Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
File: CiINqbbilYVbYn_qYQ4cthZGiUs.mft (raw, json)
Hash identifier: 7qc9p7jboqooxovXqRSjwV7WAYopqP8U0I1TetbHS0E=
Subject key identifier: 29:67:72:35:27:1A:26:94:33:1B:47:EB:45:37:CA:7D:15:0A:53:3E
Authority key identifier: 0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
Certificate issuer: /CN=0a220da9b6e295855b627fea610e1cb61646894b
Certificate serial: 019369DA4F644AE0F835B65E7EEB1EFDD6EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
Manifest number: 0EFA
Signing time: Tue 26 Nov 2024 19:02:14 +0000
Manifest this update: Tue 26 Nov 2024 19:02:14 +0000
Manifest next update: Wed 27 Nov 2024 19:02:14 +0000
Files and hashes: 1: CiINqbbilYVbYn_qYQ4cthZGiUs.crl (hash: 5iGAZcuw0x57BUKKG+HATJNVqe/MBD+IHVGpZqDwf2Y=)
2: QSlw35T018bS9HDX-KMHLrpMuOw.roa (hash: jcQehnE3yRgffBvAFI1OMPNKfI+l9JbbPSfH5c9a7ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:4f:64:4a:e0:f8:35:b6:5e:7e:eb:1e:fd:d6:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a220da9b6e295855b627fea610e1cb61646894b
Validity
Not Before: Nov 26 19:02:14 2024 GMT
Not After : Nov 27 19:02:14 2024 GMT
Subject: CN=29677235271a2694331b47eb4537ca7d150a533e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ab:c2:bc:44:06:c7:98:b0:d3:ae:9a:c8:47:
60:14:3f:af:77:c9:79:53:11:58:3d:ba:d8:9a:80:
8e:49:34:ae:04:65:48:48:46:2f:29:54:9a:e8:8a:
0a:58:23:70:7e:b9:f0:d0:59:59:c1:57:b8:99:f5:
76:fe:ac:b4:7c:8f:0a:63:71:bd:2f:87:f4:9b:88:
45:76:84:ee:55:21:a1:a5:b9:14:92:76:ad:5a:9f:
d2:e1:d1:25:27:cf:ef:2d:49:b2:11:88:59:e2:70:
3e:c6:b2:a3:83:b7:b6:d9:53:ba:78:ed:a9:94:9a:
12:42:81:71:77:4b:78:18:4d:89:b2:2a:d3:7e:c1:
8d:15:89:a7:46:a1:7b:46:61:74:09:98:b6:bd:56:
d4:4a:04:a3:9a:f1:56:00:8e:e8:a4:58:8d:c3:be:
25:db:ea:d2:44:4b:93:be:25:99:d2:a2:db:08:8a:
8a:25:10:d0:d9:fd:41:01:5f:2e:75:b6:7e:7e:d8:
89:1a:ec:ad:a8:bb:5e:7d:94:e4:40:6a:f2:7c:18:
a4:46:ec:b3:00:30:6b:1a:7d:40:d1:db:94:ae:c6:
05:c2:16:e1:7a:9b:d8:54:fb:de:bf:1b:ef:6b:e2:
53:11:26:8b:86:b7:19:17:11:e4:a2:03:b1:b7:7c:
32:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:67:72:35:27:1A:26:94:33:1B:47:EB:45:37:CA:7D:15:0A:53:3E
X509v3 Authority Key Identifier:
keyid:0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:5e:00:f6:fe:94:76:c1:bd:24:8d:93:5f:29:b2:78:ec:3a:
63:22:0c:df:73:5a:b5:be:cc:07:15:67:76:cd:d4:3e:f0:48:
c0:78:55:bd:68:d8:45:d3:00:21:54:c6:1c:2b:79:dc:68:a6:
25:4f:52:26:f2:24:a9:23:83:9c:55:7f:41:a6:66:8e:ce:16:
20:8f:9c:d4:0b:c9:b1:40:3b:55:85:49:f7:34:ac:0e:05:40:
14:a2:dc:d7:2f:95:01:4f:88:03:2d:55:81:8f:a0:8d:16:a9:
3b:f6:6b:b1:80:4e:5c:7a:99:1b:b5:a1:d1:c5:b2:3f:57:5e:
6b:ec:33:72:9b:a0:69:9b:17:59:ab:35:f8:a9:8f:3c:67:9b:
e2:3b:37:b2:5b:9f:b5:fb:1b:95:95:88:39:83:59:39:d9:89:
80:3a:cd:08:35:e6:54:55:52:61:59:c2:73:41:21:1e:c9:f6:
3b:43:42:69:dc:3f:c6:25:1f:22:d2:90:46:d8:af:49:22:88:
c2:c2:73:39:a2:1e:be:ad:65:05:4b:95:3e:58:7e:9d:ec:3e:
4e:fc:64:ea:f5:e6:da:c7:09:d4:62:63:ba:72:e3:14:ff:08:
28:71:d4:f3:02:93:7c:ab:fd:27:a7:28:3d:59:72:8d:24:6d:
2d:c0:66:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:12:46 2024 by rpki-client on console-ams.rpki-client.org