Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
File: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft (raw, json)
Hash identifier: g8FUcJ8omrtD7pUP5lmHYMgGp4e2yslvFae5FQ59LL4=
Subject key identifier: 06:67:CA:E3:51:3A:4C:27:0F:D7:4B:8B:5B:27:6A:B6:25:D6:73:9F
Authority key identifier: 63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
Certificate issuer: /CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Certificate serial: 0193696AAC32FA1C60E39A9B8BDA980B8FBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
Manifest number: 06AF
Signing time: Tue 26 Nov 2024 17:00:18 +0000
Manifest this update: Tue 26 Nov 2024 17:00:18 +0000
Manifest next update: Wed 27 Nov 2024 17:00:18 +0000
Files and hashes: 1: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl (hash: Mjcu+JExHqF2t1JucuNoKSx4heDqLWQaUIS2+o4bNBY=)
2: bOoREXtlYnAg7vW6xIiKS8u7daE.roa (hash: 7hzzHPRY2rsrpgV5JVxCI6fvofkxsaLgHVcg8lMTGps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 17:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:6a:ac:32:fa:1c:60:e3:9a:9b:8b:da:98:0b:8f:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Validity
Not Before: Nov 26 17:00:18 2024 GMT
Not After : Nov 27 17:00:18 2024 GMT
Subject: CN=0667cae3513a4c270fd74b8b5b276ab625d6739f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e7:ce:63:4b:0b:3e:90:33:97:2d:7a:b0:b2:
2d:8c:66:c8:33:70:e4:75:85:df:f0:a4:c1:c2:ae:
02:04:99:a1:f7:e2:09:6d:1e:b7:f0:94:ce:2b:cf:
bc:3c:70:ea:ab:ca:ce:69:93:9c:f5:8f:90:f6:c3:
e7:04:25:2e:66:24:63:f0:4a:a1:f3:33:a5:ee:32:
7e:76:42:19:bc:00:38:91:1e:95:6d:30:16:07:b6:
f3:a7:9f:f2:7f:6a:3b:44:49:02:97:92:2b:be:33:
58:59:25:ad:ca:51:d1:f2:7d:47:b6:37:d4:a9:f1:
7b:55:3c:a8:d6:26:0a:70:56:39:af:fd:bc:82:55:
d3:0d:17:43:01:70:0e:1c:ae:99:0f:bc:91:e1:24:
24:c9:f5:d4:75:96:7c:72:00:9f:31:a0:85:4b:e3:
82:ea:df:31:3d:b9:a2:bc:d4:85:80:fc:b9:0e:7d:
51:55:39:81:bd:7f:ef:82:6c:5e:a1:0a:a2:a5:81:
b4:1b:e2:a0:66:4f:4c:86:62:61:70:fe:68:32:d3:
fa:ef:4a:3d:79:44:08:6b:03:d5:19:a4:1e:39:70:
7d:40:55:52:a8:b8:10:b9:ec:88:79:9d:c7:c4:25:
c1:5b:5a:c3:19:e5:4b:00:0a:e9:2f:38:41:8e:8f:
5b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:67:CA:E3:51:3A:4C:27:0F:D7:4B:8B:5B:27:6A:B6:25:D6:73:9F
X509v3 Authority Key Identifier:
keyid:63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:cc:f2:6d:43:c8:77:fd:1f:ce:60:05:23:6b:59:6a:eb:66:
89:0d:5d:c2:7a:44:4b:50:e9:3d:e9:de:f3:72:86:a6:01:d7:
14:40:eb:9c:32:2f:b4:50:0d:d3:0f:98:3b:ce:e9:2b:49:2d:
63:fd:44:4e:c1:09:76:d8:d9:fe:1f:3d:4f:bd:33:91:6d:41:
a0:2f:f5:00:72:01:77:eb:18:dd:bd:cd:be:38:d8:c1:13:fe:
ec:fd:1c:25:f6:88:d9:0e:28:29:69:f6:b8:b6:08:34:c6:50:
8e:43:06:eb:e0:25:56:a8:8e:91:14:48:b7:7c:e0:ee:d2:95:
d3:f2:f5:ec:5e:98:5b:e2:ea:01:3e:27:e6:13:d4:c8:3f:af:
2a:7b:38:50:85:c4:8f:1d:3e:41:f1:65:24:6b:c4:d8:3f:1e:
6d:8a:77:36:3a:5c:65:3c:87:e9:14:c1:b5:7c:ad:f2:c0:30:
bc:3d:2b:4b:57:63:08:c7:e5:f5:a9:14:6d:6e:73:b8:14:a9:
e9:7b:2a:6c:3b:f3:a1:77:0e:9f:e5:26:ed:5a:81:48:5a:85:
f1:d7:cd:72:de:e6:25:06:04:c3:ec:32:56:6d:1f:61:9e:95:
ca:75:e2:cc:07:4c:07:35:89:eb:09:a5:13:fa:9a:34:ba:3d:
0d:d5:83:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:35:41 2024 by rpki-client on console-fra.rpki-client.org