Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
File: RyyyiCCZANGvGpmLsDnsdX5JPdU.mft (raw, json)
Hash identifier: aaWEcnHSQr/oC+3mkfmB2SKkFdX/9/PKgzbsuDwglGQ=
Subject key identifier: E3:D6:2D:E8:54:67:41:77:C1:94:40:C0:FB:F0:D4:DE:9B:6A:E9:69
Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5
Certificate serial: 01936AB48772C5C6DA61CAA7BBEB1D4E22CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
Manifest number: 05A3
Signing time: Tue 26 Nov 2024 23:00:36 +0000
Manifest this update: Tue 26 Nov 2024 23:00:36 +0000
Manifest next update: Wed 27 Nov 2024 23:00:36 +0000
Files and hashes: 1: RyyyiCCZANGvGpmLsDnsdX5JPdU.crl (hash: DSd2AuGY5t320Fiwnxy4UBaoR4xq3h4ZonBNczCgJsk=)
2: xHS7CIl-tV4ZtB1NDtzIs-bmxhI.roa (hash: ZQRf0rvS23J/Ou6PR7e9zLVCqg2raqCC4fcyfjlN8k0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:87:72:c5:c6:da:61:ca:a7:bb:eb:1d:4e:22:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5
Validity
Not Before: Nov 26 23:00:36 2024 GMT
Not After : Nov 27 23:00:36 2024 GMT
Subject: CN=e3d62de854674177c19440c0fbf0d4de9b6ae969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b2:d5:26:75:a5:8d:c4:08:68:fb:08:95:5e:
09:18:b6:58:1f:59:b7:48:45:01:e2:3e:c4:bc:9d:
02:70:17:79:68:4e:13:af:39:fd:86:1f:74:4f:5d:
9c:7a:bf:c8:d9:6a:66:6f:29:72:b6:ba:98:ff:ca:
46:6f:0f:e6:15:e2:eb:6d:46:b9:18:33:b1:ff:12:
f8:f7:e8:ab:a2:e0:df:ae:13:ab:03:3c:20:47:e6:
39:55:ff:52:65:bf:34:32:ff:fa:f9:6b:30:d4:f3:
1e:9b:c5:0a:7d:e6:a4:95:5b:1e:38:ad:40:f2:9b:
d5:a2:3b:49:c3:b0:3f:cb:87:8e:9a:36:8a:c0:fb:
e6:79:82:bd:e0:a7:2b:94:57:c1:06:ab:a4:9c:39:
24:a0:44:76:79:ff:8a:34:89:9b:03:1b:66:ff:e1:
bd:43:8e:bf:d4:6e:35:cb:a6:de:57:4d:cd:1e:db:
5c:cd:75:e5:e8:1d:b6:71:56:f9:b7:d3:5e:7e:fa:
ad:c1:8a:3d:32:f6:98:8d:ae:2c:16:57:78:b4:ae:
fc:2f:2d:b4:12:e7:39:cc:11:df:d5:92:5c:32:e3:
a6:fa:83:ae:ed:64:5a:75:b2:26:65:0b:2e:ef:75:
fa:b6:5f:38:24:97:0d:78:99:04:95:a2:f9:8a:29:
9f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D6:2D:E8:54:67:41:77:C1:94:40:C0:FB:F0:D4:DE:9B:6A:E9:69
X509v3 Authority Key Identifier:
keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:c2:a9:85:9b:75:65:47:a2:01:07:78:a9:0e:41:d9:d7:c6:
76:e3:f8:51:81:28:86:a9:4a:4e:16:ca:2f:5c:44:3f:12:13:
39:18:4b:2e:27:ab:43:75:86:f4:49:25:c0:5f:42:50:57:c7:
82:bb:e2:92:d7:91:74:ae:70:1d:2f:ae:89:a2:a9:bd:bd:2d:
d1:dd:f1:c9:a7:38:44:24:ea:99:40:64:7d:b3:7c:a2:cd:cb:
c9:71:22:0b:79:47:3e:8b:88:17:35:2a:6e:ec:e1:2c:b4:b4:
ea:f3:9f:08:e5:87:7c:37:2f:e9:81:c7:99:e9:b5:04:47:93:
98:18:68:ba:e6:69:69:13:46:d9:ea:f8:b1:27:d5:ac:c4:44:
45:42:fa:70:a4:1b:62:37:0e:bf:46:92:7f:2a:ae:68:a0:aa:
6d:8e:e7:71:20:1d:15:38:47:16:99:48:ba:ef:23:66:cf:57:
51:d4:2c:3c:a6:5e:77:1e:85:fd:17:d9:4d:e3:a7:bb:df:3e:
81:2c:80:1f:ae:9a:08:44:aa:45:f8:77:03:a4:c3:9d:21:7d:
a3:75:b2:45:7f:9e:e5:00:8c:72:4f:4a:29:d9:98:66:90:f5:
0a:83:14:89:9b:55:af:ec:f1:d5:3a:2b:1d:24:d9:7c:54:8f:
aa:36:25:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:12:39 2024 by rpki-client on console-ams.rpki-client.org