Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: M3qZBg4qTd3S3SEknlQpvDvaonLrIDMATQEDhr92wWQ=
Subject key identifier: 99:52:9A:60:77:4A:81:A5:61:E5:84:FC:5A:DF:07:EF:3D:17:E7:77
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 01935689A88CBE01DD5D455BBDA40CE6B7C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 1304
Signing time: Sat 23 Nov 2024 01:01:22 +0000
Manifest this update: Sat 23 Nov 2024 01:01:22 +0000
Manifest next update: Sun 24 Nov 2024 01:01:22 +0000
Files and hashes: 1: eUm8TmMUmPKWe4t78Qd6OnIY_LM.roa (hash: VEYYs8jFIn8OgH3XkG6p7ILmlWHpQ2hYMgsB2QHuRXQ=)
2: hbgrQTZDQkOJI9hkv0CyHXCVqxk.roa (hash: y37+3pkFd5GnCXy7OrfptlRkrvV8gDJfEvei5wIQjlc=)
3: kgNy-FHlLbSycv81H2ejSZopHzE.roa (hash: u3RF2Uzl22XE25dWKXeey+XCUxqGyCyyznKwwQ/qceg=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: SQzSW2v9AZxRobzkkPOrXnAq6jXxa99hPIxDA1FiM80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:a8:8c:be:01:dd:5d:45:5b:bd:a4:0c:e6:b7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Nov 23 01:01:22 2024 GMT
Not After : Nov 24 01:01:22 2024 GMT
Subject: CN=99529a60774a81a561e584fc5adf07ef3d17e777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:d6:20:0b:df:5e:d6:fb:ca:99:5c:a2:62:
e7:f3:62:f5:c2:16:d4:21:e0:5f:94:d5:3b:19:dc:
c6:05:84:f2:30:e2:b9:fd:40:e5:63:d3:32:2a:10:
80:16:73:9b:1b:4a:62:69:14:17:57:a7:1b:48:c4:
7d:0d:81:ab:f9:34:be:36:c8:19:51:ed:c9:fd:27:
3e:59:fa:0d:db:8d:79:fe:5f:6f:06:05:2a:be:ed:
02:46:99:06:f9:2e:24:5d:51:7c:4e:ca:92:12:85:
9b:7f:f9:0f:9d:70:1f:8d:88:27:e3:3e:26:eb:6f:
df:ac:55:18:4e:c2:5e:33:6d:1a:da:bc:4a:b3:3d:
0a:8f:54:e3:40:21:cc:77:b6:41:cb:98:28:39:de:
60:b5:a0:64:6e:1c:a9:8f:f3:d1:07:2d:3f:4f:ed:
e5:64:de:28:69:7a:94:db:7f:d5:7d:4c:d5:73:35:
de:bd:56:7c:30:f9:a0:7e:25:95:d4:0d:cb:33:b3:
d7:33:53:ef:c1:4a:84:dc:64:4b:ef:ab:a5:a4:b4:
c5:c7:e3:cd:0a:17:f5:71:9a:bb:65:d2:ed:8f:ec:
31:14:4c:2e:24:87:10:6a:b9:00:19:9b:d2:fb:15:
d2:2f:9b:96:52:f5:6e:de:d5:ec:63:26:28:6a:db:
d5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:52:9A:60:77:4A:81:A5:61:E5:84:FC:5A:DF:07:EF:3D:17:E7:77
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:a9:b7:ae:b8:8b:1c:15:0a:08:10:1b:6a:77:11:69:e2:c4:
c8:08:e6:72:8b:98:a1:be:20:cc:e0:2d:5e:84:3c:71:55:3c:
2c:9c:cb:85:43:3e:8f:56:c1:29:eb:4a:b6:30:b0:27:af:ab:
29:41:cf:36:26:34:b0:26:ef:94:1c:07:04:8d:35:fa:8b:ce:
ee:52:19:3d:64:bb:97:c1:cb:9f:e4:3b:64:c9:0c:98:ab:1c:
be:cd:7d:24:36:74:18:9d:34:2e:3f:af:78:d2:90:ef:db:11:
69:28:63:78:ef:89:53:dc:60:80:c4:b7:93:35:ff:1a:e8:74:
43:1c:6c:0a:76:21:54:cf:61:d6:fa:37:2f:87:1c:db:b2:1d:
7d:c9:cc:49:e6:11:d4:28:40:41:03:5c:ce:f6:52:9b:48:b0:
49:8e:b5:7c:8c:c2:c2:76:fe:5c:19:4f:fa:e1:da:bc:f2:b6:
05:77:8d:08:ba:af:24:0f:b5:64:7a:78:ab:c7:e0:59:14:d5:
c9:be:ad:7f:81:04:f6:f2:5d:4b:9e:84:ab:09:71:96:4b:68:
4c:ee:e9:36:5a:f3:8a:7c:c8:88:ca:01:b2:aa:b4:12:9a:0d:
97:81:02:7a:b3:28:e6:65:90:7b:86:08:f3:a2:70:ca:99:db:
12:11:f9:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:16 2024 by rpki-client on console-ams.rpki-client.org