Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
File: pal1I5_dRDt9PYLjkqnkrjkhjvY.mft (raw, json)
Hash identifier: Bzmfx9ab/+GwJBZFP31ijXDtzrgMUUhgvtPHjZI1dvI=
Subject key identifier: 62:B2:07:F0:5D:78:5E:DB:B4:00:60:A5:C6:F3:AB:59:51:A7:CD:28
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 019352ACBE86DBA1C80AA41C01C2B162786B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
Manifest number: 06CC
Signing time: Fri 22 Nov 2024 07:01:12 +0000
Manifest this update: Fri 22 Nov 2024 07:01:12 +0000
Manifest next update: Sat 23 Nov 2024 07:01:12 +0000
Files and hashes: 1: hAc7ak5kWsKT6JxTG3hpojUMtWE.roa (hash: WaA12oUNzh3ugWP/6qxVSFwuC/6IlOZZcUnme1rBMGU=)
2: pal1I5_dRDt9PYLjkqnkrjkhjvY.crl (hash: aYfOOgihZBTc7v/mLUKTqSBQUMQFi07NiHskmlqkfh8=)
3: zglQdQdERZsjXYbJD_uh2jlLSbY.roa (hash: PXOe/KaBadbYY2e7Ta7WlTKgdALk40sgFLPFSDD5rAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ac:be:86:db:a1:c8:0a:a4:1c:01:c2:b1:62:78:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: Nov 22 07:01:12 2024 GMT
Not After : Nov 23 07:01:12 2024 GMT
Subject: CN=62b207f05d785edbb40060a5c6f3ab5951a7cd28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:29:0a:20:8b:2d:77:d5:6f:fa:dd:1a:18:29:
5e:72:3d:f3:8d:fc:9f:a5:c8:ac:00:d0:47:f6:f5:
5f:6c:93:bf:10:59:0a:ac:2d:20:96:f9:37:81:09:
e9:89:e5:31:30:53:b0:23:c7:08:41:7f:5c:b5:c9:
9e:57:48:3e:ae:fb:c7:26:3a:69:c0:11:bf:66:11:
98:c0:45:10:14:e0:a4:c8:7b:d6:16:d6:9a:19:d2:
eb:67:6c:ca:3b:0b:4e:36:c7:01:67:35:31:0e:f4:
9c:02:0f:5b:49:b0:f2:d3:4f:6e:23:ab:11:02:a1:
d4:d8:01:0a:bb:6c:47:2f:ba:65:de:79:58:2c:16:
7b:64:6e:c1:5e:1d:83:fb:c7:78:37:ad:39:1e:09:
89:59:9a:a1:0d:7e:2d:db:dc:7c:5a:a8:91:ed:3b:
13:98:d2:9f:33:b4:06:0e:1a:7e:0c:c1:f3:ad:05:
c3:67:5a:07:86:37:8b:0f:0f:9b:62:48:af:68:37:
1a:0b:c2:60:58:88:30:91:1d:50:7b:bf:98:8b:59:
f9:d7:84:62:31:96:ee:fa:e7:02:6a:4f:93:90:ce:
13:2c:11:df:35:05:fc:bd:5f:b0:6a:7b:59:46:f3:
cd:b6:1b:47:6d:5e:26:06:e6:17:cf:a5:a9:e1:e3:
de:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B2:07:F0:5D:78:5E:DB:B4:00:60:A5:C6:F3:AB:59:51:A7:CD:28
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:c6:f6:ab:d6:86:b4:fd:53:c0:02:df:6a:e8:dc:e4:d5:91:
a3:8d:35:1a:81:ac:99:8a:9a:b0:92:e6:77:51:5a:22:6f:2f:
e2:84:dd:ee:d8:51:13:fb:aa:d8:bf:cc:09:51:e8:c8:70:58:
4b:f0:b8:af:19:8e:eb:81:93:7c:97:c6:ab:12:4e:24:cd:b5:
d5:8e:ec:c8:40:8d:3a:e5:66:84:89:9e:70:4f:4a:b3:e7:8c:
26:fc:3e:d2:a6:3c:a6:ce:1a:4f:26:c5:c8:16:ed:fd:aa:53:
64:d0:d3:ef:52:8e:1b:5f:c5:28:a9:5e:4b:1c:ff:05:de:1c:
98:1c:00:d1:66:e5:47:c8:47:28:43:a0:f4:93:15:d3:12:23:
7f:8b:26:00:c1:ce:8b:ff:10:82:22:d4:25:49:41:d3:c2:26:
f2:54:a7:b3:87:90:99:49:9c:31:66:42:cd:b0:39:cb:eb:79:
b9:d3:48:72:1b:38:06:fc:3b:f3:3f:47:20:c8:f1:ad:de:a9:
cb:c6:9c:9f:4a:79:93:5a:2e:da:99:cf:ea:6d:e5:99:06:e4:
a3:5b:73:33:a0:6c:f3:14:ce:ec:98:21:4d:35:99:9d:44:94:
4a:5e:da:f9:94:63:92:2b:1d:5d:a6:e2:0d:a4:2d:24:33:0f:
c4:36:bd:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:33:05 2024 by rpki-client on console-fra.rpki-client.org