Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: 44LU2kIWmZEI9Ad/kbvtLdnN3PeafNPwVQr1iCdV8G8=
Subject key identifier: 80:FB:09:83:62:A4:96:F5:BB:29:04:90:62:47:E8:8B:A5:D7:9B:80
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019406EB22E691BD2D8F876B7488225F4A0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 13CD
Signing time: Fri 27 Dec 2024 07:01:00 +0000
Manifest this update: Fri 27 Dec 2024 07:01:00 +0000
Manifest next update: Sat 28 Dec 2024 07:01:00 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: q7PnkcfpJWlvqARkUEuV3IVU2GM0tPv6h4xMf0wS4TE=)
2: xfklWPccq07hGEXg7TlS-PEm7TY.roa (hash: dkyLEMb8YMytuJxEOC8Tvk+ZVoYaGttDD7a4tKtP3XU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 07:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:eb:22:e6:91:bd:2d:8f:87:6b:74:88:22:5f:4a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Dec 27 07:01:00 2024 GMT
Not After : Dec 28 07:01:00 2024 GMT
Subject: CN=80fb098362a496f5bb2904906247e88ba5d79b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:40:16:6b:c9:1e:ad:fa:21:f1:df:66:d8:eb:
bb:ee:48:a6:0a:e3:3b:44:8a:99:23:7c:07:ed:1e:
e9:96:c7:b2:f4:c7:bc:97:0a:2b:df:53:84:e1:f5:
c7:ab:60:23:0b:b1:4d:38:36:ca:d8:fb:71:08:2e:
b8:a9:2a:4f:5f:64:79:5c:69:6b:90:c6:57:fe:15:
d0:ff:98:5b:df:76:45:07:bd:03:d2:0c:e0:e3:ff:
d7:99:59:a9:b4:88:56:e8:7b:8c:1e:d7:c4:1d:84:
9b:47:d0:61:8a:63:25:19:8d:97:81:40:72:7a:89:
f8:ce:70:fd:7b:7f:78:04:0d:77:f4:c4:22:17:bb:
a6:a7:0d:1f:0d:7d:c2:85:ea:55:0d:fa:41:8d:f3:
c0:ba:50:8b:b3:57:dd:6d:6f:21:b4:e3:e5:c9:39:
65:80:e3:c6:b9:f8:ce:5f:d2:34:14:b5:e7:9f:d7:
0f:8f:b5:08:17:d2:29:bd:02:6a:89:a0:78:bf:90:
dd:b1:d5:8a:a0:43:82:c3:a0:f7:ab:85:28:bd:2f:
25:46:3e:0e:58:97:b5:0c:d0:ab:34:e1:5a:c4:fa:
d0:dc:82:a2:f9:ab:0f:a6:85:f3:7f:9f:88:f9:7e:
99:74:6a:6d:91:e0:1a:77:89:32:12:73:38:28:d8:
a5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FB:09:83:62:A4:96:F5:BB:29:04:90:62:47:E8:8B:A5:D7:9B:80
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:bd:b3:cb:dc:7c:6d:c8:85:5e:e5:73:9d:6a:84:1e:b3:4e:
00:cd:58:2e:a6:ce:fc:7b:9c:df:b6:91:4d:f2:5a:c7:4f:d4:
bf:ce:05:6e:c6:29:9d:aa:d5:95:97:89:b1:80:f0:02:0e:c7:
b2:29:68:61:52:cd:8d:b6:1d:29:0d:db:68:5b:ae:63:31:d4:
19:02:d5:69:6e:de:e3:5d:ca:17:20:63:ec:be:ae:5a:8b:c0:
f9:75:c4:64:1e:ba:2a:41:3e:0c:ef:9d:04:60:64:80:2b:0b:
29:da:73:0d:b1:c7:e3:d5:09:3d:11:e1:01:15:84:02:d6:06:
ba:5a:c7:66:5b:c8:8a:03:f5:1e:3c:0b:0c:27:65:64:13:e0:
3a:3b:d7:11:a8:b6:62:18:3d:9a:a6:9f:1d:76:10:6a:ef:04:
d4:b1:fd:a1:0f:e3:26:e5:6e:69:00:f3:09:50:d3:fe:7f:6c:
4e:9d:bd:cf:34:4c:be:8e:fc:a9:cc:3b:ee:5f:dd:c9:5e:44:
78:92:d7:8f:be:82:98:7a:98:3c:20:6a:f8:4e:fa:2e:ae:dd:
75:64:f2:0d:8b:f4:45:41:69:85:5c:4f:5f:06:d3:45:05:54:
48:bf:f1:77:7c:93:d5:9c:18:99:45:8a:b8:af:94:ef:0f:b8:
08:62:2d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:46:25 2024 by rpki-client on console-fra.rpki-client.org