Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: miuKSsK5YAKrdPFWTTgcOR0y5wZpu0HRS9Zh7aLQFK8=
Subject key identifier: 29:E6:54:5D:B8:A8:2F:A5:4D:B4:AF:34:5B:61:09:E0:7C:52:90:D5
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 019369D9815891ED0F75B7A97880B36D3F7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0A21
Signing time: Tue 26 Nov 2024 19:01:22 +0000
Manifest this update: Tue 26 Nov 2024 19:01:22 +0000
Manifest next update: Wed 27 Nov 2024 19:01:22 +0000
Files and hashes: 1: j_mKTl8qjU4nAGB0l9QcDP428sU.roa (hash: uhVjiySadpyCfhV65jKEB5E9hSDWZEafWtWJvsBIPFQ=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: bWwk7eRVDp4MdJfRWrmbpbTvFfOC6j4nNubfEaw637s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:81:58:91:ed:0f:75:b7:a9:78:80:b3:6d:3f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Nov 26 19:01:22 2024 GMT
Not After : Nov 27 19:01:22 2024 GMT
Subject: CN=29e6545db8a82fa54db4af345b6109e07c5290d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b6:39:db:67:42:e6:fe:0d:de:96:5a:c7:0f:
1e:cb:fd:0e:5d:e5:0e:8f:a3:0f:c7:1a:3e:4e:66:
f6:6c:68:07:a1:fe:6a:e6:eb:65:54:3d:3f:07:85:
a1:ad:c8:97:33:ce:04:96:fa:b1:19:1b:c8:e9:d1:
3b:db:e0:22:e4:d9:11:50:f9:45:b4:7d:16:a6:72:
61:56:fa:60:fc:ac:e5:2c:37:a5:4f:3b:ac:21:f2:
09:82:a6:89:e8:b2:e9:b3:af:e3:6a:13:d0:f0:8b:
4f:74:26:fe:c8:bd:65:02:f7:fd:e0:3b:4b:14:3d:
77:87:bf:e9:02:ad:0d:3a:d6:23:06:84:5f:72:6e:
44:82:26:4d:25:4c:4f:31:36:0d:45:5d:bf:f0:ec:
f6:ef:ce:a0:2c:a5:4b:85:8f:6e:ce:f9:9f:4e:bf:
d3:a2:b8:b4:05:77:8e:03:8d:ee:5c:be:03:e2:2b:
d3:2d:39:ab:f3:27:e2:09:e9:b5:81:cf:49:6f:7f:
46:7c:81:a2:35:ab:ef:87:e0:6b:81:79:01:fd:e6:
7d:c6:19:73:ef:70:3e:b5:df:8f:20:30:27:83:1e:
3d:92:26:a8:83:3d:4a:d0:7a:16:a5:7f:5f:22:50:
cb:10:cc:b7:1f:dc:2d:3c:3b:6e:f0:46:8b:5a:7d:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E6:54:5D:B8:A8:2F:A5:4D:B4:AF:34:5B:61:09:E0:7C:52:90:D5
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:aa:7b:7e:96:f1:4f:5a:82:d1:44:c5:66:23:ec:bf:e2:27:
1c:d6:be:2f:c8:ad:f3:05:9c:17:81:8d:9a:c2:de:0e:2f:4f:
a4:ea:31:ee:32:ad:5a:a0:0c:4e:40:a7:d8:f8:d9:11:36:78:
0f:a5:b8:d6:5d:0b:e1:07:98:86:67:85:f7:2b:b2:70:0b:0a:
0b:7d:ce:4c:3a:79:d4:b2:c2:bf:e7:14:34:3b:97:e7:fd:d5:
7e:75:07:10:5a:80:11:c0:84:83:b2:de:81:60:88:35:41:4a:
b0:12:c2:aa:53:cf:b1:26:88:3a:c8:06:3e:48:fd:f6:67:7a:
5c:bb:2a:07:05:d3:24:aa:93:1b:b5:5d:37:35:59:77:0f:01:
c2:1b:e5:88:45:05:ce:69:f5:b6:21:e9:5f:b9:da:8d:5e:48:
6d:2a:1b:f2:40:c0:41:8a:c4:45:e0:d6:3c:c2:bb:00:ae:49:
d9:4a:29:e0:82:19:31:9a:6b:ea:a8:c2:5a:35:82:d0:9a:53:
1b:e6:6d:aa:a0:22:50:c9:27:b7:55:a0:ee:6c:b8:e4:96:55:
93:9e:47:3b:30:a4:45:81:1b:8b:7f:92:3b:f8:a4:de:87:f9:
05:21:8d:f2:15:47:a2:c2:5c:32:cf:0b:28:9c:99:dd:a2:76:
c2:21:70:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:14:39 2024 by rpki-client on console-ams.rpki-client.org