Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json)
Hash identifier: msu7d2A+DPDZh4bGSgCXcno8blTl+nzGmk+CIT9SktI=
Subject key identifier: AB:DE:0E:4A:01:A7:1C:3A:A4:76:21:55:3E:96:92:B0:52:DB:02:17
Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Certificate serial: 0193579BA844172BD268C91468F1AE852CF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
Manifest number: 1134
Signing time: Sat 23 Nov 2024 06:00:39 +0000
Manifest this update: Sat 23 Nov 2024 06:00:39 +0000
Manifest next update: Sun 24 Nov 2024 06:00:39 +0000
Files and hashes: 1: mRi-YhAcH0z28dRXXa_8lR0wdxY.roa (hash: UC/KtaIHSCSYlleDeJwQcT7+xELbLlVL66h4Cya4Je8=)
2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: Egy7Oy0LlUuckNjIcxZYBXQEpPJ2vmidSTsx35Xb5d0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:a8:44:17:2b:d2:68:c9:14:68:f1:ae:85:2c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Validity
Not Before: Nov 23 06:00:39 2024 GMT
Not After : Nov 24 06:00:39 2024 GMT
Subject: CN=abde0e4a01a71c3aa47621553e9692b052db0217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:db:bb:8f:2b:36:1b:10:eb:cb:52:ca:0c:d3:
c9:b9:94:12:7e:8f:65:33:e8:45:82:0c:78:f5:64:
cd:ae:6a:ad:bd:80:86:1c:62:69:cc:60:db:88:4b:
00:44:b8:7c:42:bc:14:6a:d8:f1:dd:8a:3e:cb:fb:
0f:69:5e:6e:18:af:6a:8f:4d:ae:cc:3e:57:f5:4e:
68:25:39:95:7a:e8:a9:47:1f:89:a8:a7:d5:8c:59:
3b:bc:31:65:aa:2f:7e:8b:1c:bd:22:1c:6b:5e:73:
98:13:28:7d:4d:6d:8d:b4:be:6d:2e:11:63:1d:ee:
fd:9b:66:ac:84:b2:ab:d0:71:da:93:3d:0f:59:e4:
f1:8b:29:af:ed:c3:60:d2:5a:c5:23:2d:57:5f:29:
0e:c8:36:35:f8:f4:aa:f8:c8:d5:39:9a:ed:f3:4e:
71:cc:9a:2a:41:c3:d1:0c:86:f2:1a:20:d9:fb:2b:
c5:a1:f5:56:12:59:c8:4c:f7:09:dc:bb:7a:69:8a:
03:67:56:ac:09:a1:0e:ca:3a:13:7f:b4:f3:3b:c1:
eb:b2:1d:5d:ed:41:06:39:cb:28:a4:65:95:80:9f:
42:2c:5d:48:84:78:7d:6c:17:32:c2:37:b4:9a:e5:
e8:8b:ca:e2:a8:5b:47:27:fb:f0:5d:b0:10:68:1c:
3f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DE:0E:4A:01:A7:1C:3A:A4:76:21:55:3E:96:92:B0:52:DB:02:17
X509v3 Authority Key Identifier:
keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c9:c3:79:40:13:ba:36:3c:e6:60:0b:54:22:d3:33:17:f1:
77:90:4f:74:6e:2e:06:37:46:a3:53:e8:b7:2d:6a:9f:ee:e8:
9a:d3:39:c8:26:35:38:22:01:be:dc:16:14:eb:06:bb:a4:0e:
d5:9c:17:7e:a3:a0:35:37:23:c6:5d:2e:15:8c:96:97:90:80:
b4:1e:29:d3:19:a1:cf:b2:d8:96:8a:41:8f:5a:34:cf:06:9a:
d0:79:f9:28:01:26:af:9b:c2:c8:cf:b7:24:1b:c5:1b:89:a7:
49:f2:3d:83:a2:66:4f:7d:cb:b8:0f:6a:57:ae:3f:b6:6a:2a:
c2:1e:93:0a:37:d7:6f:70:9b:13:9e:1f:7c:e3:40:36:ca:b4:
46:2a:d6:ff:1d:2d:8e:7e:26:20:88:b6:97:19:81:d2:b9:ec:
32:f1:21:9e:be:33:1f:de:63:d3:9a:1b:4a:bc:7b:7a:6f:6d:
b5:1f:f4:58:28:0a:95:a9:a8:42:01:84:ab:4d:3e:41:1a:76:
76:75:9f:ed:56:77:70:26:c7:e1:68:cf:8d:c7:c3:c1:eb:3e:
2a:2f:2d:8c:f5:66:53:0f:8c:75:05:d3:77:f7:f5:07:8b:94:
74:5c:15:94:bf:3f:15:c4:c8:61:21:79:d9:91:4e:c2:e9:4d:
57:10:c7:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:53:38 2024 by rpki-client on console-fra.rpki-client.org