Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
File: vayPM9tKSgF12PjqfKdHUH5-geA.mft (raw, json)
Hash identifier: uUPEr//SpF0HDQper79yI6s7MhYuoZNn21dDHi8Qxw0=
Subject key identifier: 99:1D:25:75:88:98:D0:06:0A:02:8A:EA:28:15:AC:6F:EB:59:5F:90
Authority key identifier: BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
Certificate issuer: /CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Certificate serial: 019352ACA520545C9FA4D187547BEAF98A50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
Manifest number: 0250
Signing time: Fri 22 Nov 2024 07:01:06 +0000
Manifest this update: Fri 22 Nov 2024 07:01:06 +0000
Manifest next update: Sat 23 Nov 2024 07:01:06 +0000
Files and hashes: 1: VupDgUfZredJU4iSjhgIED3HjTE.roa (hash: mJ2qmJYRp5J3qM4j91E6qODcMmzA/NYkiaNNUOBQWzA=)
2: vayPM9tKSgF12PjqfKdHUH5-geA.crl (hash: h9cSZWI0utg+ZFZKsrGyV/jKMWdOKlkO552UOXFnId8=)
3: yNW5_hyXVzvJdrXPEQbcpr7H6Fw.roa (hash: RYacxBTBGHaXgdpp0aFWY6YycbG4NZhkZ7bAbXDgK80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ac:a5:20:54:5c:9f:a4:d1:87:54:7b:ea:f9:8a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Validity
Not Before: Nov 22 07:01:06 2024 GMT
Not After : Nov 23 07:01:06 2024 GMT
Subject: CN=991d25758898d0060a028aea2815ac6feb595f90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fa:42:86:16:9b:ab:94:d3:e4:af:0f:49:bf:
97:5a:d7:7c:6e:47:5f:86:dc:b3:a4:b3:9c:13:62:
81:fd:f8:4c:f3:78:0f:cf:38:cb:36:c5:f5:1c:99:
74:56:9a:cf:d3:bf:78:4c:7d:b0:54:ac:64:3a:ce:
78:96:03:34:2c:e4:b3:bd:fd:20:cf:26:48:e0:27:
6a:84:8e:ff:7b:c0:e7:e9:e2:11:e2:1c:f0:65:f7:
7e:90:84:93:56:eb:8c:fe:70:90:19:f3:cb:35:c7:
6c:aa:b6:37:0f:50:d1:a9:54:d3:2a:2d:a1:fe:45:
3a:41:17:3e:bd:68:14:38:20:54:9c:7a:ce:23:b0:
08:99:50:02:35:fb:f0:5c:f3:12:66:33:fb:06:e5:
10:70:fe:b3:d7:65:27:d6:2c:4f:10:b2:91:b2:02:
4c:a5:fd:4a:97:03:8f:62:9d:de:79:c1:6c:7d:d5:
2f:e8:0e:4d:41:e6:1a:5a:e3:ce:7a:a4:f5:c7:1d:
35:b8:29:03:d9:a1:ee:a7:c2:83:55:e2:01:7a:19:
47:62:29:07:3d:d7:46:74:a8:3b:b2:6b:4e:ec:de:
2c:64:b6:f8:62:2d:e8:1c:91:43:94:24:04:5a:65:
64:a9:24:6f:de:04:f7:9e:45:64:e8:bd:7d:85:54:
04:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:1D:25:75:88:98:D0:06:0A:02:8A:EA:28:15:AC:6F:EB:59:5F:90
X509v3 Authority Key Identifier:
keyid:BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:1d:bf:50:c7:15:27:f5:5e:11:05:02:95:73:8d:d8:48:71:
ee:93:0f:b4:a4:82:08:34:21:e6:2e:9c:ef:26:fb:6f:78:ca:
4a:d7:7c:f6:df:f1:72:59:8c:16:94:fe:6c:22:19:bc:82:0c:
ca:ba:c4:d3:9e:cc:f2:34:ee:88:7f:59:9f:91:32:1e:2c:ef:
60:c5:f8:80:31:21:5f:04:24:b2:4f:93:87:7a:e6:ff:a9:bb:
6c:79:dd:8c:73:9c:54:17:83:66:c1:8c:70:5e:01:46:fb:f7:
1a:78:4b:99:14:97:b4:1a:56:a4:f9:57:de:55:30:bb:8c:2a:
b1:23:13:5c:e4:c5:50:18:40:6d:fd:79:6c:5b:bb:fd:b2:80:
82:91:82:b8:aa:40:71:9e:4a:b2:80:77:93:9a:19:27:58:d7:
1a:20:21:47:6b:8a:54:52:98:8b:08:70:8f:d5:5d:2d:38:bd:
85:41:b9:6c:d9:b3:3d:2f:69:05:27:ae:79:91:26:35:3e:67:
29:f8:b5:24:b4:cb:59:2e:92:c7:cb:7b:3d:cc:06:96:72:8d:
d8:2a:0e:45:f3:0b:35:e4:12:3b:3f:88:da:78:d8:62:75:c0:
db:51:7f:e7:ef:10:d9:2d:33:21:42:0b:94:31:ce:72:2d:d7:
63:98:45:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:34:43 2024 by rpki-client on console-fra.rpki-client.org