Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
File: ocG-CYGk51dsVi9vCeZcF8GA48o.mft (raw, json)
Hash identifier: 8iNPxV749CHYlcoHSzKbb9RqS68sgj6nma9HXQ3uLcg=
Subject key identifier: 02:65:63:6C:DE:D6:41:7C:D9:75:D9:7E:C9:40:B2:E8:B6:34:F8:67
Authority key identifier: A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA
Certificate issuer: /CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca
Certificate serial: 01936CD9B5E8840D59B80D3FCA1D5101A1E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
Manifest number: 137E
Signing time: Wed 27 Nov 2024 09:00:27 +0000
Manifest this update: Wed 27 Nov 2024 09:00:27 +0000
Manifest next update: Thu 28 Nov 2024 09:00:27 +0000
Files and hashes: 1: 5TjM7-7Zy0bGir__0rrviZU0gfs.roa (hash: 12iNbOREykK8D0tVZCXAr6KXsbVUH1RZAfi/BK67BO4=)
2: ocG-CYGk51dsVi9vCeZcF8GA48o.crl (hash: EOD2UYbr3a5Bc51gf1uNVaXSPIvPIuLG8EI5fbmf0gM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 08:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6c:d9:b5:e8:84:0d:59:b8:0d:3f:ca:1d:51:01:a1:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca
Validity
Not Before: Nov 27 09:00:27 2024 GMT
Not After : Nov 28 09:00:27 2024 GMT
Subject: CN=0265636cded6417cd975d97ec940b2e8b634f867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:70:da:3f:40:a1:39:6b:6f:a1:e9:5b:31:93:
89:37:3c:70:72:16:2b:21:40:94:6b:51:8b:52:5f:
8e:e6:cc:a5:93:02:52:68:7c:56:fe:a7:bd:52:2b:
92:6a:6a:1a:ea:0d:ba:f4:5f:9f:35:54:b7:a2:72:
83:99:b9:2f:b7:7c:bd:58:e0:e1:e0:6c:38:29:3c:
80:41:e5:a9:b7:74:db:5c:e9:d5:af:18:89:d3:79:
4a:3a:e9:5f:b2:89:af:8a:38:35:b0:4f:1c:63:63:
77:83:3b:9e:c0:d1:03:c0:a4:0f:e4:36:3e:20:e5:
3c:75:cc:01:3e:39:3a:3f:52:8d:8f:6a:0d:61:b7:
63:23:66:47:1d:54:f3:45:c6:b7:ab:32:f3:b2:1a:
ff:6c:ab:97:ca:68:1c:ea:2d:89:c1:b5:10:ad:0b:
62:1b:96:7d:3b:3e:31:91:5d:2c:c3:ac:f9:74:2d:
dc:0e:51:39:79:87:3e:49:51:1d:29:81:49:d1:4c:
d0:75:96:40:ed:7d:38:44:1c:09:d0:15:6b:b8:38:
07:73:48:c6:99:c2:0c:d2:f5:1e:8c:88:46:b3:7b:
48:cf:4b:4c:8c:d9:01:0d:dd:fc:6f:19:ea:30:7b:
16:44:a0:61:ae:b6:81:54:a9:54:7d:da:b4:d9:0b:
c0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:65:63:6C:DE:D6:41:7C:D9:75:D9:7E:C9:40:B2:E8:B6:34:F8:67
X509v3 Authority Key Identifier:
keyid:A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:0b:e5:cf:e5:71:80:bd:79:66:1b:db:3d:66:5d:d7:d8:5b:
56:6e:c7:75:b6:57:3b:eb:70:98:10:45:f3:85:98:e9:1a:5f:
7c:99:d8:c5:e9:e2:c0:83:d1:9e:a5:21:9b:f4:37:32:f5:ad:
01:d9:b4:a4:da:b3:d3:ba:69:85:d1:15:f1:b9:d1:41:35:cc:
4c:fb:c9:68:61:6c:42:4b:cb:49:67:0d:a1:48:9e:08:b9:43:
f4:7a:10:d8:e4:b8:41:b1:c4:1a:c9:67:70:a2:79:bd:fc:0f:
a8:5e:da:e0:dd:fd:f1:15:5a:77:17:7f:ba:44:56:66:6b:4b:
bc:00:9d:2d:a8:09:06:b3:83:59:66:8d:4b:e9:ba:66:94:bb:
2b:4a:93:d9:2f:63:53:88:02:eb:f5:3a:42:51:39:20:1b:99:
93:78:95:cc:6a:54:39:4f:5b:7f:c3:98:34:55:45:07:72:36:
c0:78:ed:87:04:c9:47:6e:e8:32:a4:b1:fd:9b:f7:43:05:9f:
f3:ae:04:61:ca:c1:77:0d:df:3d:7b:c8:5e:3c:df:02:97:b3:
f4:11:10:78:e8:aa:18:eb:3f:64:57:c2:fb:16:52:03:d7:1e:
34:e4:2b:72:31:a7:d5:6b:8f:aa:73:39:ac:a7:c1:00:61:96:
df:b4:aa:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 13:39:01 2024 by rpki-client on console-ams.rpki-client.org