Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: myEbefOx7DfHDUTwsy7qSrxRJa6x0q77u6YLvoojh04=
Subject key identifier: 78:9A:52:41:39:88:3B:6B:25:50:F5:E9:08:34:8F:13:CF:AC:55:06
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 0191FA7E22EB7DB538E38281ABF7A8CCD064
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: D9
Signing time: Mon 16 Sep 2024 11:00:55 +0000
Manifest this update: Mon 16 Sep 2024 11:00:55 +0000
Manifest next update: Tue 17 Sep 2024 11:00:55 +0000
Files and hashes: 1: 1-QRDY5lJl8Z_STA8d2D2hMwX1Mw.roa (hash: 20X9hvEq2LU3NWJ4U2Yb8yYaqnTkfEm78sToX5FR59c=)
2: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: mTrb7ILiBJ8eMVK4IUOUHhuGOG5/pehDOz1PXKenGeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 11:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:7e:22:eb:7d:b5:38:e3:82:81:ab:f7:a8:cc:d0:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Sep 16 11:00:55 2024 GMT
Not After : Sep 17 11:00:55 2024 GMT
Subject: CN=789a524139883b6b2550f5e908348f13cfac5506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4f:8d:53:ed:f6:f1:dd:54:dc:da:ce:d8:0a:
2a:c5:a3:69:ea:97:d9:81:dc:99:31:6a:df:cc:b8:
af:33:50:ce:4e:04:3d:b3:11:b3:2d:38:f7:ed:88:
65:de:3c:b4:be:77:df:01:17:25:1f:b3:94:ef:2e:
e4:3b:a4:14:59:03:05:f8:c6:2a:65:a4:8e:55:9d:
c3:92:91:a2:81:3c:65:9e:eb:97:6d:cc:cf:61:88:
5c:ce:9c:6c:1b:ad:b8:10:ff:58:6b:b2:a8:72:1e:
58:31:86:c4:84:aa:ec:dc:86:8b:fa:94:87:bf:d5:
79:1a:d6:23:a2:aa:df:b2:16:c4:23:27:d4:fc:5c:
83:bc:27:eb:c3:71:b0:d8:75:dd:64:cc:11:d2:0b:
ee:f5:03:82:6b:38:57:44:9a:3a:54:6f:e8:cf:81:
32:5c:1d:2e:86:f0:66:c4:c7:58:97:13:8f:b6:cb:
fd:fa:bf:68:d5:42:fc:75:14:22:2e:98:97:54:f9:
35:76:88:95:62:78:44:26:8d:e7:83:49:99:65:ff:
bb:22:c0:ee:e9:2f:01:a3:2b:11:b3:2c:b5:29:e5:
06:3c:70:ec:4d:55:27:7b:bb:7e:f8:a8:6a:f5:18:
35:31:cc:1a:f2:11:a7:37:3f:16:f0:82:4f:9c:94:
1e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:9A:52:41:39:88:3B:6B:25:50:F5:E9:08:34:8F:13:CF:AC:55:06
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:e2:31:95:53:c7:f0:9e:3d:7d:f2:04:c0:42:7d:a2:da:c4:
fb:a2:20:92:15:36:c2:91:de:d8:76:f9:4c:8b:59:19:28:a4:
9c:0e:c8:b9:2b:03:35:e8:aa:1c:15:ec:75:59:6a:0e:19:37:
d7:ce:78:49:67:7b:7e:fe:25:3e:18:bb:cc:ac:0e:64:24:de:
cf:c9:d7:72:42:f3:33:a9:1b:07:a7:ab:e4:29:71:98:e4:0a:
09:ed:8a:ca:9b:0a:45:91:db:ac:73:ce:a3:bb:d7:9c:a5:c1:
e0:7a:96:25:1f:8e:e1:a5:23:c7:b8:a9:1e:f5:f9:4b:f4:85:
39:7a:fc:bd:10:e3:ea:14:f8:ec:41:a3:55:56:d6:98:24:d8:
63:ff:eb:99:ef:da:d3:22:fd:ff:35:c9:e0:09:39:a5:5c:16:
94:d1:d8:93:34:0c:4a:c4:05:ca:4a:d4:f7:b1:7c:7b:28:d1:
fd:63:ff:f5:bc:e4:32:91:43:53:32:44:33:30:0a:fb:3d:96:
bb:ab:ee:86:f5:82:4e:06:8a:11:c4:22:fb:3b:fb:ff:97:e2:
10:7d:fe:67:54:64:a6:db:af:1f:28:b3:de:71:2f:98:63:88:
fe:48:0e:b1:90:38:8d:d4:39:78:7a:2e:72:40:42:e9:23:88:
4f:33:7f:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:10:42 2024 by rpki-client on console-fra.rpki-client.org