Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
File: aUAlihpormBcBz-1g7E-E3a3eKc.mft (raw, json)
Hash identifier: 61O98joTnFbnOM44iq1tnazqyO2Fn7iM/tSHJFduiFg=
Subject key identifier: F9:D9:97:C7:A4:E8:5E:0E:ED:51:F5:AC:07:50:58:06:53:38:B9:19
Authority key identifier: 69:40:25:8A:1A:68:AE:60:5C:07:3F:B5:83:B1:3E:13:76:B7:78:A7
Certificate issuer: /CN=6940258a1a68ae605c073fb583b13e1376b778a7
Certificate serial: 0193568AA1EE5365FFACFF455EA01A89DA31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 01:02:26 +0000
Manifest this update: Sat 23 Nov 2024 01:02:26 +0000
Manifest next update: Sun 24 Nov 2024 01:02:26 +0000
Files and hashes: 1: aUAlihpormBcBz-1g7E-E3a3eKc.crl (hash: 4U6N8O232Rnv3eygTX+o7YBEB10/wVTsM5kux/xi5P4=)
2: e_DyoDXxTavq1ska7vwQMxoNTIs.roa (hash: hmhjkMqBgCBWkStn5DYgLDTJ1yYRJDwQ0MLtshoHOLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:a1:ee:53:65:ff:ac:ff:45:5e:a0:1a:89:da:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6940258a1a68ae605c073fb583b13e1376b778a7
Validity
Not Before: Nov 23 01:02:26 2024 GMT
Not After : Nov 24 01:02:26 2024 GMT
Subject: CN=f9d997c7a4e85e0eed51f5ac075058065338b919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:40:4a:2b:58:de:bf:83:14:2c:3c:07:3d:
55:d5:fe:6d:6c:a3:64:0b:b0:ad:a3:3a:7b:45:7d:
14:ab:43:62:87:30:eb:e4:32:ea:fc:cc:1c:73:18:
2d:ab:a8:ec:5e:e1:9e:9e:1d:bb:50:f9:b1:f5:77:
b7:93:d2:3c:60:64:35:90:61:02:6c:a0:15:98:99:
40:77:e4:1f:9d:a9:6c:ba:42:01:bd:15:68:da:bf:
57:2e:66:5e:3f:9d:cc:0a:a9:05:7e:9c:ce:1a:ef:
96:84:cd:bb:75:0c:10:5c:47:ca:31:81:f5:fb:98:
9f:65:dd:4c:5b:a3:eb:56:bc:a6:a5:1a:db:6e:f3:
e5:db:c6:40:9a:fb:97:f0:05:62:51:77:af:41:50:
9d:c0:4d:2c:2b:8a:4b:34:6a:92:37:bd:e9:cb:ad:
6e:1a:50:2d:66:86:3f:5b:9a:ea:86:dd:47:b9:72:
34:ed:76:02:62:1a:b0:33:dd:05:74:a4:e3:d9:28:
8d:33:46:5d:1c:74:c1:6e:e6:e5:ea:67:d0:d5:a5:
5d:b0:63:70:6e:56:7a:cc:09:45:39:36:cb:77:e2:
78:83:6c:32:7a:71:78:21:48:f7:f4:8c:cb:74:9f:
20:e1:37:f2:85:d5:c7:2b:4c:97:91:ec:b2:f9:02:
64:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D9:97:C7:A4:E8:5E:0E:ED:51:F5:AC:07:50:58:06:53:38:B9:19
X509v3 Authority Key Identifier:
keyid:69:40:25:8A:1A:68:AE:60:5C:07:3F:B5:83:B1:3E:13:76:B7:78:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:de:c8:36:e5:6f:81:77:3d:8e:47:ad:fa:0c:fe:ed:fc:5e:
9d:ad:8d:e8:21:9e:08:45:f9:27:f5:1e:bc:d2:e1:ad:a6:5d:
4a:f4:0b:fb:87:fe:cf:ce:33:4b:67:9e:27:0d:c9:80:e7:82:
1d:2c:dd:49:47:96:64:3d:2d:f5:cf:c5:20:0a:3b:0b:13:e5:
4c:68:39:db:e0:ec:96:ed:f6:ea:26:27:8a:01:cc:7c:51:4e:
fb:90:19:e5:b6:c7:02:55:e3:c9:71:85:f5:24:51:72:b9:fa:
9e:e5:e7:2c:9e:42:8c:61:eb:a7:cd:43:7b:d8:b4:87:04:13:
39:b1:cb:da:34:d7:44:9a:22:e5:bc:ad:49:6a:cc:1f:e5:76:
11:1a:29:bf:2b:3a:23:0e:32:44:2e:ab:22:75:cc:74:91:fc:
e1:f7:14:ad:c3:c1:a9:91:90:8e:f0:8b:be:4a:0b:15:c6:20:
62:ed:0b:98:60:59:2c:5f:76:3e:59:6e:dd:b3:37:20:95:54:
a1:91:10:5f:d6:a1:b6:d5:2c:b2:16:a4:97:90:37:e5:34:aa:
06:5f:8f:b1:0e:47:1f:16:7b:37:9a:9b:c7:0d:a6:b6:81:60:
1f:65:d5:73:2a:5d:77:26:fb:82:54:7d:8b:b5:06:b5:dd:89:
e9:2d:81:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:40:03 2024 by rpki-client on console-ams.rpki-client.org