Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json)
Hash identifier: nmSQZuQyVZ+J98ar8AEJGmT10qGDIduAsN8A9W7r2O4=
Subject key identifier: 6B:F9:AB:C9:90:03:B1:CA:67:2B:F9:28:72:3F:A6:AF:9F:83:A7:0A
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 01935764C7AB4060367566FC16D493E9B0CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 05:00:42 +0000
Manifest this update: Sat 23 Nov 2024 05:00:42 +0000
Manifest next update: Sun 24 Nov 2024 05:00:42 +0000
Files and hashes: 1: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: OuxJMTMpmfQLOgo5d6AC5J71R7iyEsUXAAmGiuI0Phs=)
2: yAKpuy-7QgVIsDSB_-whiK27uGI.roa (hash: SPbKaCWZxbEZW8S9eKkdQJHNPJtPSLqPQFzncgSBlvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:c7:ab:40:60:36:75:66:fc:16:d4:93:e9:b0:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Nov 23 05:00:42 2024 GMT
Not After : Nov 24 05:00:42 2024 GMT
Subject: CN=6bf9abc99003b1ca672bf928723fa6af9f83a70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:87:6a:52:2c:fd:86:d4:2f:53:cf:9f:5a:63:
b3:b0:0c:a2:71:e2:79:66:fe:a5:1f:10:7f:48:55:
89:95:3a:1e:4c:ee:4e:ec:56:2b:6b:57:a1:ea:a5:
de:70:8c:40:a3:0c:04:a3:cc:7c:bf:20:12:11:7d:
9b:f8:da:f4:74:7c:dc:72:41:d1:c7:6c:99:a2:fe:
2e:2b:2c:1f:db:ad:4e:98:ce:5a:39:e7:eb:83:7c:
d5:ae:c8:ff:fa:d6:f9:dd:b8:81:09:6e:24:ed:f0:
59:fc:22:f3:0e:93:52:78:51:da:51:c5:fe:67:38:
dc:1d:1e:de:6e:20:51:70:1e:05:91:e3:dd:6e:e1:
3e:ec:ac:5f:00:a3:bf:79:7f:ba:5e:8e:bb:11:37:
68:4d:ae:61:be:29:c6:aa:b8:b0:41:46:b3:0a:e4:
45:1e:c3:8b:75:27:5a:97:70:30:db:6d:07:ed:65:
88:8f:90:be:94:23:91:5f:69:d8:47:0c:a4:4b:f2:
a1:ae:70:c9:75:8c:6d:e1:5a:a8:f9:75:bd:9c:f2:
0a:bc:34:65:b6:c0:a9:75:ec:40:e7:f9:e3:13:d2:
79:79:c5:5c:a0:30:fc:b9:7e:f5:ee:e2:e6:05:66:
cc:5a:54:ae:f3:31:a9:9a:a6:0c:7f:d4:26:b0:2c:
38:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F9:AB:C9:90:03:B1:CA:67:2B:F9:28:72:3F:A6:AF:9F:83:A7:0A
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:18:6c:e3:86:03:c7:2d:54:88:96:ff:5f:f7:8f:4d:72:ed:
93:4f:46:59:14:b5:d7:b2:87:f2:17:ca:6d:bb:98:e7:56:0b:
a0:19:45:69:17:af:48:03:c0:7d:33:2f:c6:c5:72:e2:3d:4f:
51:34:23:43:03:cb:6a:8d:b9:55:54:0a:66:7a:f7:82:6d:ed:
ba:2d:3a:49:24:9c:a4:c9:ea:1a:e6:6e:ff:d6:d1:de:83:ae:
90:a0:57:53:5f:93:b4:13:54:ad:4e:a8:e0:08:ad:fb:a3:ad:
78:08:6d:4c:aa:be:f4:ef:f9:4b:5c:3a:fb:d5:ff:5a:21:77:
a5:84:3f:bc:6a:6d:39:7c:39:61:1e:2d:b6:88:47:66:1f:80:
90:9b:dc:3b:87:b4:8f:30:e0:43:89:c1:6a:97:d8:67:17:84:
c3:ad:a0:67:38:f3:85:91:fc:f7:45:f9:e2:dc:5c:51:fa:0d:
3f:a1:c0:5e:d2:87:c7:0d:53:46:9f:3c:31:2e:56:72:2c:99:
77:d5:3b:49:b5:ca:e4:34:31:70:3d:5b:b0:ea:15:ff:36:0b:
13:59:0b:f3:e9:5e:61:91:d3:29:63:66:0a:b8:36:7a:2f:09:
21:39:81:7c:b6:cc:7f:a6:1f:c7:7f:1a:35:9d:59:21:b2:f4:
78:86:1d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:53 2024 by rpki-client on console-ams.rpki-client.org