Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
File: gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft (raw, json)
Hash identifier: F+4/eM2+elg3RtCjDIIya0JTyx8WY5bNYkTtRwIw068=
Subject key identifier: D0:60:33:72:02:5A:9E:AB:DD:F7:2F:DC:14:52:7C:4E:CD:45:C6:2E
Authority key identifier: 83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
Certificate issuer: /CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Certificate serial: 01936933E7E895D127B652CC10CFBF08B79A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
Manifest number: 0CDC
Signing time: Tue 26 Nov 2024 16:00:29 +0000
Manifest this update: Tue 26 Nov 2024 16:00:29 +0000
Manifest next update: Wed 27 Nov 2024 16:00:29 +0000
Files and hashes: 1: gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl (hash: BEM/Ak7qKTwd1GijRZ/plNaN7MMSptBQ2YtX+KLS+SE=)
2: imLZssAe-MMZM-TmLaPB7WdKAeY.roa (hash: nhnjBqowZqyblgzzglm88wDCjGNWryeBXHaBbj/vkTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 16:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:33:e7:e8:95:d1:27:b6:52:cc:10:cf:bf:08:b7:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Validity
Not Before: Nov 26 16:00:29 2024 GMT
Not After : Nov 27 16:00:29 2024 GMT
Subject: CN=d0603372025a9eabddf72fdc14527c4ecd45c62e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:de:d1:c9:7e:4c:36:6e:ff:14:0d:eb:e2:7c:
38:fd:39:2a:ef:10:6d:8a:38:36:9b:36:dd:ed:53:
a7:60:c9:f8:94:be:82:34:57:75:8c:67:76:24:b9:
30:e7:f2:3d:22:d1:c4:99:8f:f6:25:b6:28:08:c7:
a1:a5:5a:7e:30:88:59:20:00:73:7e:ca:f5:67:a1:
b8:8e:4f:56:f0:70:45:7e:f7:c2:8e:a5:03:d6:ba:
9e:b6:10:76:6a:db:c9:b8:9c:52:84:aa:c2:ec:e8:
60:f4:69:3d:00:4a:2c:94:d5:cd:92:0b:0e:16:bf:
57:8a:90:fb:cc:24:71:c9:14:14:13:19:81:50:d9:
92:27:47:5a:77:19:db:09:b2:92:f5:60:15:ce:7e:
dc:9d:b1:5d:5f:9f:2e:04:8e:c2:32:b2:0f:a3:75:
63:b5:7b:96:b1:35:7c:dc:5b:41:bd:07:5a:e8:02:
6c:1d:7f:0d:46:65:b4:1a:c1:15:b9:0a:9c:32:72:
b2:b8:e1:29:1c:89:58:a0:74:86:43:6c:45:93:2c:
b1:56:d6:f2:5f:e1:05:08:5c:b7:74:0b:5a:f7:91:
50:af:bd:76:52:e7:46:d7:fb:ba:bb:81:84:ba:9d:
72:30:15:34:e6:fb:0d:b4:28:f1:2c:26:eb:6e:3c:
39:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:60:33:72:02:5A:9E:AB:DD:F7:2F:DC:14:52:7C:4E:CD:45:C6:2E
X509v3 Authority Key Identifier:
keyid:83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:bb:ec:12:97:1b:89:a2:21:91:01:50:21:26:f8:9d:33:13:
8d:e4:ce:f1:eb:32:39:4e:a8:e6:b2:67:d7:46:b7:aa:ab:9a:
f5:f0:94:8c:0a:32:2f:a6:1b:2f:e5:a3:af:92:e1:d0:38:66:
43:ee:d2:a4:24:58:f2:47:44:0f:0b:5e:d0:ea:c3:0f:b0:c5:
3f:f8:e1:e5:c8:79:b5:52:3c:8d:6a:b5:9f:be:6d:0a:ae:d7:
1f:be:55:52:e9:45:5a:4d:43:a6:f8:51:28:d1:46:21:d8:fb:
d5:30:2d:2b:96:bc:71:b2:d2:60:df:65:97:ef:25:df:2e:63:
5e:f2:ac:30:f2:b1:73:2a:d7:b0:fe:41:4c:35:b8:b2:a1:ed:
bf:0d:6d:18:74:1f:a5:c5:26:12:90:46:49:50:41:8b:e5:b9:
b9:52:b3:fe:43:bc:64:a8:5e:94:09:d7:d5:4d:77:ca:49:db:
f9:d8:14:09:59:05:7f:00:12:3e:c9:bc:d3:cd:ec:03:f3:e3:
04:7a:01:e1:e2:55:8b:be:a5:7f:24:fa:e0:54:27:c6:12:fa:
a4:51:cf:c7:6e:71:6a:c4:05:7f:66:5b:31:f1:ad:40:75:9a:
48:f8:f6:4f:c1:7a:8d:8c:43:aa:6e:de:5b:ba:55:b2:34:e3:
fc:37:91:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:13:58 2024 by rpki-client on console-ams.rpki-client.org