Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
File: rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft (raw, json)
Hash identifier: GiT+Tkrsi+yvTe+PTDwMBHh4WegWxb4HlR3p3NpN9GQ=
Subject key identifier: 51:F9:29:3E:C0:B6:74:5C:28:C1:1C:CE:95:50:42:67:36:83:3F:BD
Authority key identifier: AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
Certificate issuer: /CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Certificate serial: 0193640DAB6F98456BB7542CE29B338D0926
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
Manifest number: 0786
Signing time: Mon 25 Nov 2024 16:00:37 +0000
Manifest this update: Mon 25 Nov 2024 16:00:37 +0000
Manifest next update: Tue 26 Nov 2024 16:00:37 +0000
Files and hashes: 1: iHgd1zezjt9_MfnMXWr7BDtlSCc.roa (hash: aZ7uOrpvdOe/tmS1CIT4VYfXiHP5SesjVsiFy3Lucok=)
2: rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl (hash: X68Qcd8Oleg1SmKd5+Pl/7mgwOa22RAa4IAWIjfzTKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:0d:ab:6f:98:45:6b:b7:54:2c:e2:9b:33:8d:09:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Validity
Not Before: Nov 25 16:00:37 2024 GMT
Not After : Nov 26 16:00:37 2024 GMT
Subject: CN=51f9293ec0b6745c28c11cce9550426736833fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cb:a0:63:67:6a:4e:47:47:21:de:3e:51:31:
45:bb:6a:b2:96:59:f6:2f:58:14:d5:39:cf:b8:d5:
b6:07:c8:a3:4a:a9:90:62:a5:1a:3a:e1:43:70:30:
64:72:ce:52:a2:3e:60:86:2b:d9:bc:43:03:db:d1:
f6:cd:fe:ae:a4:3c:c7:0a:4d:1f:cd:be:fd:a5:57:
15:11:b0:18:05:a9:da:64:6f:1a:41:40:54:90:ee:
6e:a2:6e:15:cb:9b:c6:a6:ee:2c:5a:04:c3:37:55:
e0:00:b8:2a:a1:13:d2:17:40:06:80:93:49:b7:cd:
c3:eb:df:96:76:d3:e6:51:04:3a:42:8a:78:aa:7f:
21:20:14:d2:f1:17:f6:87:04:49:df:9b:09:9f:b2:
5d:d3:99:c2:64:cf:aa:28:90:0d:7b:99:10:a4:98:
bc:16:af:6f:18:bf:56:5f:72:37:51:2b:e2:30:1b:
9a:71:e9:96:ca:bd:4c:0e:19:7e:71:e2:10:d0:14:
ac:e0:7f:d8:b4:02:b3:bb:66:7a:bf:12:fb:22:2b:
b2:e3:37:e7:08:55:38:6d:df:b0:df:dd:e2:db:72:
5d:f7:cd:21:2e:76:b2:8a:52:97:aa:a1:08:d2:e4:
95:1c:bc:18:9c:9d:14:38:b3:44:42:e9:97:36:3a:
82:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F9:29:3E:C0:B6:74:5C:28:C1:1C:CE:95:50:42:67:36:83:3F:BD
X509v3 Authority Key Identifier:
keyid:AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:8e:f3:89:d5:01:9e:b3:2b:78:cd:cd:23:ca:88:93:a5:74:
11:bf:e5:50:14:53:f1:f1:b5:9b:85:3f:a4:e8:d4:69:18:11:
cb:24:c1:b7:46:05:e7:b6:16:b9:64:11:5d:38:26:ad:68:71:
bd:44:59:e7:4c:08:27:3d:7d:d3:3f:72:65:c7:fc:97:e9:f0:
a5:7f:04:08:29:db:30:f0:8e:88:91:1d:79:38:40:99:45:26:
1f:11:c9:ab:66:85:5b:e8:12:51:79:70:9f:04:a1:5f:85:a7:
0a:b6:5a:21:cd:88:98:d3:f6:69:da:dc:9f:6b:25:c3:bb:a4:
6c:16:75:af:7a:65:e7:57:78:eb:81:7b:9d:00:22:6c:e2:46:
32:8f:00:e9:00:e6:14:c1:53:f9:8a:07:c3:50:af:bf:22:07:
b9:b1:13:b6:96:8d:aa:07:08:2c:0d:e6:6e:47:55:74:df:3d:
4b:7e:88:9c:6b:c1:0c:42:21:6f:9c:4c:38:96:dd:ab:29:34:
07:59:8c:2b:be:0c:70:6c:37:53:b3:b6:27:cd:e0:45:e3:15:
cb:56:cd:ec:ed:2e:3f:2c:bd:d9:b7:a5:71:60:25:43:a3:96:
01:7c:9b:00:40:cb:2c:df:cd:52:fc:4d:be:dd:eb:0e:eb:cd:
2c:e6:fe:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:30:05 2024 by rpki-client on console-ams.rpki-client.org