Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
File: PKap1LWSRrTjNhThpLWRthGOihU.mft (raw, json)
Hash identifier: xJsciabKAHrwCXRPTsjO+s+hdbnFYu0BR0XsKY0O1UA=
Subject key identifier: 75:33:D3:4B:F1:0A:12:29:06:F7:F0:92:2B:2B:E6:BD:DA:8F:7A:C3
Authority key identifier: 3C:A6:A9:D4:B5:92:46:B4:E3:36:14:E1:A4:B5:91:B6:11:8E:8A:15
Certificate issuer: /CN=3ca6a9d4b59246b4e33614e1a4b591b6118e8a15
Certificate serial: 019369DAA3A66C02E36E7313D301947CCD11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
Manifest number: 0F1D
Signing time: Tue 26 Nov 2024 19:02:36 +0000
Manifest this update: Tue 26 Nov 2024 19:02:36 +0000
Manifest next update: Wed 27 Nov 2024 19:02:36 +0000
Files and hashes: 1: 1-OD0nVj2EFSuGY6U_TGqItk6x4.roa (hash: abCjdw/dF1dwCbM6SgnT0xrbXLS71mouiXw0qZpE0uQ=)
2: PKap1LWSRrTjNhThpLWRthGOihU.crl (hash: U/vj3OgKY1dkhFvy1iKWIAkXsRbpa55A8gXRaSYwzwc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:a3:a6:6c:02:e3:6e:73:13:d3:01:94:7c:cd:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca6a9d4b59246b4e33614e1a4b591b6118e8a15
Validity
Not Before: Nov 26 19:02:36 2024 GMT
Not After : Nov 27 19:02:36 2024 GMT
Subject: CN=7533d34bf10a122906f7f0922b2be6bdda8f7ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b9:93:a3:81:fa:8b:7d:26:ac:6f:00:e8:c7:
74:2d:50:32:9a:c3:34:b6:5d:a8:4c:4a:e0:c9:7f:
a5:b3:bb:0a:2b:5e:be:43:4e:d5:39:ba:bd:8b:6c:
26:58:cb:23:ee:e5:bb:74:f1:3f:21:4d:53:86:2c:
58:70:57:10:a7:26:4f:32:5e:a0:6d:f2:0b:a7:be:
a0:a8:d0:d9:cd:2a:3c:df:ed:95:01:6d:ba:3f:eb:
a0:bd:82:30:10:e0:53:d4:28:7f:b9:e2:94:c0:2d:
a4:33:c5:20:9b:ab:16:c7:75:46:6a:1c:2c:42:79:
8d:ca:5b:41:cc:7d:e1:ea:b1:4e:41:fa:cf:7d:19:
23:38:0f:70:cc:b1:b0:6a:32:30:10:83:21:b4:77:
8b:34:ea:72:c2:2f:0b:7f:1a:a9:1d:94:10:c2:59:
26:40:1a:3c:75:80:57:84:ec:55:88:03:3e:ba:07:
0a:10:6b:8e:1b:f7:0c:a0:b2:09:2f:e0:e6:18:ad:
cd:b7:7d:db:8c:92:35:ba:0c:18:96:c8:92:fb:34:
5f:b6:8a:86:66:be:35:09:2a:1e:c4:55:77:8c:bb:
a6:95:54:eb:9e:6e:fe:b5:03:5a:39:f0:97:90:37:
25:0f:d8:71:c4:df:bf:a5:1b:6a:8c:ad:d4:3d:4e:
d9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:33:D3:4B:F1:0A:12:29:06:F7:F0:92:2B:2B:E6:BD:DA:8F:7A:C3
X509v3 Authority Key Identifier:
keyid:3C:A6:A9:D4:B5:92:46:B4:E3:36:14:E1:A4:B5:91:B6:11:8E:8A:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:6b:3c:21:f9:d3:b2:02:c7:89:b6:87:99:7f:b8:8d:84:97:
11:c6:9d:06:f2:91:d6:8d:34:18:70:6e:8e:3a:80:1e:f9:1e:
96:3d:04:dc:f8:95:37:15:40:d9:ef:12:14:65:c7:12:0f:8f:
87:62:52:75:3c:01:fd:70:55:3c:74:1e:46:17:c6:8e:c6:d9:
f5:b1:c9:af:c9:2d:4d:20:01:8e:05:33:6d:aa:72:38:79:96:
f0:1c:6e:de:3e:f5:92:17:4e:6a:b1:1e:68:b3:8e:f3:36:74:
94:28:26:79:50:1f:4f:f3:30:45:4c:4f:58:94:15:d9:9e:7b:
ca:6f:d9:63:8a:e8:af:7f:b3:36:a9:66:d1:19:b8:77:7c:58:
86:7d:2b:69:dd:dd:be:d5:92:86:2e:6f:ea:58:19:f9:4e:3e:
18:97:2b:c6:98:ad:bf:6b:28:ec:74:6c:f7:c6:eb:df:42:76:
bb:c2:63:83:01:81:66:df:62:db:e4:63:5d:85:08:a9:d2:91:
f3:05:a1:63:b0:ed:01:c5:81:09:b4:be:5d:bc:ea:73:96:b6:
9a:32:f2:5b:f5:69:c6:31:d9:75:e5:f1:9e:6d:51:7b:11:81:
69:2b:65:e5:b8:34:0f:5f:8f:e5:0a:25:d3:17:09:89:f6:2c:
cb:b7:70:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:35:22 2024 by rpki-client on console-fra.rpki-client.org