Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
File: S5o7nhAjIJXBjSZERAzlxYoTizU.mft (raw, json)
Hash identifier: 1OF9i5h4zIAe6KdKkd1OmLsC69OhOJ3hzyGi83DAEMI=
Subject key identifier: 08:AE:17:A7:5C:2F:A6:06:F0:BB:48:31:DD:4F:A4:92:91:25:20:35
Authority key identifier: 4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
Certificate issuer: /CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Certificate serial: 0193568B1ABCD529FE36841F11F0D8B9F8AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
Manifest number: 0B08
Signing time: Sat 23 Nov 2024 01:02:57 +0000
Manifest this update: Sat 23 Nov 2024 01:02:57 +0000
Manifest next update: Sun 24 Nov 2024 01:02:57 +0000
Files and hashes: 1: S5o7nhAjIJXBjSZERAzlxYoTizU.crl (hash: EvKcKR86KpyNPMMsHq/kqiCT9vfBVNtR4sBN/YM3KlM=)
2: W3dKgJbzuIBZ82yY1LHsO5eUNq8.roa (hash: +nvMMA0NQ/6uahRlvXx0+I7fP0ImclGKhst1TucUxw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8b:1a:bc:d5:29:fe:36:84:1f:11:f0:d8:b9:f8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Validity
Not Before: Nov 23 01:02:57 2024 GMT
Not After : Nov 24 01:02:57 2024 GMT
Subject: CN=08ae17a75c2fa606f0bb4831dd4fa49291252035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c5:7f:80:40:cf:53:f7:19:24:43:fb:99:de:
76:84:d8:7f:f5:57:f0:25:63:3a:6a:12:35:ee:ec:
0e:ad:ce:41:2f:de:bb:8a:12:2a:98:2d:ef:5b:49:
94:4c:f9:ce:8d:f1:87:52:6b:2f:aa:e0:c2:df:33:
e2:d2:4a:2b:3b:24:60:c5:9d:e9:94:ba:8a:b1:5e:
52:42:10:6b:a9:c8:1f:a0:51:a0:04:3d:53:7c:60:
68:02:c7:5f:c8:f9:4c:d9:24:1f:2b:58:18:78:71:
77:e8:54:b5:d7:a2:cf:a8:7e:68:27:60:b5:d7:96:
a1:d8:12:7a:2e:01:97:98:85:ef:fa:3b:35:26:c6:
32:de:79:50:c2:f7:de:1e:88:d2:fd:e7:62:66:4c:
d5:a2:ee:4e:9c:59:a0:0c:4b:2d:41:da:34:f9:03:
c5:5a:9d:0a:32:09:3a:82:f0:e8:f1:ab:f7:bc:8c:
02:9f:bb:e7:91:92:9e:f7:66:74:37:31:a6:4b:7a:
cd:c0:e2:ad:7b:03:a8:08:fa:58:88:e4:38:8f:40:
44:79:e5:5f:9f:6d:ea:02:8d:43:dc:2c:0a:0a:c5:
c0:32:86:2d:b4:76:d0:2c:c1:8f:54:af:1d:1c:b9:
8c:93:90:39:6d:ce:0b:1b:35:55:29:d4:8b:5b:92:
f5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:AE:17:A7:5C:2F:A6:06:F0:BB:48:31:DD:4F:A4:92:91:25:20:35
X509v3 Authority Key Identifier:
keyid:4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:fd:ca:bf:86:a5:ef:ba:41:0a:77:ad:4b:5f:6d:57:2e:aa:
60:46:5a:4b:c9:32:f4:a7:e8:37:bb:00:b7:b8:90:9c:36:30:
4b:8e:95:f4:12:b4:7c:38:4e:e1:a9:8f:05:9b:3f:f9:c9:53:
75:16:04:18:04:3a:f0:a7:ea:f2:3f:61:25:05:3c:c9:46:d1:
84:b5:a7:6e:b0:fd:21:26:eb:8c:93:83:46:db:a0:f8:42:45:
c9:a1:39:e6:41:b1:c3:29:ca:8f:8a:d5:fb:52:e2:a5:54:32:
5d:c5:21:c4:22:bc:01:c6:cb:41:9f:9f:94:64:e6:74:27:ea:
11:4d:3c:cb:5a:10:50:a6:9a:29:54:0f:75:8f:09:83:1e:67:
26:5c:1c:41:fb:5c:90:72:d6:6b:6d:7b:03:12:0a:3c:51:10:
34:6d:12:b6:d5:b1:54:a8:6c:83:7a:8a:75:b5:72:9d:eb:88:
b8:58:64:54:aa:3f:56:21:3f:dd:42:69:95:f5:ac:bb:21:05:
6f:de:54:c5:04:6c:29:5f:2a:75:90:6b:d9:3f:28:05:5d:8c:
e9:c2:17:ad:cf:a4:da:3f:26:7f:c9:f8:23:d8:06:2e:bd:aa:
72:70:f6:04:5d:c5:c8:b5:5d:23:2d:92:6b:aa:49:14:5e:aa:
04:5d:8d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:01 2024 by rpki-client on console-ams.rpki-client.org