Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: I1OJvPXfB8vapMcKlCua+QBWG+vMGBAa7OKuu6+PcyQ=
Subject key identifier: B6:11:3D:5E:40:D3:97:D9:D2:97:EA:5E:5A:34:24:90:90:84:69:D5
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 01935689D9DD0B369752417214801CFEF629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 10B9
Signing time: Sat 23 Nov 2024 01:01:34 +0000
Manifest this update: Sat 23 Nov 2024 01:01:34 +0000
Manifest next update: Sun 24 Nov 2024 01:01:34 +0000
Files and hashes: 1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: 6cY1kdx1XLikQlyNAQLafRr4WPA4NH/LYkCOyLu15z8=)
2: zBO8UNxBRpYP65fMiJQ8GglXJSM.roa (hash: EY8s+PVllcBgQ1PMVMiAg4sS1zEPzff/8YkL4EDL7OI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:d9:dd:0b:36:97:52:41:72:14:80:1c:fe:f6:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Nov 23 01:01:34 2024 GMT
Not After : Nov 24 01:01:34 2024 GMT
Subject: CN=b6113d5e40d397d9d297ea5e5a342490908469d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e1:90:36:9c:17:05:0b:66:30:dd:b9:18:a3:
18:30:ee:cb:98:dc:27:eb:fb:44:ad:99:ae:7d:88:
ee:e0:ee:91:a8:0a:49:8c:cb:f7:ae:f8:97:e0:93:
f8:c8:cd:c0:f5:9c:49:a9:98:88:2e:91:35:20:06:
c4:6a:8e:27:a2:f3:54:a9:7c:a9:3b:8f:c2:64:b3:
e2:a2:bd:a6:55:2b:26:3a:a7:19:51:f3:d3:6e:df:
45:2f:ef:41:ac:32:1e:39:bf:b3:a1:ea:44:ce:7d:
21:a9:42:96:8a:3d:fa:0c:22:00:92:09:b0:15:71:
ec:f8:f5:28:f4:bb:40:e8:2c:38:4a:51:f8:e5:dc:
42:79:45:85:b8:ec:1f:a6:96:e7:3b:8f:f4:84:2f:
d4:c5:52:db:2e:42:1d:e9:a0:3a:1d:ab:40:d6:61:
93:aa:bd:69:92:a9:8f:09:74:01:4b:fc:bd:71:50:
97:44:aa:a1:80:7f:9a:ff:05:73:d3:bb:ff:7a:b9:
3d:87:cf:6b:6d:5f:53:5b:6c:ae:d3:87:aa:8b:4a:
e6:e8:dd:bb:8d:4b:1f:37:74:87:5c:54:a2:95:d2:
32:f1:e4:66:13:16:9c:26:e5:91:2a:60:ee:89:9e:
9e:6a:d2:fe:d5:3b:03:17:ba:92:70:58:bc:ea:de:
3d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:11:3D:5E:40:D3:97:D9:D2:97:EA:5E:5A:34:24:90:90:84:69:D5
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:7f:b8:71:b0:a7:6b:8b:10:ec:31:29:3e:b0:6f:2e:53:d4:
62:7c:21:8d:c7:1a:20:a2:09:a2:3d:3a:65:fe:40:a1:7b:18:
70:3c:cf:c5:49:2a:ad:d8:52:eb:f7:69:91:4b:41:c3:f5:8b:
c0:24:13:84:ab:2e:c3:cd:76:c6:0c:08:a8:e8:dc:7b:a0:2e:
fe:4d:6d:ef:e3:f9:5a:e4:53:d5:5f:ae:f9:f4:af:0b:59:f1:
0c:21:a2:15:9c:0e:f0:a0:bc:b4:4c:84:6c:bb:3d:0e:c1:08:
01:be:e1:94:fd:26:0a:0f:7c:ab:48:3b:fa:64:60:e8:33:4f:
b1:93:bc:7b:61:2a:ff:aa:59:e7:d0:2e:b5:64:8a:56:8c:67:
68:81:61:27:58:3b:96:7d:e2:2f:cc:92:e2:07:a2:06:9e:8e:
35:eb:2a:de:03:01:8d:7c:32:e0:c7:63:20:9d:5a:57:8a:18:
07:8b:4c:cd:23:c7:d8:10:f7:55:ad:f8:d8:05:92:61:3f:5e:
14:94:71:09:e7:0e:01:36:cd:5b:5a:23:e6:5a:94:9b:24:85:
d2:37:51:e5:cf:6f:d0:c2:ee:49:d2:d6:2c:16:9d:40:e3:a3:
3f:d9:04:14:a7:54:1f:f9:da:e0:a5:6f:da:02:85:74:6c:92:
6a:46:e0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:33:56 2024 by rpki-client on console-ams.rpki-client.org