Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: QiQrHdgs80kozhwXX/eSKDAXOn8iffY/tit3mMXV304=
Subject key identifier: 40:C7:72:32:F7:F0:07:4A:53:21:02:5E:BF:72:E3:34:B1:B2:1A:0B
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 0193647B2FBC75086BD0B4930F5B5B8092E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 06C4
Signing time: Mon 25 Nov 2024 18:00:14 +0000
Manifest this update: Mon 25 Nov 2024 18:00:14 +0000
Manifest next update: Tue 26 Nov 2024 18:00:14 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: /CpwdEWDoWPAed1NLNRgvfcg9bHb9yuCZu4gWDzgQ7g=)
2: Ulvl40-jwIkAlBIvkCaF-OyibbE.roa (hash: IJ/wnlhUpehRsgnOjRyD3Fof5LjyHzD92RCdoIKJSr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:7b:2f:bc:75:08:6b:d0:b4:93:0f:5b:5b:80:92:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Nov 25 18:00:14 2024 GMT
Not After : Nov 26 18:00:14 2024 GMT
Subject: CN=40c77232f7f0074a5321025ebf72e334b1b21a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:48:1c:ed:89:8c:69:fb:78:c5:d4:06:ed:2e:
b1:98:1f:2d:9f:27:0b:73:15:26:20:46:87:3b:90:
cc:fd:90:6e:f7:2d:24:3c:9a:93:7d:41:a5:8a:c6:
84:b3:15:c0:ba:0c:99:54:d1:e9:27:8e:84:8b:39:
fb:55:73:84:a8:d7:8f:4e:11:4c:d0:9c:69:23:72:
f0:cc:b2:1a:b8:5c:b7:a9:27:24:3a:24:b4:e6:14:
87:d8:5f:50:4d:61:62:86:28:6b:70:4e:6b:33:f5:
66:bb:a8:0e:37:44:84:a1:7c:5d:5d:b8:97:54:bb:
e7:eb:55:47:e2:6a:a2:8c:39:08:cf:03:03:d2:38:
cc:aa:49:39:20:a9:30:9c:0c:d8:15:28:e6:6e:f4:
bb:43:3e:13:10:8a:3a:ec:02:38:05:cb:bf:d2:f3:
e1:81:5d:47:c6:ac:eb:e6:55:a3:0c:5d:fb:a8:8d:
13:98:fc:63:e8:23:4d:a5:95:b6:9d:fb:a2:8d:11:
7b:b6:5e:fe:e2:c1:e6:59:f7:40:37:cd:93:98:ff:
a7:b6:1e:ff:7f:7f:a8:b9:86:6f:92:f4:18:f5:66:
b3:31:19:18:b0:08:42:3e:4c:16:f1:6f:d9:dc:5c:
9f:98:91:b8:65:6e:5c:25:77:0e:72:65:59:b7:cc:
2d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C7:72:32:F7:F0:07:4A:53:21:02:5E:BF:72:E3:34:B1:B2:1A:0B
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ac:90:ab:d4:57:39:e8:13:14:b9:a2:d7:f0:97:72:58:30:
2c:c0:d8:f4:e0:35:fe:fa:72:1b:e0:93:7c:1b:a3:9f:d1:a1:
6c:2d:a7:9e:37:92:69:ff:f9:1c:51:63:90:07:46:23:a1:03:
74:07:0e:36:3f:79:12:b0:23:57:f3:f6:80:66:23:54:a8:a4:
4d:c6:56:a3:da:7a:21:f0:92:eb:9a:9c:30:4c:a8:6a:8c:72:
f8:81:ac:80:8b:36:06:ae:ee:21:a9:4f:21:ad:9b:e4:7a:d0:
b1:6e:b1:14:16:5d:ce:5d:fb:61:79:bf:3e:7c:b6:61:5d:51:
01:b2:0a:b8:6e:cd:f1:37:36:11:cf:9a:a8:b3:79:51:be:75:
07:83:94:8d:1a:3a:15:68:bb:d0:0b:e2:b1:e2:49:10:33:ca:
27:ca:fc:56:f5:73:fa:63:bd:1e:cf:b9:6a:8c:07:78:10:a0:
54:7d:e4:02:e7:8d:1a:1c:5a:7e:7e:5d:24:79:10:70:f2:1b:
4e:dc:81:7d:48:93:ff:14:03:9b:00:16:c1:86:64:5d:95:70:
89:19:27:79:09:bb:b5:1f:f7:81:e0:bb:d9:82:e8:8f:a2:e4:
1d:62:30:a2:0e:d1:fd:45:b1:78:5a:1e:d8:91:42:4d:17:7d:
19:8b:8f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:50:42 2024 by rpki-client on console-ams.rpki-client.org