Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: 8Pfrl5XfeqKm3YmFkOfVQiQ3WaKAitXz5K/IepHnCHk=
Subject key identifier: 37:B9:DF:67:71:56:D1:98:80:33:82:AD:88:55:46:A3:CD:3D:21:9C
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 019405D7F1D50E76B5593B03E25517EEB68B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 55
Signing time: Fri 27 Dec 2024 02:00:25 +0000
Manifest this update: Fri 27 Dec 2024 02:00:25 +0000
Manifest next update: Sat 28 Dec 2024 02:00:25 +0000
Files and hashes: 1: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: H5kp2I7NiYgBxt4dyoOt8Ns5DfdeLI197ZW3XZp2GpE=)
2: HuPwF1XinNop6vv9tGIvVPSz55Q.roa (hash: jGrMSkhI/Z5+Ixu2zzjT5xeF7/aKGqolZ2Bnk9/8oY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:d7:f1:d5:0e:76:b5:59:3b:03:e2:55:17:ee:b6:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Dec 27 02:00:25 2024 GMT
Not After : Dec 28 02:00:25 2024 GMT
Subject: CN=37b9df677156d198803382ad885546a3cd3d219c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:44:72:a4:6d:ca:6a:b7:85:61:ce:c1:08:cb:
14:72:4b:2b:f6:5d:76:50:ea:e5:3b:8c:ac:8b:87:
2b:0f:bc:c6:16:f6:7a:f6:76:19:9e:24:4f:58:1f:
c2:6d:0a:54:26:7e:1c:5b:c8:9d:1e:80:48:3e:12:
34:05:b0:e8:11:4d:c0:2a:e5:6d:42:c8:ca:6b:37:
15:53:34:a2:4d:64:a9:84:90:a9:9e:42:d1:67:bc:
c1:8c:3c:80:80:9f:34:a0:af:bd:8f:ea:c2:a7:f1:
50:80:d3:36:23:52:ce:e7:be:bd:f2:2f:b8:45:6b:
19:88:4c:c0:40:b3:51:3d:41:07:84:96:a6:44:75:
38:1f:cf:ac:7c:5c:65:ad:eb:12:e6:b0:41:6e:73:
fb:7d:fb:45:d1:13:4f:77:1e:6f:75:b0:96:24:71:
e1:b8:85:95:70:ad:c3:f5:60:55:79:4e:24:a1:8b:
56:f0:2e:b8:b3:5d:3d:3b:07:ba:05:3a:1e:c9:47:
f6:36:9a:48:c7:cd:25:37:db:f8:7c:0b:18:64:b1:
32:d3:0d:9f:8e:2b:ef:ac:2e:a4:5c:c9:01:f7:93:
94:48:df:bd:bc:33:ca:d0:fc:c8:b0:31:fc:7b:35:
4a:e7:e0:5f:be:4a:04:2b:0a:6b:2b:69:64:3c:df:
10:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B9:DF:67:71:56:D1:98:80:33:82:AD:88:55:46:A3:CD:3D:21:9C
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:4f:f1:63:ae:71:a4:12:a1:49:d1:da:c9:49:12:70:72:95:
2d:c9:f6:4a:3a:6e:90:ea:9d:97:58:05:25:e7:a1:64:39:f1:
98:f7:08:6f:9f:5b:4a:13:18:86:07:64:e9:ce:c6:7c:29:02:
fc:f9:41:fa:67:0c:1c:60:32:e2:91:20:02:2d:43:3b:f1:f2:
e8:81:f1:d3:90:44:89:a2:8a:5d:e2:00:d0:09:d2:eb:08:8a:
91:aa:4a:43:25:a8:a5:36:09:04:00:4d:4b:82:97:5c:b4:8e:
13:b7:54:70:5e:b8:bd:76:77:49:cc:f1:6d:f9:8c:62:0b:10:
2e:ac:26:d9:b6:61:12:3d:b2:94:4d:40:22:2d:d4:53:17:0e:
cf:e4:59:be:b2:7e:11:19:0a:d1:b2:c3:c2:ca:33:3f:1e:02:
c1:a3:fe:50:91:96:ed:71:dc:db:4c:76:28:33:e1:75:ea:05:
05:2f:cf:aa:f2:28:39:3c:56:e9:9b:78:c4:ea:12:4f:8d:41:
3d:d7:08:49:54:b8:6a:d9:ce:fe:35:3e:95:b6:0b:cd:d9:09:
32:b3:68:2a:ac:e4:dc:83:a2:02:7f:13:65:c7:d3:45:be:90:
bc:39:de:f6:93:e4:4b:5d:5f:d7:44:87:77:97:46:f5:77:15:
aa:81:4a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 09:40:19 2024 by rpki-client on console-ams.rpki-client.org