Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
File: oTRxtQAqTrZJYSXPWHN_Deutrns.mft (raw, json)
Hash identifier: xBrdrCQQNwfIkFLKKK8310ufMMdTJDyFvqKntMO6z2I=
Subject key identifier: 2F:D5:5C:5C:60:42:11:6B:A2:FD:DE:B5:C0:E0:ED:53:12:00:08:2D
Authority key identifier: A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B
Certificate issuer: /CN=a13471b5002a4eb6496125cf58737f0debadae7b
Certificate serial: 0193553F5F20A8E92D0B909F36B6F4C5A5BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
Manifest number: 02F5
Signing time: Fri 22 Nov 2024 19:00:36 +0000
Manifest this update: Fri 22 Nov 2024 19:00:36 +0000
Manifest next update: Sat 23 Nov 2024 19:00:36 +0000
Files and hashes: 1: ScBg_VrIhznoT-a2bUofdoGZFpw.roa (hash: 91nMNiKEZ2+O85Sz0QTX6EFeJ/XdbvNBpvm1pMxPowc=)
2: oTRxtQAqTrZJYSXPWHN_Deutrns.crl (hash: GVszMqmQ7oZoJQHiAq/LaE2WerBX3gZZKNEYdmTwS7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:3f:5f:20:a8:e9:2d:0b:90:9f:36:b6:f4:c5:a5:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a13471b5002a4eb6496125cf58737f0debadae7b
Validity
Not Before: Nov 22 19:00:36 2024 GMT
Not After : Nov 23 19:00:36 2024 GMT
Subject: CN=2fd55c5c6042116ba2fddeb5c0e0ed531200082d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:38:20:7b:d6:fc:9e:35:18:86:4d:2e:0d:f5:
df:c6:35:e1:cc:b1:ed:4d:e1:79:e4:cf:ec:41:02:
61:0a:1c:56:94:78:b0:18:31:56:bc:d7:26:e6:30:
46:54:1e:3d:2c:16:3f:b8:dd:01:27:8b:5a:3b:fc:
ea:bf:bb:7e:7d:67:37:cf:24:2c:7c:07:83:6a:f1:
f5:cc:e8:23:67:75:aa:a9:4e:d6:c5:14:21:0c:8b:
73:33:5e:4d:3d:06:9b:65:9d:d0:dc:13:15:10:af:
05:f7:c9:d4:c8:46:a9:09:d0:e6:ee:4b:c4:20:62:
5b:9f:93:ff:ce:87:59:5b:11:e6:87:6b:26:33:79:
77:de:c0:34:3b:7c:13:40:17:29:f0:66:c3:61:24:
2a:40:34:eb:01:5f:0c:72:39:ee:5a:f9:56:b4:b5:
b5:89:05:1f:1e:04:97:10:94:02:ca:fe:35:c7:9e:
a2:05:21:33:85:24:52:bc:6e:3e:6e:8f:b1:5c:bc:
c2:8c:cb:9d:99:1e:f9:6e:44:ee:3e:f9:26:f3:ef:
fd:96:58:f0:c1:66:45:e8:49:21:44:b3:4a:c2:bf:
6e:12:b4:3e:7f:c3:73:32:dd:9b:8e:5b:3f:bb:11:
ff:66:6b:e8:24:ad:1c:e0:40:2c:0f:00:27:e7:17:
c9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D5:5C:5C:60:42:11:6B:A2:FD:DE:B5:C0:E0:ED:53:12:00:08:2D
X509v3 Authority Key Identifier:
keyid:A1:34:71:B5:00:2A:4E:B6:49:61:25:CF:58:73:7F:0D:EB:AD:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTRxtQAqTrZJYSXPWHN_Deutrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d9e87b-450a-4152-a242-d6910b21ab42/1/oTRxtQAqTrZJYSXPWHN_Deutrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:b9:c5:88:0a:4e:61:a3:85:2a:46:1d:95:a1:31:02:c1:fe:
a2:52:d5:39:29:73:e5:16:d1:5b:b4:41:20:d9:69:46:24:1c:
c5:17:dd:ab:78:c0:fd:53:d2:66:d0:7d:7e:c6:32:9a:1f:ab:
66:62:cd:d6:f8:b4:c8:54:ae:2d:1d:52:0a:b8:67:04:7f:b6:
3b:f0:58:f1:3f:69:95:3d:ff:5c:95:6c:4e:db:c2:d3:e8:c9:
ac:c8:f4:14:44:72:8a:d3:f7:8e:e6:e7:53:e0:74:59:6b:41:
eb:bb:7f:3e:d0:a4:24:36:bd:fe:9f:9b:c7:91:19:cf:41:21:
ee:02:c9:91:a4:5e:5e:2a:f7:2d:7c:76:dd:c9:f1:87:7b:c4:
77:6a:ca:18:b6:64:c5:96:7f:05:a8:e5:7a:8b:ce:a4:8e:1e:
d9:41:08:9f:e2:c9:c7:1a:ab:b2:ec:1c:5a:b3:35:9a:7a:bd:
bf:b9:29:3d:45:60:fc:90:e1:29:8e:ae:67:38:1a:f4:43:65:
9c:5e:15:cb:93:a0:12:a2:3c:c7:c4:49:35:b6:b1:68:e3:d3:
c1:7f:9e:15:56:3b:72:c6:74:3a:9c:a4:5e:58:7b:a6:59:40:
cb:31:d7:1a:b9:ca:d5:74:91:25:b5:e2:59:53:e4:bc:8a:c6:
17:b4:61:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:50:45 2024 by rpki-client on console-fra.rpki-client.org