Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
File: mK9kDIIO61-8kigcYRRPEae9cH4.mft (raw, json)
Hash identifier: sycOzBsg4PfUc7lfenlzAaTpai2arumrR+LJqPunUkw=
Subject key identifier: 4A:40:2B:5C:3A:93:67:7C:34:B8:4A:53:55:DB:DD:9E:F2:30:1D:52
Authority key identifier: 98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
Certificate issuer: /CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Certificate serial: 019356BF9D8B9BB681B532AD854C37E91DDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
Manifest number: C8
Signing time: Sat 23 Nov 2024 02:00:18 +0000
Manifest this update: Sat 23 Nov 2024 02:00:18 +0000
Manifest next update: Sun 24 Nov 2024 02:00:18 +0000
Files and hashes: 1: 3afbYUsVMWE3fiMVpeHIrl053Rc.roa (hash: 477Wlwo8QZRKNSBFnhLlbcU4fBspxIdhtm/F5Lpb8I4=)
2: mK9kDIIO61-8kigcYRRPEae9cH4.crl (hash: YIxZBZ80v9f4WAbuq+ZZumrRw0mj5jiztkvUg8b5gAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:bf:9d:8b:9b:b6:81:b5:32:ad:85:4c:37:e9:1d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Validity
Not Before: Nov 23 02:00:18 2024 GMT
Not After : Nov 24 02:00:18 2024 GMT
Subject: CN=4a402b5c3a93677c34b84a5355dbdd9ef2301d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b6:70:0b:ce:e1:d8:05:32:cd:73:17:c8:a4:
77:ed:d6:5b:2d:99:36:dc:74:d4:e6:f8:72:29:7b:
c1:88:8b:f9:73:5d:b7:0b:84:93:a4:7c:da:5e:89:
f5:7d:c8:dd:c9:7e:13:4b:d8:51:4d:79:06:c9:26:
2f:d1:78:92:42:23:8a:cb:e3:64:58:9b:d2:51:e2:
a8:30:39:47:b9:ec:28:0f:9d:d9:5a:59:7f:9b:f1:
75:c7:23:59:47:e1:de:3c:68:78:96:22:69:9f:d4:
52:d5:97:f8:a1:99:97:fa:0e:d9:91:16:bc:74:5c:
8d:ab:30:6c:4f:b5:78:f2:12:b4:7e:1a:db:e9:a3:
42:16:7f:f1:e2:f8:7b:02:13:a3:c1:26:26:6b:05:
a5:a1:1f:1b:47:b5:14:ce:1d:6f:e9:37:99:6b:89:
4b:63:57:2f:ee:59:b8:ce:30:b8:0e:e5:58:fd:05:
c9:eb:11:6d:c0:1f:b9:fc:63:3f:a5:19:a3:2b:a9:
53:d0:7a:29:ce:73:56:db:ae:79:e9:59:c6:40:52:
2d:9e:70:06:bc:94:8c:83:41:39:dc:b2:e6:99:dc:
30:a3:b2:4e:d9:ee:f2:fb:f9:d3:44:92:11:1c:a3:
64:90:3e:9e:4a:89:5a:f1:60:5f:38:19:06:46:87:
14:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:40:2B:5C:3A:93:67:7C:34:B8:4A:53:55:DB:DD:9E:F2:30:1D:52
X509v3 Authority Key Identifier:
keyid:98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f6:ca:23:5b:2b:f9:d5:a8:e4:d5:6f:b0:3c:a6:b3:12:a0:
34:42:ea:b9:6c:ef:37:e8:1e:85:48:26:1b:62:43:58:ed:a5:
91:57:32:86:c2:d9:9e:f8:79:df:62:64:d4:87:79:56:a3:59:
34:59:08:23:fd:88:05:6c:dd:16:15:a0:67:2a:02:13:b3:01:
d2:1f:ab:35:30:59:ae:8d:a8:67:09:ea:d2:eb:5b:f0:3f:f8:
98:5a:4a:a4:54:5e:71:ae:24:c2:99:a9:cb:6f:46:0b:bc:e8:
7d:ee:21:88:72:14:58:7c:7d:0b:67:e5:de:42:87:24:b6:b2:
40:f7:e9:44:a3:53:f5:25:df:e4:e4:a9:fa:b2:9a:58:73:12:
0a:ac:73:30:6f:dc:40:25:9f:dd:99:9f:df:93:54:98:d2:01:
0f:f8:72:d7:f7:c2:6f:c0:85:3e:21:be:d9:b3:a9:b2:46:f7:
d8:d1:89:8e:39:09:6d:1f:e4:b0:54:3a:bd:cc:c3:15:61:4c:
be:d4:35:94:8b:e5:e1:d5:0a:9e:67:dd:34:06:59:bf:e9:4c:
cd:36:f5:1c:99:a3:c6:5a:93:1e:66:46:c0:6b:10:92:0d:c2:
74:f5:bc:bb:14:80:f5:96:6b:60:ec:97:14:2f:8a:6b:cc:3e:
83:0f:cd:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:10:36 2024 by rpki-client on console-fra.rpki-client.org