc:e7:21:87:9f:9b:bb:fb:e5:19:3f:6a:f9:2d:08:
7e:78:6f:c4:8f:5b:fb:18:fd:97:36:4d:37:12:23:a1:5b:9a:
ae:b6:42:24:81:f3:ef:ee:7b:02:a1:cd:ff:be:5e:0d:06:14:
6a:f3:77:bf:93:11:7c:0c:a8:72:ba:0c:64:79:be:d3:22:c9:
28:c2:53:39:8d:68:a1:af:02:60:f4:f7:b5:82:2f:cc:4a:70:
de:1c:a8:a6:a8:9b:a9:74:25:5b:74:1d:96:dc:72:ba:31:80:
9f:90:9d:f7:28:32:a3:f7:98:a6:48:4e:83:11:24:c5:44:c3:
d9:dc:6b:69:96:fd:f5:4a:bf:0b:7c:eb:26:b5:d4:8b:13:63:
fa:52:f3:d7:dd:c2:81:08:08:d3:26:4f:8d:1a:1c:f4:8c:09:
40:b4:64:0d:d8:92:8c:dd:32:61:58:ba:48:b4:1d:cb:ce:3b:
60:f6:87:2c:91:6a:21:78:0e:60:3d:35:1c:4a:9a:6f:43:d3:
c6:c1:ef:2e:73:55:bb:4e:d5:ed:1f:77:8d:06:59:84:ba:cc:
59:b3:98:5a:60:0f:f7:10:32:cc:8d:62:f0:e9:04:7d:09:dd:
87:45:92:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:57:36 2024 by rpki-client on console-fra.rpki-client.org