Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: FdNhqE5Stbfg309JgxoNhiYO6rvdb52GA3cbdMttix8=
Subject key identifier: 85:81:7C:DA:06:22:7B:0D:84:F6:3B:72:BF:0F:81:6A:AD:09:04:79
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 019359C1263CC659D9FE6D6CDB7EC40BA630
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 16:00:50 +0000
Manifest this update: Sat 23 Nov 2024 16:00:50 +0000
Manifest next update: Sun 24 Nov 2024 16:00:50 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: ce7VhgkR6pqmlELgnzu7+/Xa3HwN39cC8bh2NPiQUqI=)
2: nv5zmiI_HQYcesEtxbHLMJOVHRY.roa (hash: U8D5OVPBL0BY/JCRsxufmTTkUB6ai46Td6srvyNaVVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:c1:26:3c:c6:59:d9:fe:6d:6c:db:7e:c4:0b:a6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Nov 23 16:00:50 2024 GMT
Not After : Nov 24 16:00:50 2024 GMT
Subject: CN=85817cda06227b0d84f63b72bf0f816aad090479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:32:04:01:ec:7b:74:5a:5d:e8:6d:17:de:90:
d0:a5:69:50:83:11:9f:4d:78:28:e2:3d:37:66:a2:
92:a8:e1:d7:28:cc:87:e3:11:35:c4:3d:37:79:e9:
1d:0e:22:34:51:f6:3e:8d:cc:27:73:cf:ef:ca:6c:
e7:a7:50:fc:a6:f0:72:c4:37:bd:87:29:38:c5:4e:
26:80:32:12:ef:22:11:f5:a6:2a:cb:ba:62:33:f5:
29:83:32:26:c6:bd:f0:43:a4:4a:30:6b:6a:01:ef:
63:23:22:0d:4e:0d:6e:51:1e:d1:ee:42:29:20:74:
aa:bd:b9:69:2e:49:b1:a7:8d:b8:c0:3d:91:d0:79:
8f:73:bc:d5:6f:b6:bc:53:c6:4e:cf:53:41:6e:08:
a4:c2:8a:e0:db:49:3b:16:c5:90:67:14:12:38:c0:
bc:12:f3:5c:91:25:5e:5f:e6:0b:38:9d:fc:91:13:
31:a7:b2:bd:54:c4:35:63:6d:9f:f1:b5:b8:d7:b8:
1f:ac:4a:6a:18:ee:e6:38:a1:b2:3a:64:1d:1f:96:
9a:3f:08:d8:1c:9c:5f:43:56:f8:f3:88:c8:15:56:
ba:b3:2d:f7:f5:12:05:5a:88:68:29:1e:26:41:c2:
51:92:7b:2e:d0:5d:e6:fc:ff:41:73:83:32:90:49:
4c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:81:7C:DA:06:22:7B:0D:84:F6:3B:72:BF:0F:81:6A:AD:09:04:79
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:8c:b1:f4:30:31:fb:d7:f4:d0:e7:25:a0:92:3a:61:1d:1f:
f3:24:df:24:9b:40:98:93:6e:b9:64:2e:38:03:1d:91:e1:08:
37:b1:24:6d:f2:53:45:9c:b2:6c:91:36:e8:90:5a:19:8b:a0:
36:b0:a6:35:26:82:86:10:cb:60:6f:2c:61:a5:62:7b:41:fc:
ea:ed:78:a9:a6:84:ee:8e:8c:7d:4f:20:8a:f4:3b:b0:70:a7:
96:e4:9a:fb:95:a3:2d:b5:25:44:75:43:87:bf:80:2e:3f:14:
a2:7e:ba:b6:71:a8:49:bf:50:b3:9e:5c:c5:0e:d1:63:34:5e:
16:3f:9e:6b:ea:a0:60:e7:fe:f8:52:7a:04:e0:e2:d8:a1:13:
2e:1a:1b:47:99:5d:ae:b9:98:fc:42:50:fe:94:13:16:6a:78:
a4:df:cf:8c:28:58:ff:56:51:f4:1f:79:14:7c:c2:d3:a4:d0:
79:ab:5a:6b:0b:01:a8:ff:13:a3:3a:5e:3b:c4:72:b1:13:e8:
1e:b6:6f:cf:b9:3a:9b:04:f5:48:f8:23:1c:18:66:0c:75:88:
ee:90:51:13:64:66:19:f6:04:f3:91:e3:0d:d0:78:ca:d6:32:
db:ce:2d:6b:c2:9b:62:84:41:81:50:f5:15:63:cd:a8:f6:d4:
0c:4c:98:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 17:37:12 2024 by rpki-client on console-fra.rpki-client.org