Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
File: ySi2NBei54heM4gakkqsnUCqymA.mft (raw, json)
Hash identifier: Xn5PB+TyeVWlIp6uD0sP9BJc5idQAmxW+bJG80gpbOg=
Subject key identifier: 49:D9:E8:B2:2C:C4:DC:DF:12:C2:2B:46:BB:99:5F:7D:90:85:E3:31
Authority key identifier: C9:28:B6:34:17:A2:E7:88:5E:33:88:1A:92:4A:AC:9D:40:AA:CA:60
Certificate issuer: /CN=c928b63417a2e7885e33881a924aac9d40aaca60
Certificate serial: 0193568A43A9CB6300E12014E58F214A45B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
Manifest number: 01CE
Signing time: Sat 23 Nov 2024 01:02:02 +0000
Manifest this update: Sat 23 Nov 2024 01:02:02 +0000
Manifest next update: Sun 24 Nov 2024 01:02:02 +0000
Files and hashes: 1: XvchSwuHo_kXmrXkwVblUQnrmQg.roa (hash: KqMWZtd4E3UhDkSSDI+hPENEvU5pp9SVpEjyeG8FSUs=)
2: ySi2NBei54heM4gakkqsnUCqymA.crl (hash: 9YB/wq+PP7SQ1IDm7OkKx8rjz+A9xNhgYJDAvGlh1x0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:43:a9:cb:63:00:e1:20:14:e5:8f:21:4a:45:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c928b63417a2e7885e33881a924aac9d40aaca60
Validity
Not Before: Nov 23 01:02:02 2024 GMT
Not After : Nov 24 01:02:02 2024 GMT
Subject: CN=49d9e8b22cc4dcdf12c22b46bb995f7d9085e331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ad:b2:4c:d4:c0:d2:f3:e1:1a:84:aa:3e:5d:
50:70:cc:58:4c:54:98:a0:ea:26:b1:3c:0d:49:fe:
1d:8a:7d:69:22:15:af:92:64:50:9e:b7:88:14:da:
a1:ae:5d:45:45:df:61:74:14:d8:f5:10:fc:7f:d2:
56:72:8d:6f:3a:fd:91:f8:40:12:1e:d3:5f:37:d7:
78:65:98:e3:d0:d1:3d:42:06:a0:0a:39:ca:fe:49:
fc:43:a6:74:94:3f:e4:5a:ee:20:a6:24:71:88:62:
a1:f0:b9:ee:fc:33:84:36:70:74:75:cc:b9:40:88:
ca:0a:51:69:96:8a:8b:28:88:20:aa:e2:ab:f5:ff:
17:b2:dc:5b:4e:71:3e:c7:eb:26:ea:51:6e:7a:ca:
d9:19:46:9f:f3:03:75:f1:6c:ea:52:c7:f7:d2:bc:
6b:2d:87:ac:17:88:38:c4:58:26:9e:ae:24:41:cc:
dd:c4:9c:63:2c:77:74:09:8e:78:8b:f8:05:46:b9:
83:af:5b:6a:58:e3:ea:4c:a7:3f:40:72:bd:7c:fc:
04:8e:d0:dc:79:01:f7:a8:be:09:88:2f:c8:16:c1:
92:df:a9:c1:ad:1b:d3:37:46:f7:f3:b9:c8:b9:f5:
9a:f8:79:db:b0:9b:07:52:a5:99:6f:a5:80:44:fe:
b3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D9:E8:B2:2C:C4:DC:DF:12:C2:2B:46:BB:99:5F:7D:90:85:E3:31
X509v3 Authority Key Identifier:
keyid:C9:28:B6:34:17:A2:E7:88:5E:33:88:1A:92:4A:AC:9D:40:AA:CA:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:c3:47:f7:41:c7:a9:3c:59:b8:1f:ec:e6:ea:d1:9f:36:0d:
3d:35:0f:94:03:90:c9:dc:8d:12:b5:b1:14:6e:f5:8a:eb:3d:
1d:4a:c6:1a:cb:79:3b:85:02:d7:34:e2:27:f6:c4:5d:92:aa:
f2:bc:5e:7b:ec:b0:17:f1:c5:41:05:d4:b7:b4:13:f9:7a:f0:
de:84:47:12:62:30:e2:93:8c:8f:e0:b0:2d:10:e8:36:42:c0:
54:64:e0:01:ff:f9:cc:9c:83:66:31:a9:0a:59:37:56:aa:80:
f2:55:ec:9a:dd:f1:db:62:d7:9e:bf:cc:39:a3:05:4a:b3:79:
7d:79:35:7a:65:5a:45:0a:99:af:f1:6f:1f:2b:97:91:bf:89:
57:2a:09:75:80:00:b2:89:cc:66:82:eb:ff:75:cc:ef:61:5b:
8b:0c:6d:b5:bc:7d:b1:dc:35:65:3a:a4:7d:e9:01:7c:9f:5b:
3b:91:71:45:c2:bd:80:3f:a4:c5:3d:06:06:43:52:1a:20:ce:
ba:c8:6f:08:d5:3c:a4:5f:6b:6e:e1:57:bf:83:0f:d2:07:0c:
fc:ca:bc:33:40:52:b9:e9:15:9a:87:37:8c:78:2f:9e:45:27:
d2:95:c0:85:3e:d2:64:01:f6:69:87:79:b6:6b:03:31:fd:dc:
e5:1f:ae:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:33:52 2024 by rpki-client on console-ams.rpki-client.org