Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: jZj781Ap1Tdj/r7GIxQjjJA6irOWQiV+cIT9x6MrdMM=
Subject key identifier: 00:45:49:37:A3:42:D9:0A:EB:F5:7B:96:AD:46:5E:1B:CE:5C:60:5F
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 01935764FF136A4D4D4D7E4E975ECC1943FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 0604
Signing time: Sat 23 Nov 2024 05:00:56 +0000
Manifest this update: Sat 23 Nov 2024 05:00:56 +0000
Manifest next update: Sun 24 Nov 2024 05:00:56 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: 75rTwctmwgHjr4QkHXPN4leDBuNKnMr4z3sz1c9w11Q=)
2: qOsX_uybPOsQvQFRTJA0IasrsE8.roa (hash: 6Fyly/2Xq9mLReDzMa34yM+Jn7YQg77jgGkZ6YRGNlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:ff:13:6a:4d:4d:4d:7e:4e:97:5e:cc:19:43:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Nov 23 05:00:56 2024 GMT
Not After : Nov 24 05:00:56 2024 GMT
Subject: CN=00454937a342d90aebf57b96ad465e1bce5c605f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b0:ac:8f:21:b3:c6:11:47:b6:3b:54:3f:58:
fb:a9:e3:63:20:04:37:2a:b5:95:c2:92:26:96:6c:
57:b8:a5:15:63:5d:97:0c:bb:6e:d1:20:4a:ea:5e:
b4:01:b9:5d:b2:87:f0:29:00:ef:f4:1a:fb:29:49:
d2:22:81:a0:43:2a:39:19:e2:2f:73:bf:65:e9:94:
62:88:74:ae:ef:e2:d3:2b:49:18:77:27:52:19:99:
81:ae:57:bf:35:d9:85:82:af:a6:5f:0f:3c:c3:08:
da:68:98:d1:19:2b:1a:ca:b0:4b:36:60:86:00:e6:
4c:86:37:42:e4:a7:45:2c:dd:b9:7c:27:61:d1:a6:
2a:b0:2e:71:45:9c:03:c0:d8:68:99:30:07:ef:d7:
e4:4b:6f:4c:8d:0d:00:ab:79:f0:6d:6b:f1:8b:60:
52:3e:cf:87:49:98:90:d3:87:da:2d:a9:94:27:d4:
a4:75:d5:a5:18:32:35:b2:39:17:00:a9:02:61:77:
64:13:75:1f:4a:63:bb:fa:48:63:22:5d:70:36:41:
b3:cf:e4:ef:0d:d8:88:d0:61:6f:07:f2:a1:a9:c4:
99:52:d2:d3:c4:f3:ef:5e:4c:b2:48:29:b9:d8:5a:
b3:5e:ee:8e:21:45:66:50:52:99:55:47:95:e5:9f:
76:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:45:49:37:A3:42:D9:0A:EB:F5:7B:96:AD:46:5E:1B:CE:5C:60:5F
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:ca:95:c7:7f:09:48:94:54:6a:77:5f:75:d5:33:b4:ac:a7:
27:f1:31:2e:5b:85:67:d2:ca:15:4d:0a:a5:f5:62:af:92:17:
48:b5:df:28:dc:f0:de:bb:0f:62:bf:31:fd:e0:78:1e:58:38:
62:a9:f7:f0:d2:72:30:34:42:19:2a:a7:91:aa:62:3e:2d:56:
4e:5a:6f:72:2b:0d:ee:8a:53:76:0b:e4:2a:02:fd:d3:9f:9e:
cb:0f:fc:f7:84:3c:5e:06:b4:62:76:00:65:59:39:b4:4c:f8:
e5:3a:87:ce:93:b4:0b:27:e1:9d:44:7d:17:ea:ff:8f:76:2d:
af:9f:4b:13:d6:34:f7:2b:57:98:01:e7:e5:d2:ba:2b:94:45:
35:ad:8a:04:50:41:3e:75:3e:5f:5e:2d:20:a3:68:73:5a:d3:
16:45:55:ba:55:05:e7:7e:5c:54:19:82:f5:9e:34:97:8b:56:
60:6b:d2:18:a9:58:40:19:35:63:7b:78:74:01:c5:b4:31:1d:
06:5a:c1:5d:d9:88:28:42:91:ce:9b:ba:6b:a9:56:b0:2f:86:
38:c2:a1:d8:d6:66:88:66:d0:31:ce:30:bc:c7:31:44:95:5d:
86:86:4d:f5:71:13:4f:b9:2f:13:6c:fc:3d:cf:7e:2a:d6:bc:
27:91:25:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:34:23 2024 by rpki-client on console-ams.rpki-client.org