Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
File: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft (raw, json)
Hash identifier: NsME8y0z1Tl8shcQ7ExlXmavfCCNEH5IPsYSfkTxfb0=
Subject key identifier: 09:BA:8C:7C:C6:FA:EB:01:84:A0:AE:ED:FA:6F:08:89:5E:1A:DB:E2
Authority key identifier: 64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
Certificate issuer: /CN=64aec8024caa103a8412696c7e72f77803cd8695
Certificate serial: 0193640E47CC905CB9BD92AEA46A203A733F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
Manifest number: 0DB7
Signing time: Mon 25 Nov 2024 16:01:17 +0000
Manifest this update: Mon 25 Nov 2024 16:01:17 +0000
Manifest next update: Tue 26 Nov 2024 16:01:17 +0000
Files and hashes: 1: M8D2oWoLzCo50h7HrDot1bF5bAo.roa (hash: EIrlUtOWD7Fb/1whKOk42NdU2qs74s+uzlzQPeYk1D8=)
2: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl (hash: t8JgEh2a1fduzGU81BzPr2MOJQHsqPenlhSm4NRKHAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:0e:47:cc:90:5c:b9:bd:92:ae:a4:6a:20:3a:73:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64aec8024caa103a8412696c7e72f77803cd8695
Validity
Not Before: Nov 25 16:01:17 2024 GMT
Not After : Nov 26 16:01:17 2024 GMT
Subject: CN=09ba8c7cc6faeb0184a0aeedfa6f08895e1adbe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:65:61:c3:e5:1f:0b:97:d5:2b:13:54:79:79:
e1:4f:9d:35:72:86:d2:67:b7:70:21:d7:ae:81:31:
80:c0:06:2e:75:aa:be:4e:bd:57:d6:4e:89:53:db:
91:65:c0:84:b2:f5:b1:cc:30:3b:3d:98:5a:81:b8:
6a:f8:d3:71:87:6e:c6:a5:6e:50:89:82:eb:2a:a0:
a5:f1:e5:e9:f5:64:d9:e1:ed:c8:19:60:21:b4:6f:
0a:f4:08:7e:d2:39:eb:00:e3:33:90:b1:b6:5e:9e:
ee:29:b1:db:3c:b7:04:c9:a9:ca:8a:43:05:a9:0b:
b6:a6:3c:68:d3:93:c6:4b:ce:47:ac:af:bd:61:ce:
9a:a1:71:a5:fb:2c:7e:8e:e7:35:db:23:81:c4:e8:
b6:8b:6c:35:8a:31:83:03:72:7f:14:c1:0a:68:35:
67:db:30:3b:bc:ed:d0:ab:a1:8d:15:c2:42:4e:ce:
31:bb:2f:af:db:7f:9c:cc:31:83:a4:22:0c:86:e1:
59:8b:18:a3:9d:2d:b1:21:93:16:64:44:62:c0:e5:
fc:59:76:39:93:7d:a6:fa:e2:6b:32:c7:93:ee:94:
2a:d7:82:b0:bd:c1:8f:91:6d:89:58:ab:5d:fe:2c:
fa:49:b6:ab:53:97:3b:77:56:ee:50:e6:bf:35:9f:
bc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BA:8C:7C:C6:FA:EB:01:84:A0:AE:ED:FA:6F:08:89:5E:1A:DB:E2
X509v3 Authority Key Identifier:
keyid:64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:a7:2b:3b:ef:5a:a3:90:4e:7c:01:78:39:ad:c0:e2:56:68:
ba:e2:d6:c8:26:75:8c:85:75:4a:8e:fc:84:44:10:d8:83:4e:
e1:ce:52:32:6f:69:34:12:f1:e8:07:62:65:35:d8:01:c6:f0:
9b:ef:9d:43:91:ec:58:e8:09:37:bd:1a:dc:74:6c:86:de:94:
6c:7e:80:84:26:15:c0:9b:4c:e7:1b:42:95:19:ae:7c:88:9b:
9e:76:c5:bd:14:a6:e9:3f:fd:ca:9b:12:14:ef:eb:65:fe:1b:
96:5c:6d:bf:5c:c6:11:fc:a7:7a:6d:c1:a1:9e:46:7a:f4:b2:
c0:da:21:d2:49:d7:da:c6:ab:40:06:24:51:41:28:4c:da:9a:
a7:1f:0d:47:31:92:07:01:91:f9:63:ec:ad:45:b1:13:40:8c:
42:54:c5:27:1d:76:7e:ab:7b:68:e0:ac:a1:ee:40:ef:e3:cb:
59:ab:e6:68:43:e8:8a:b7:7d:bc:7a:e8:c1:e4:58:f4:b1:e7:
ed:b3:7a:85:22:fc:f6:dc:76:86:6d:7e:a7:0f:a9:4d:15:4b:
ac:86:8b:a6:cc:94:f8:d6:72:60:51:ca:fe:e6:9f:b0:ea:bc:
67:55:2c:69:bb:e6:1e:c0:50:87:22:ec:91:14:e7:1b:7b:b0:
5f:44:4e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:21:45 2024 by rpki-client on console-fra.rpki-client.org