Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier: zC5px6RPtb5HqTCQFUWND6bXejKk9p8j27qXgO4IRDw=
Subject key identifier: 11:B1:0F:BC:01:9B:8E:3B:D9:7B:24:7E:39:3F:19:82:F3:0A:25:8F
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 01936A46E91D41D72C35B5D0B783C7D76EC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number: 124F
Signing time: Tue 26 Nov 2024 21:00:52 +0000
Manifest this update: Tue 26 Nov 2024 21:00:52 +0000
Manifest next update: Wed 27 Nov 2024 21:00:52 +0000
Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: 02ni/q89H/jQk0Xx+wTWUwJTV873KNEvu47mPZo7o0Q=)
2: XtVDr_sdtbzkMH5FMXjPg7eHE24.roa (hash: /JysPksT1UCYSbztAEQpCavysRoAh/u0l30nd+whXzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:46:e9:1d:41:d7:2c:35:b5:d0:b7:83:c7:d7:6e:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Nov 26 21:00:52 2024 GMT
Not After : Nov 27 21:00:52 2024 GMT
Subject: CN=11b10fbc019b8e3bd97b247e393f1982f30a258f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:73:11:6e:c9:c2:5e:26:5a:21:95:f5:0e:2a:
77:3d:6d:fa:9e:57:88:3f:0f:51:f0:0e:2a:fb:4a:
81:e2:13:e7:4e:42:a2:90:e4:9c:d0:d0:eb:6c:18:
af:51:46:7a:2d:dc:de:22:b1:64:b4:78:8e:45:72:
3e:86:16:d1:11:53:c9:66:e0:c5:4d:3e:d6:f2:98:
8a:36:aa:f8:c1:b7:53:fd:d2:23:54:c1:14:70:96:
4f:c6:06:a1:e5:83:2f:b4:da:b6:6d:33:a1:02:bc:
a1:ec:a7:83:39:0e:45:e2:56:a5:5a:bb:ea:bd:be:
0f:b1:f8:00:1f:55:a5:9a:31:3c:01:a6:d2:0e:7e:
01:bc:ce:0d:d0:72:a5:4a:7f:b8:ed:23:a5:d7:06:
8c:70:13:3c:72:a3:1a:c3:91:85:0d:c6:b3:6a:a3:
02:6f:cf:94:51:18:d9:9d:6c:6f:24:53:cc:ca:0f:
ad:76:de:94:2b:03:a9:89:57:b8:7c:d2:5d:49:66:
21:2d:61:ea:89:69:04:4e:de:2f:ab:1e:5e:cb:91:
97:1e:32:62:1f:1c:f8:7d:34:f9:c2:d2:ef:da:c1:
0d:b6:62:5e:7d:f4:2c:fb:cf:4f:40:dd:95:4d:16:
77:0c:88:91:99:24:30:c4:08:2f:fd:c4:86:9f:77:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B1:0F:BC:01:9B:8E:3B:D9:7B:24:7E:39:3F:19:82:F3:0A:25:8F
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:82:5a:de:ed:88:22:ae:52:c8:59:7b:3c:8b:25:72:e0:50:
05:80:51:13:00:1d:1d:c2:bb:59:0f:f1:a9:b9:c9:f6:c6:50:
cc:3d:79:8a:ee:99:35:07:4c:4b:13:a0:5b:f4:85:0b:06:e4:
af:7e:72:97:b5:dd:4b:d9:c8:90:94:e5:35:3b:bf:8d:8c:62:
08:e5:80:a3:ca:b8:7c:00:8e:f0:95:3b:d4:f7:a4:02:a8:67:
8b:fc:78:f8:a6:ce:48:75:90:5c:7f:61:7c:db:c0:73:13:15:
67:b9:13:73:b1:b4:98:ea:c4:2b:17:a0:6f:aa:01:41:f4:b8:
2c:8f:5b:f0:83:55:2a:01:8b:c4:81:8f:f7:11:80:6b:20:a4:
82:9a:fb:e5:91:e3:b1:fd:53:af:ce:f8:f3:78:f2:1c:f2:37:
1e:b8:74:46:84:e0:70:5b:ee:11:a4:96:a9:8f:4e:cd:d3:7d:
01:a8:8a:7d:0a:3c:c9:06:1a:5b:86:9a:89:71:0e:1e:26:e2:
21:e1:64:d7:37:97:71:f4:a1:eb:1d:f4:f6:9b:16:df:42:9d:
72:2b:1d:23:1a:84:31:96:f8:71:e8:d2:7a:5e:50:be:1f:43:
92:08:eb:f9:db:bc:15:58:4b:39:9a:e9:ee:23:96:ff:db:68:
4f:e2:68:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:12:29 2024 by rpki-client on console-ams.rpki-client.org