Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: FS513dsKgZtJNQp6P1vuzzBZ7O8TmPU4TWlLxwMiTP8=
Subject key identifier: AA:FE:BA:D4:5E:4F:6F:10:D1:8F:12:F6:22:DA:8F:9A:B1:EE:46:B4
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 0193572D7F77F64C99E4F388FA76C10A4FCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 12FE
Signing time: Sat 23 Nov 2024 04:00:19 +0000
Manifest this update: Sat 23 Nov 2024 04:00:19 +0000
Manifest next update: Sun 24 Nov 2024 04:00:19 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: VxSRdb7IoAyziuCwonbyKKfRpJn5vpMBwM6+oDHWecE=)
2: Z56CQs6A7sStVdMkGkUlEFsUdP0.roa (hash: LRMcM1lrbNx6wgxU1mgMVSvTpTU8fNrN1etPpPZ+sy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:7f:77:f6:4c:99:e4:f3:88:fa:76:c1:0a:4f:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Nov 23 04:00:19 2024 GMT
Not After : Nov 24 04:00:19 2024 GMT
Subject: CN=aafebad45e4f6f10d18f12f622da8f9ab1ee46b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:98:75:cc:66:d9:ab:45:46:d1:47:99:6a:96:
01:7e:68:a0:d8:4f:78:d5:e0:2d:83:ba:df:8d:0c:
af:b4:2c:bb:0b:d2:fc:1f:38:20:80:30:1f:4c:42:
0b:aa:3e:33:b3:d2:d6:fd:51:6c:2c:51:b2:d0:d7:
15:0b:e3:44:a5:af:5c:5f:42:33:75:34:e3:7a:d8:
86:bc:5f:af:20:74:99:d9:ff:f2:b1:b0:aa:3a:c3:
a1:85:15:75:a7:57:32:bc:84:be:14:36:5f:15:45:
8c:b2:37:d5:c1:62:6d:b6:9d:d5:cb:55:b5:f3:74:
86:f0:65:09:89:9b:f1:7b:0f:60:8b:a5:d4:08:31:
61:2f:5c:5e:46:15:72:55:75:fe:11:a8:a9:a0:90:
c0:7a:ce:ac:68:9f:31:5b:a1:95:08:18:1f:cf:7b:
b0:93:6f:32:2d:5c:99:b6:30:61:36:d8:2e:a5:ae:
e3:51:f7:e0:23:56:9f:75:11:1e:80:3a:fc:33:e8:
59:f3:a6:e8:71:f0:bd:79:96:34:be:93:36:27:d5:
76:a5:28:af:22:5f:8b:48:84:63:91:e8:a7:f9:03:
94:ec:93:b3:5f:4e:0f:1e:da:1c:9f:1e:e8:31:3b:
df:5b:31:9b:c4:2b:dc:74:d6:1d:d7:9a:6b:60:02:
32:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FE:BA:D4:5E:4F:6F:10:D1:8F:12:F6:22:DA:8F:9A:B1:EE:46:B4
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:75:b6:a2:4b:19:c1:de:0f:47:b8:77:ab:e4:65:b9:25:41:
08:0c:a5:9e:a1:a8:1a:9b:a0:17:d3:0d:3d:d0:50:05:7d:ed:
84:0d:42:3a:1a:dd:6f:be:6a:54:f7:78:32:b4:fb:63:66:18:
2f:b3:79:85:05:9c:c4:f0:ae:c8:d3:a6:08:8f:f7:88:08:b3:
02:56:81:31:aa:ff:50:97:63:0a:92:04:93:1a:d1:1e:42:19:
6e:c4:35:73:98:ec:bc:3f:a0:9a:e8:1b:72:20:f8:a1:00:f9:
7f:d3:a5:6d:a3:11:46:36:02:50:65:f2:db:31:81:21:2b:b2:
8f:72:e7:71:74:a8:2b:6d:ef:98:5d:b7:da:26:49:9a:db:9d:
24:d9:1d:c9:f6:c2:7a:e7:52:dd:c7:86:37:20:e9:bd:02:73:
a2:ee:39:8a:7b:04:7e:9c:39:ef:44:ec:e3:9e:3c:5f:1b:11:
41:d8:88:a8:70:4b:f6:9b:4f:ce:b4:85:87:ac:d8:2b:ea:71:
4b:10:b0:7f:03:9c:0d:e9:26:a3:7c:2a:a8:27:0f:7b:79:86:
16:dc:c9:e6:bc:06:1c:9c:29:38:f1:81:21:e9:73:81:cd:10:
c7:f6:c9:1c:02:18:f0:9c:41:40:3b:c0:60:64:67:7c:70:92:
50:ae:6a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:34:13 2024 by rpki-client on console-ams.rpki-client.org