Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: AW6bpywvKMr5qHmUaA1zOQoCrCBhomBgBvvxRoCQsNA=
Subject key identifier: F5:C3:A1:69:13:12:DB:44:23:F5:AF:CE:6C:B9:3C:68:1F:65:2A:19
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019405A134D6C3575D36F77FA86F99C11AF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 13CC
Signing time: Fri 27 Dec 2024 01:00:38 +0000
Manifest this update: Fri 27 Dec 2024 01:00:38 +0000
Manifest next update: Sat 28 Dec 2024 01:00:38 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: Zx5tmo6FvAWtUYJhp2jiGDjhFvhPrRA1KcVTNbCUdb4=)
2: E25C0n5JGINXhbybGvJ978azomI.roa (hash: Rjrv7enDEiPOlYADuB2KS28ah9u5Aax/bw/GNO0Sf7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 01:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:a1:34:d6:c3:57:5d:36:f7:7f:a8:6f:99:c1:1a:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Dec 27 01:00:38 2024 GMT
Not After : Dec 28 01:00:38 2024 GMT
Subject: CN=f5c3a1691312db4423f5afce6cb93c681f652a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:55:ee:8b:4b:be:a6:90:d2:f6:2a:ff:53:9c:
49:e9:5b:26:83:ca:c4:e2:a0:96:c5:be:3c:69:3a:
83:e8:fb:49:1f:3d:ed:b6:ed:09:17:8e:99:19:fb:
69:7f:cc:a7:05:9c:cf:3b:44:a8:b1:e8:f6:af:b8:
01:b2:e8:f5:15:40:88:e6:6f:78:fc:c4:e4:5c:25:
28:2f:7f:b1:26:c7:36:5e:34:bd:a6:33:dd:e9:31:
fb:cd:9e:ff:bc:8b:ec:2c:7b:63:e0:8c:1a:32:bb:
32:3f:0a:d3:cf:13:d4:cc:db:78:48:54:49:06:3a:
b3:3a:fe:5e:cd:e2:32:2c:3a:73:16:29:0a:11:e0:
37:3c:2b:47:97:d5:a1:a7:d4:e5:13:a8:3d:d6:65:
00:76:2f:16:24:c9:e5:6a:e6:5d:38:86:30:c5:0a:
cd:01:ab:9d:73:7e:f6:7f:b5:db:32:9c:58:78:b7:
e6:57:1b:68:fa:a9:3f:6b:9c:b7:80:2d:bd:30:e1:
fa:29:ca:44:3c:31:11:71:c0:e3:0f:55:14:64:6c:
91:43:ec:f1:ca:d9:db:6a:94:92:ac:e0:8d:a3:d8:
7e:39:84:22:df:a9:35:17:5a:48:df:b4:a0:3a:14:
e1:d6:87:97:69:b8:04:a2:89:bb:c4:e6:ab:b5:e8:
c1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C3:A1:69:13:12:DB:44:23:F5:AF:CE:6C:B9:3C:68:1F:65:2A:19
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:74:ae:71:16:f1:6d:40:00:85:4a:87:8e:03:27:b2:c4:40:
ff:26:25:de:99:b3:7b:f4:96:47:b6:f4:90:89:f8:ad:86:a3:
e2:60:b8:bb:e8:71:f4:b7:45:b6:d5:b9:17:d3:a5:b0:46:ee:
ad:80:4f:0a:9e:9f:35:87:88:72:2b:04:b8:d9:15:27:c1:45:
b4:04:17:e1:c4:c9:fe:22:70:8a:61:cb:d8:1f:07:19:97:c4:
5c:da:d2:fe:da:dd:ca:9f:c3:d3:3d:c3:c8:76:d4:96:ad:7e:
f6:e0:c9:4b:42:f3:83:34:8b:1c:52:87:af:ba:8d:53:52:4d:
17:ca:24:f2:a5:4e:76:8c:ed:70:54:f7:5e:c4:6d:d0:0c:93:
35:0f:0a:52:ba:2d:98:52:bc:36:0d:61:c4:85:0d:44:9d:03:
60:7c:5a:9e:f0:c4:8a:ec:84:15:6c:19:dd:6b:d5:74:47:a8:
c8:9e:98:30:87:06:7e:45:0a:16:b6:88:23:3d:91:cc:71:71:
9a:94:c4:8a:cb:6a:93:40:eb:e3:58:1a:51:6c:2d:37:49:ae:
0a:40:fe:25:41:56:5d:58:d1:f9:2b:82:66:e0:c6:88:9b:1b:
21:f2:99:a0:41:9d:9e:b6:8e:bf:f5:3e:c3:58:a0:ab:b9:e8:
67:76:15:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:46:23 2024 by rpki-client on console-fra.rpki-client.org