Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
File: zS0OOdePxiAiVaW0rbVFg9ne3c4.mft (raw, json)
Hash identifier: /OC82dJqaZYHdUu9UzSo8tqpu402vjGvFNOJ5R7pYG0=
Subject key identifier: 67:3D:34:F5:24:FF:05:62:10:54:6D:42:9D:59:01:87:96:63:E3:BC
Authority key identifier: CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
Certificate issuer: /CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Certificate serial: 019356F713971AEC86CD1BC53030B1B10FAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
Manifest number: 0694
Signing time: Sat 23 Nov 2024 03:00:53 +0000
Manifest this update: Sat 23 Nov 2024 03:00:53 +0000
Manifest next update: Sun 24 Nov 2024 03:00:53 +0000
Files and hashes: 1: zCyvUZCIyIoreLd80SNu5rZnlQo.roa (hash: svKW69jebNQVPlkXB0RTkaxSEokF1LzFm1ZVZjxX9IM=)
2: zS0OOdePxiAiVaW0rbVFg9ne3c4.crl (hash: tEzjzKVEURgR3IyrJ9hljzv5DOm+8A1TzF571O8nF8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f7:13:97:1a:ec:86:cd:1b:c5:30:30:b1:b1:0f:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Validity
Not Before: Nov 23 03:00:53 2024 GMT
Not After : Nov 24 03:00:53 2024 GMT
Subject: CN=673d34f524ff056210546d429d5901879663e3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ec:c9:e7:7d:d8:0e:6b:58:2c:7d:18:9c:4e:
1a:ef:21:90:39:31:d4:63:ed:76:de:8e:52:39:1d:
74:3f:4e:46:33:a1:15:42:2a:74:e6:87:80:02:93:
7b:c1:34:e3:74:3f:48:99:e6:e0:c3:3e:74:6d:36:
dd:f3:76:03:20:db:11:a0:c4:5a:78:de:bd:59:49:
26:42:60:37:f1:2e:fb:5e:2b:3c:ba:e4:2a:ca:37:
09:40:20:0a:4d:72:78:71:b9:c9:0c:8a:32:a8:86:
84:d0:c4:c3:32:97:1a:93:46:02:8a:d2:a1:09:f2:
cf:91:e0:3a:16:6c:06:11:36:1b:8e:c0:ee:69:0b:
30:aa:e8:d1:17:7f:0f:af:0e:33:62:27:61:bf:ba:
b9:18:32:ef:13:ad:0c:6b:d8:59:2d:c8:f6:62:45:
59:6a:ab:ea:e9:63:00:c0:3b:18:40:fb:c0:7f:bd:
e5:5e:48:64:17:34:41:f7:5e:86:96:be:e9:4f:53:
d2:38:04:a7:e4:4d:3e:7f:f4:fa:cc:82:0e:e5:19:
0a:38:86:cf:7a:67:af:d0:b6:ca:71:a0:f2:cb:5d:
d0:6e:1e:00:74:62:a4:f4:d1:e9:68:0e:f8:12:2c:
ed:69:2f:99:2d:f1:3b:c8:0f:dd:42:71:71:ae:83:
02:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:3D:34:F5:24:FF:05:62:10:54:6D:42:9D:59:01:87:96:63:E3:BC
X509v3 Authority Key Identifier:
keyid:CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:10:aa:b4:ac:c1:6b:89:1b:6f:6c:38:d6:24:34:a2:72:53:
f7:7a:8d:4e:9e:b7:ea:2b:40:c6:6d:a7:16:25:cb:4a:c9:6b:
f3:21:0d:b6:c0:0a:d4:fa:92:22:37:d6:11:f8:a7:c4:2c:0e:
7f:4e:7c:59:fa:ac:00:f3:61:ec:f7:cc:bd:31:38:5f:ec:d1:
22:7c:1c:8c:f4:51:fd:c3:72:b8:45:16:43:1f:e6:7f:1e:ca:
d1:1e:c6:9b:0f:42:9a:0b:8b:e2:bd:d6:7a:58:51:0b:7a:36:
8f:46:99:44:a9:c9:df:5d:a0:10:c5:4c:8c:ca:18:8e:04:68:
d5:8d:d9:d4:a6:4f:d3:bf:75:dc:da:ef:1a:d3:b1:00:0a:93:
bb:b1:85:c1:59:87:0f:0f:de:de:a4:34:ac:88:07:8e:32:5c:
e6:83:20:7a:dd:3f:77:0d:b3:20:e8:de:8c:82:af:3e:81:c0:
f3:e8:bc:c3:b8:b7:a8:4f:59:3f:37:f7:f0:d8:04:30:2c:3d:
27:db:16:d5:42:44:49:bf:bc:d8:41:7a:61:7e:e3:a5:41:63:
ef:6c:fe:86:c6:ea:67:0e:30:9b:16:ed:23:77:11:e0:f9:f7:
4e:04:dc:c3:e6:f1:a4:4e:3f:90:01:39:3e:58:cb:e9:e1:d0:
d0:bc:ef:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:33:47 2024 by rpki-client on console-ams.rpki-client.org