Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
File: 3xRM6OjkQV5chqCygEmaOFwU7_I.mft (raw, json)
Hash identifier: eu/+R9voUSMB7ZnuVHL02ohAL9fnIMijiCcsliARchE=
Subject key identifier: 01:1B:81:8C:6F:3B:E3:14:1A:24:F3:F2:EA:32:A9:E8:A2:3E:B8:C0
Authority key identifier: DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
Certificate issuer: /CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Certificate serial: 019356895FA38A761FFC2F79A0E539B19BBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
Manifest number: 09E7
Signing time: Sat 23 Nov 2024 01:01:03 +0000
Manifest this update: Sat 23 Nov 2024 01:01:03 +0000
Manifest next update: Sun 24 Nov 2024 01:01:03 +0000
Files and hashes: 1: 3xRM6OjkQV5chqCygEmaOFwU7_I.crl (hash: QL1oyTmRs+XF83LfNEo2SSQ+/ibLi+qYHIaYvr8y71g=)
2: Ionh0DTWiZST1FtQc7ZGyQjv7xI.roa (hash: TXophHWIFw024dqMcLQhIyFDalBhFMyL3C/vX1U+Y1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:5f:a3:8a:76:1f:fc:2f:79:a0:e5:39:b1:9b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Validity
Not Before: Nov 23 01:01:03 2024 GMT
Not After : Nov 24 01:01:03 2024 GMT
Subject: CN=011b818c6f3be3141a24f3f2ea32a9e8a23eb8c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ec:bf:b1:95:a8:d7:aa:71:83:2c:24:75:4a:
55:68:88:68:6e:10:50:c5:e2:82:cf:6c:64:27:f1:
92:96:1c:b5:3b:f2:0f:29:56:6c:cf:3a:05:a4:29:
84:95:64:9f:cf:7e:d9:aa:91:b8:ee:3e:65:4c:11:
0b:7d:21:08:ee:96:e8:42:c0:b5:f6:3e:2f:6e:84:
eb:93:0e:fe:f8:68:5a:c6:f4:6d:5b:9e:83:65:6b:
19:6d:c1:ab:03:d2:36:f6:c5:da:1d:a4:51:d4:4e:
fa:11:f5:7c:67:4f:c3:f4:d4:05:94:05:f0:16:b9:
91:bf:d9:4b:2e:bf:e7:fa:e2:8a:af:40:82:34:1c:
0f:cb:35:cc:2e:3a:d4:ad:e4:01:1b:a8:98:4c:c9:
a2:e7:5e:e7:14:d4:aa:2d:78:66:42:08:d8:2e:ba:
33:dc:5e:5c:e3:97:3d:ce:91:60:e7:a2:dc:46:2d:
93:87:16:6b:83:55:f5:1a:46:83:8e:f6:90:76:e5:
47:25:bf:9d:b6:cd:0e:58:de:5d:3d:92:f5:ed:fc:
f3:d2:e6:6a:8b:ce:ef:d9:9f:95:9d:02:36:f3:86:
e9:cb:96:72:79:0e:92:ef:55:c7:25:de:ba:06:a7:
f2:53:07:1d:71:87:6e:9f:5e:de:06:8f:3d:eb:d3:
c7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:1B:81:8C:6F:3B:E3:14:1A:24:F3:F2:EA:32:A9:E8:A2:3E:B8:C0
X509v3 Authority Key Identifier:
keyid:DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:51:6d:3d:c9:b7:7a:5c:e1:50:3f:f3:1f:7a:7b:d7:2a:42:
21:68:e0:c3:6f:89:68:d0:5e:b7:81:a9:60:d0:92:6f:d1:b0:
d4:2a:f6:8a:9a:c1:ca:ee:d6:04:4f:c5:5c:ec:3d:72:17:04:
c7:fa:43:9d:0d:36:14:72:01:f5:c5:b0:69:02:64:7b:ab:5c:
aa:f1:99:9e:e7:6c:13:28:ce:97:84:73:b0:81:67:01:97:88:
e1:d9:42:e2:a8:e4:b5:e4:66:8f:54:a1:fb:eb:86:ec:08:aa:
be:c0:02:7f:26:51:e3:05:7a:81:86:74:fa:cd:5c:a2:4e:6f:
f5:bc:9c:4a:c8:a5:7c:e9:82:d6:f4:5d:b5:c5:76:35:4b:9e:
8c:f2:04:4f:9a:8d:fe:fe:d0:3f:15:ad:24:19:82:a6:c1:64:
f4:92:6b:a4:38:ad:ca:ff:c7:20:d7:9f:52:6d:27:da:3f:29:
4c:07:cb:32:b6:7c:2d:f9:f6:53:c4:94:40:14:d7:38:2c:ed:
fb:e7:25:02:d3:b6:b4:c7:96:f2:73:2d:1d:89:87:86:b9:c2:
0b:d5:0e:8f:5a:a1:bc:95:1d:68:51:a1:78:24:91:9f:43:9f:
7f:5d:02:41:29:03:6a:fe:06:f2:d3:e2:60:c0:f4:f1:d1:50:
d0:3e:f5:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:14:04 2024 by rpki-client on console-fra.rpki-client.org