Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
File: ySi2NBei54heM4gakkqsnUCqymA.mft (raw, json)
Hash identifier: 0zrHhSLkexeBwSqJJuxJPDVv7ywVMorP5d56zgmnzQo=
Subject key identifier: 23:D2:4C:60:AE:6F:52:3C:DE:78:14:4B:98:FC:ED:02:35:1A:A3:16
Authority key identifier: C9:28:B6:34:17:A2:E7:88:5E:33:88:1A:92:4A:AC:9D:40:AA:CA:60
Certificate issuer: /CN=c928b63417a2e7885e33881a924aac9d40aaca60
Certificate serial: 0191FAEE2675C5E5634514991F700218BD11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
Manifest number: 011A
Signing time: Mon 16 Sep 2024 13:03:17 +0000
Manifest this update: Mon 16 Sep 2024 13:03:17 +0000
Manifest next update: Tue 17 Sep 2024 13:03:17 +0000
Files and hashes: 1: XvchSwuHo_kXmrXkwVblUQnrmQg.roa (hash: KqMWZtd4E3UhDkSSDI+hPENEvU5pp9SVpEjyeG8FSUs=)
2: ySi2NBei54heM4gakkqsnUCqymA.crl (hash: +8tZuJZncvaqwt5NlEvyU97oruo8xA4C4MjrxdoWx7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 13:03:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:ee:26:75:c5:e5:63:45:14:99:1f:70:02:18:bd:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c928b63417a2e7885e33881a924aac9d40aaca60
Validity
Not Before: Sep 16 13:03:17 2024 GMT
Not After : Sep 17 13:03:17 2024 GMT
Subject: CN=23d24c60ae6f523cde78144b98fced02351aa316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:36:da:86:a3:a4:30:2e:34:bb:9c:ea:c2:82:
4e:7a:a7:e3:d2:e7:56:45:2d:c8:d6:90:24:fb:db:
68:1f:f5:99:1d:13:24:ae:88:39:16:ac:58:9f:c5:
37:d9:46:b4:3f:48:62:3b:f8:29:59:2a:cf:65:78:
c6:b6:1a:84:24:bf:c1:b5:64:14:dd:94:ff:ea:2e:
73:f2:ed:30:e0:bd:a2:e1:04:01:24:c8:a9:8b:9d:
57:ae:98:8c:59:8b:0f:92:fd:5f:a6:68:c8:fe:86:
26:66:b2:52:a7:cb:a9:6b:94:b8:01:04:59:09:a0:
dc:90:d9:6a:83:92:a3:46:c4:6c:18:e8:47:1e:8a:
12:09:4f:43:d7:9d:57:e5:31:ee:29:8e:ac:9e:7c:
b0:66:e3:a3:ef:4e:9c:37:9a:5a:cf:8a:18:81:53:
bd:bb:95:cc:c8:d7:08:62:17:bc:fe:7d:05:15:d8:
8f:ee:e6:25:ff:8e:f3:88:ff:76:a9:d3:7f:be:8a:
8c:17:3f:20:fa:19:04:fc:a6:7e:08:08:84:a5:bb:
09:91:64:53:18:d7:ae:51:33:d6:67:ba:e4:e7:88:
f4:67:e7:b9:32:55:2d:09:92:60:27:f9:34:4c:0d:
b8:57:b4:44:47:2c:c6:1a:a3:ef:db:4e:c7:3c:13:
d0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D2:4C:60:AE:6F:52:3C:DE:78:14:4B:98:FC:ED:02:35:1A:A3:16
X509v3 Authority Key Identifier:
keyid:C9:28:B6:34:17:A2:E7:88:5E:33:88:1A:92:4A:AC:9D:40:AA:CA:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:3f:45:4a:8b:61:05:fe:01:48:ee:42:f1:c5:c4:52:86:7f:
9a:2e:37:5a:a0:d0:48:bc:94:d4:02:3c:52:0b:aa:f7:be:f1:
bf:a7:34:6e:77:de:ab:81:ac:e1:26:20:59:56:62:83:7e:fe:
6c:1a:50:d0:45:f9:60:94:c2:5b:39:c8:6c:9b:83:89:78:2b:
02:c4:1d:f9:df:4a:f4:94:73:eb:ef:f5:53:03:60:e0:b8:5e:
5b:cd:63:6a:48:e5:b6:4a:76:ba:11:a3:93:51:e2:38:5c:2b:
eb:37:71:96:0c:92:83:16:63:40:61:cc:2d:89:2d:95:ca:ad:
88:4f:76:76:ff:0d:55:af:d2:e5:a2:d6:32:86:2c:ae:a2:e1:
32:ff:25:50:e7:08:28:55:d3:53:14:78:1e:88:88:74:19:cc:
f9:7d:99:62:4e:2c:06:9a:93:99:d1:79:84:bc:15:c7:9f:cc:
90:76:ea:6d:28:2c:63:14:28:a5:ac:70:af:75:88:31:e8:19:
9d:7d:df:b2:ad:ce:69:f1:10:16:25:b7:b8:13:b3:e8:7c:f5:
21:9a:64:ac:33:e0:ac:d2:7a:a6:9a:c4:a5:7d:24:34:fa:8c:
50:1c:00:e6:68:76:07:f2:71:38:86:a3:1a:26:d6:e6:2c:af:
9d:23:2c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:09:20 2024 by rpki-client on console-ams.rpki-client.org