Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: 7lXtvnj3TfnxUcV0v+JROxI+oUdb+HQCOiNVw0sr7mM=
Subject key identifier: 84:D9:53:5D:6B:AD:6E:E5:5A:78:1E:71:37:93:86:AE:F8:C3:6A:40
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 01935651BF855B27CCCD7DEA8804A30DC7EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 0153
Signing time: Sat 23 Nov 2024 00:00:18 +0000
Manifest this update: Sat 23 Nov 2024 00:00:18 +0000
Manifest next update: Sun 24 Nov 2024 00:00:18 +0000
Files and hashes: 1: AkA-U0BuZ7bpI1_DEHmgDF8y5eg.roa (hash: 5qrYruXDcHbNoH/db/b2qUDXoP7QNbyebwqXq+ApLVc=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: VVMwMC4hkst5ml0y90RPWOR+WEhrWyP4yr4yniNU8YY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:51:bf:85:5b:27:cc:cd:7d:ea:88:04:a3:0d:c7:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Nov 23 00:00:18 2024 GMT
Not After : Nov 24 00:00:18 2024 GMT
Subject: CN=84d9535d6bad6ee55a781e71379386aef8c36a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:31:fb:38:db:8a:5b:c0:fc:cf:3f:0f:79:ee:
8c:ce:90:fc:a2:33:6f:f7:95:d0:87:f3:42:53:34:
e4:44:24:39:99:ff:d9:89:6c:7c:4a:fa:46:1e:04:
d6:b2:48:f5:a0:16:43:eb:f9:88:81:f6:de:41:0e:
d4:47:98:af:6a:95:25:33:1d:37:28:79:5c:7b:83:
35:aa:77:10:e4:94:b3:c6:ba:91:88:1b:36:33:d4:
2a:80:aa:da:ac:aa:32:7a:26:fc:d1:bd:36:1e:cc:
0e:f7:eb:22:2a:31:b8:c0:8f:ad:d8:28:5f:ec:01:
be:cc:d8:d5:eb:f0:b8:7b:4a:a2:0f:be:37:05:16:
a9:3d:69:5a:c8:2b:ee:04:ca:f2:4a:7c:ca:54:0b:
5f:f4:4c:67:47:3b:69:5d:90:f3:b0:64:17:47:e0:
96:aa:cb:ed:ac:42:74:af:38:28:3a:19:bb:62:4a:
be:68:0e:11:7a:be:80:54:3f:a4:60:3d:15:1c:ba:
02:3c:41:5b:48:c2:76:0e:24:81:1d:ab:2c:f6:7c:
8d:20:b2:cc:da:c4:c5:04:b1:ae:19:6b:9a:22:5b:
e2:e5:0a:c2:e2:48:20:1a:3e:b8:2c:51:f8:89:68:
d5:90:3a:0e:69:54:2b:2b:4e:11:ad:4c:7b:49:b0:
32:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D9:53:5D:6B:AD:6E:E5:5A:78:1E:71:37:93:86:AE:F8:C3:6A:40
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:85:bd:cd:ad:e3:c6:89:a0:7e:c4:12:b8:bb:73:48:ec:4b:
07:0f:38:d0:21:18:99:8b:51:bb:11:63:d3:4b:62:1c:ca:d9:
b7:da:6f:4e:0d:79:de:34:0b:d9:d4:23:c2:fe:4b:12:1f:59:
67:3c:f7:49:e8:1d:c2:4c:d9:b7:93:87:da:5d:7a:52:63:24:
3b:db:2d:6d:da:cf:a1:f4:38:b4:b8:8e:24:cd:34:ef:99:40:
bd:87:25:ed:47:99:b0:bc:ec:50:a1:97:c1:38:18:f7:89:a7:
4a:a2:97:62:07:a6:8e:c8:44:7f:6d:af:74:21:bb:e1:b1:bb:
d1:93:de:e5:5c:b8:e6:d1:f5:ed:e8:d1:b1:ef:6c:ed:1c:c3:
8f:a3:88:e8:7d:40:7e:d0:3c:ec:ea:26:d8:2a:5c:08:9a:90:
9f:bf:53:36:b8:10:d6:c3:a4:6b:99:38:e7:a4:e5:d9:f6:dd:
d3:ea:d8:19:2b:5e:ab:2c:82:90:5b:08:af:8e:7b:3c:ae:eb:
96:5c:29:d4:fd:f1:6b:7c:3d:a6:0b:6f:0f:be:fb:c2:7c:c7:
0f:dd:21:ed:5e:d7:20:ea:22:23:44:f4:28:be:ba:48:95:b3:
5d:81:09:d1:af:3e:e4:e0:9d:6c:8a:d5:a8:76:e7:7d:e2:2f:
d8:14:b1:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 01:58:56 2024 by rpki-client on console-ams.rpki-client.org