Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
File: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft (raw, json)
Hash identifier: PlzC+wwcdU2FCrhhPZ7FEG6qbx0uMIPpVkBy5j6tEsw=
Subject key identifier: D0:DE:D2:7B:EE:42:1A:2D:46:DC:C1:1B:97:AB:75:1D:83:F1:76:2A
Authority key identifier: DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16
Certificate issuer: /CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16
Certificate serial: 01935952C60BE227956ADA688A14F6FC228A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
Manifest number: 0EB5
Signing time: Sat 23 Nov 2024 14:00:17 +0000
Manifest this update: Sat 23 Nov 2024 14:00:17 +0000
Manifest next update: Sun 24 Nov 2024 14:00:17 +0000
Files and hashes: 1: 12FsXrmH9-bfCTlhv3Qf_3UxmZw.roa (hash: cDtomj2BSjjr1Z4pEbSpozAxQ1N5yvEuHQLkPM/6sRk=)
2: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl (hash: RoCxhriiQyUUQ+3jqvbQt/LyvkgJ5YWPuWO6CTYWQGA=)
3: qMCT_zLdzfYIcEcVHP4azsuhYR0.roa (hash: V2ZZOWM+azyC8rPCUh1vViVAHoR8bFtuTyttdECAlvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:52:c6:0b:e2:27:95:6a:da:68:8a:14:f6:fc:22:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16
Validity
Not Before: Nov 23 14:00:17 2024 GMT
Not After : Nov 24 14:00:17 2024 GMT
Subject: CN=d0ded27bee421a2d46dcc11b97ab751d83f1762a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d5:18:51:9f:47:81:52:fb:ad:e5:7e:8e:86:
9f:59:44:4e:ff:b0:d2:d7:32:e2:ce:f1:eb:58:ba:
77:57:a6:89:99:c1:42:a8:3b:d2:a7:3c:da:83:b9:
a3:ac:a3:39:a2:8c:9c:b1:0d:5b:d4:b8:07:07:6f:
68:69:a7:e8:d4:d1:6a:6a:5c:ed:b7:d7:7f:e6:4d:
06:99:80:b1:f8:28:7f:51:e9:01:82:7b:d9:f7:44:
f8:94:d0:85:15:92:b8:39:a9:d5:b1:de:7c:0d:8c:
ea:d8:ca:58:de:99:72:9a:60:b5:22:b1:eb:c0:c5:
b4:2b:88:a7:48:94:a0:fc:bf:8b:8d:fa:60:c2:ee:
09:73:d5:78:08:42:89:60:7b:eb:27:83:4d:47:c0:
2a:52:df:e8:4b:e3:ef:38:0e:9b:fa:47:28:9d:2b:
b5:ed:b0:fa:cd:5d:59:5c:0f:4c:c9:a4:f9:80:02:
da:a0:02:d6:20:f6:3e:24:bf:d8:99:fd:e2:bf:58:
0b:3f:b1:63:26:96:3c:ce:65:4a:2f:7d:91:fa:4e:
80:f4:de:45:37:c9:01:75:6b:5f:eb:5d:ca:0f:54:
b8:45:0c:e0:19:71:e2:65:2b:c5:5e:23:7e:44:56:
99:8f:00:e4:85:76:ec:ba:d0:75:26:cd:0f:c2:01:
e9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DE:D2:7B:EE:42:1A:2D:46:DC:C1:1B:97:AB:75:1D:83:F1:76:2A
X509v3 Authority Key Identifier:
keyid:DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:da:43:c6:ae:48:35:44:10:a2:bd:67:2e:47:e7:a5:8e:d5:
fd:b1:39:32:9b:c2:2b:37:96:02:28:63:2e:02:b8:d3:7f:3b:
c9:19:68:89:78:42:9e:2d:d1:43:b4:e5:34:67:bd:43:0c:61:
9b:15:52:42:db:e8:f2:46:f0:5d:46:8f:bd:01:5c:f7:05:85:
d9:7e:73:7a:57:e1:61:51:00:75:0b:8b:85:d4:c8:0a:28:9b:
c4:dd:1f:b8:94:46:45:8b:42:cc:55:21:c4:74:d5:4b:53:5b:
b4:4a:54:ff:f7:9f:e5:3d:c5:03:a9:6b:63:f7:09:1a:1d:bb:
71:7f:e9:8c:fe:72:5b:fa:7e:e3:12:3a:80:98:bb:40:dd:a8:
c3:44:46:e4:ab:31:f8:25:e4:ce:e2:a2:49:2d:f8:f4:37:fd:
5f:4b:cd:15:be:e3:70:6b:2a:95:7d:05:74:59:33:f7:7c:13:
08:23:87:21:27:f3:00:d0:7f:b4:02:bd:43:53:b1:72:77:fe:
98:b1:70:9c:a8:83:40:da:1f:bb:a3:96:71:98:b2:85:6b:9c:
ed:5a:a4:08:3e:a6:e9:e6:0b:d3:d2:fb:f6:f6:d8:69:9c:0f:
e7:6e:8c:2f:64:c7:76:d8:f2:4b:14:62:25:a7:2b:bb:67:88:
18:19:c5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 16:18:32 2024 by rpki-client on console-fra.rpki-client.org