Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: p58iHmFC+PXGI9oxeoiFpYcLl7Mz4yWAlh+eHRCtE6A=
Subject key identifier: 9C:6B:B1:55:D9:98:37:95:61:5A:18:DF:A1:5D:37:46:B0:E6:9E:FD
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019356F72A860E9FDE3E02706380AA295051
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 05E9
Signing time: Sat 23 Nov 2024 03:00:59 +0000
Manifest this update: Sat 23 Nov 2024 03:00:59 +0000
Manifest next update: Sun 24 Nov 2024 03:00:59 +0000
Files and hashes: 1: bjzQ3crU5PcA96LY9dtw4NuDZis.roa (hash: c92ekc6E+hzq/irXhplbV3DQ1UOi7LGz/QcJM4z4KJg=)
2: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: jMz8ux8XIjXf+UkMmZedcLgh5oyI/G99ZFP5Q0Y9JWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f7:2a:86:0e:9f:de:3e:02:70:63:80:aa:29:50:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Nov 23 03:00:59 2024 GMT
Not After : Nov 24 03:00:59 2024 GMT
Subject: CN=9c6bb155d9983795615a18dfa15d3746b0e69efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4b:4e:78:6b:a1:3a:75:08:2c:4b:e6:a7:d0:
f3:88:08:9f:9e:92:1e:ea:dd:d7:5f:47:70:91:cc:
0a:fd:9a:60:66:10:7b:ec:9d:c7:3b:0d:3f:cb:db:
81:db:c5:bb:63:61:51:93:40:31:8c:99:60:59:f3:
14:7e:37:29:30:b5:00:2b:9a:f1:94:44:65:54:a0:
24:e8:f4:f7:57:7f:22:24:b0:c1:4d:f4:a2:df:19:
b7:61:4a:ca:27:b2:ac:7e:58:b2:3d:f3:9b:11:ef:
8f:5b:8a:0f:a5:6b:ef:a6:0d:43:bf:6a:f4:bb:62:
83:59:18:8d:97:cf:f1:05:9f:e9:62:fe:a8:18:ab:
e8:f4:2c:71:b7:f3:f0:dd:27:cf:83:db:42:50:03:
e5:75:b0:49:59:80:f1:32:ef:e7:49:af:ed:de:f8:
40:08:35:25:4a:4e:1c:be:a2:7b:fd:35:50:14:02:
b1:fd:f8:6a:56:ac:ab:59:36:95:10:8f:ee:9c:ca:
6b:09:a5:a1:43:b5:40:67:a9:00:d4:7e:85:2b:d5:
70:7e:5f:42:35:a2:4f:7c:f7:7c:13:63:95:c0:a0:
0b:a4:00:31:eb:1a:e0:61:2e:dc:b4:3b:90:f6:dc:
1e:9c:bb:51:8e:c2:c7:0c:14:43:8a:12:2e:ff:26:
13:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6B:B1:55:D9:98:37:95:61:5A:18:DF:A1:5D:37:46:B0:E6:9E:FD
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ca:ab:5a:b5:da:69:7d:16:81:00:1e:63:b8:62:54:e7:42:
5c:2d:c1:10:e5:55:4e:d2:35:f2:aa:bd:58:bc:73:e5:6b:12:
14:d8:06:1c:08:f5:a1:c6:44:66:b8:41:05:3f:a6:ce:89:74:
f5:4b:9a:0e:53:9f:73:55:c3:5f:94:17:52:d1:6f:e7:74:cd:
35:86:87:2a:fb:b8:23:e3:b9:49:c9:80:0f:76:1b:c0:9b:7e:
95:e7:a1:95:4b:73:cc:ed:bd:62:77:7b:1b:c1:80:03:87:46:
4c:12:c5:2e:9b:70:c7:54:26:08:4a:b2:7f:5f:b6:86:73:c9:
1a:19:cb:fb:3f:e4:2d:f8:73:6b:7c:84:f8:6a:c7:0c:62:7f:
95:43:83:9a:bc:e0:9a:39:b6:9d:49:df:09:ed:f0:6a:e2:bc:
80:b9:ad:9d:95:ff:20:6a:cd:e3:40:2d:18:ed:00:57:04:0a:
7c:6e:fa:14:07:5d:a5:e9:66:9e:0b:24:1b:d1:fc:88:f7:6e:
db:3b:d3:a5:0c:2d:be:34:d8:14:91:cf:07:8f:da:39:c1:02:
40:39:52:4e:50:1b:7b:6c:3b:cb:79:be:33:fd:d4:94:37:af:
c2:25:16:18:b8:28:ca:fe:2f:81:d6:56:67:7e:5b:5d:77:98:
a3:77:a6:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:33:42 2024 by rpki-client on console-ams.rpki-client.org