Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json)
Hash identifier: GMqMuu1eMT6VQRfKrDm+kZ5ZuXqD3h3zWBWVRY2+pMg=
Subject key identifier: DD:63:BD:C4:8C:CF:25:E7:B7:3A:40:4A:EE:67:70:C9:24:32:53:C6
Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Certificate serial: 0193658DFE9B125138CEE09806E463898CBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
Manifest number: 01F3
Signing time: Mon 25 Nov 2024 23:00:24 +0000
Manifest this update: Mon 25 Nov 2024 23:00:24 +0000
Manifest next update: Tue 26 Nov 2024 23:00:24 +0000
Files and hashes: 1: OryOSgDE24xa4fkZAbyv0f-248k.roa (hash: LFBv1k3+SydS/oCMTGBgDAcgIGaK/9Puc8BY/PlA7/0=)
2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: UHOSs3MKUpsFo/b1U69MPz1VO/X6dbF/80H2O9Q/MCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:65:8d:fe:9b:12:51:38:ce:e0:98:06:e4:63:89:8c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Validity
Not Before: Nov 25 23:00:24 2024 GMT
Not After : Nov 26 23:00:24 2024 GMT
Subject: CN=dd63bdc48ccf25e7b73a404aee6770c9243253c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4c:44:90:3a:d1:ce:88:eb:08:5c:d7:34:6c:
37:3d:9a:aa:4d:76:61:0f:9c:f4:4a:99:93:f4:fe:
ce:18:e8:49:55:e7:2f:30:0e:3f:6a:41:a4:f9:46:
c1:f3:b8:08:f8:17:84:1b:61:22:2c:1b:b7:4a:6f:
1a:86:62:0e:b7:0d:0f:39:41:bc:97:c2:fc:19:f3:
4f:3c:2d:48:d6:d9:c9:4d:e7:d7:95:53:0c:60:30:
98:7e:9f:ba:ff:f7:f7:84:ea:c3:3f:a6:8d:82:07:
54:92:ca:b2:db:ff:24:b8:21:f0:d7:6b:21:c4:cb:
8a:27:f2:c8:8c:7c:38:1a:61:7e:2f:a0:f4:aa:ab:
16:ff:f5:cf:a5:14:07:1b:a3:9f:47:6e:5e:61:f2:
9f:d9:55:98:36:d4:7f:8d:c8:70:17:f1:01:33:5b:
db:c1:51:da:b7:f2:5e:b1:c0:c2:2a:60:31:16:0c:
58:e0:50:04:c6:b1:36:eb:df:df:88:cb:8e:6c:17:
37:50:68:72:62:c6:73:d4:b6:92:2d:2a:ee:97:27:
78:fa:fb:f8:e8:44:73:80:0b:7e:b8:4e:28:83:6d:
36:44:31:4c:0e:26:cb:b2:2c:4f:65:a3:4e:24:b6:
ae:43:66:40:bc:78:95:d1:52:81:20:0f:36:67:3b:
e8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:63:BD:C4:8C:CF:25:E7:B7:3A:40:4A:EE:67:70:C9:24:32:53:C6
X509v3 Authority Key Identifier:
keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:a4:3e:10:d4:66:12:0b:c5:0a:a5:67:96:5c:54:9c:94:af:
3b:be:11:c3:c9:a2:68:3f:f4:c3:6b:2a:bb:7d:12:82:54:9a:
76:83:7d:d1:cc:88:aa:65:12:4f:de:e9:bd:df:63:84:00:ee:
cd:6b:21:ee:c1:07:91:f7:63:0c:7a:5b:b7:52:a9:a5:07:bd:
3d:50:ae:6d:b3:79:c6:27:57:d2:b8:32:48:9e:a6:e5:55:92:
50:38:7b:b3:48:f1:7d:f5:99:78:c1:0f:fe:c4:41:42:c4:c2:
60:e0:25:49:f3:43:c7:19:90:d8:c3:e0:30:b3:a8:a5:7d:c1:
c0:fb:1b:70:2c:1e:73:5a:60:a9:4a:e4:ac:c4:fe:10:80:11:
0d:95:e0:05:42:88:b2:bb:f4:e5:0a:45:21:73:93:9f:2a:c5:
93:84:aa:a0:29:c3:b3:22:b9:3b:8d:78:2c:51:30:e4:98:a9:
61:72:82:0a:a2:fd:7c:0e:5b:79:66:c0:68:70:7f:70:e0:fb:
28:5c:a3:09:d1:b7:29:db:79:99:ef:06:ac:96:c7:0f:24:9a:
3b:b9:d9:97:10:03:2c:81:fe:9f:68:53:cb:fe:d7:c6:03:95:
a1:a9:9e:a9:4f:3f:c5:f7:fd:68:35:e9:e4:c3:e3:ce:48:fc:
9b:f9:2b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:04:03 2024 by rpki-client on console-ams.rpki-client.org