Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
File: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft (raw, json)
Hash identifier: 3vDLiqswGjINAJYCyZCM2OZScpULgXdvbzZoxKC7ONU=
Subject key identifier: 8A:8B:8B:DF:1B:37:BD:35:4F:73:73:58:16:AF:9B:8B:A8:EE:09:11
Authority key identifier: CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0
Certificate issuer: /CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0
Certificate serial: 019357D296C2D46D25C8005A6731D6038447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
Manifest number: 0E46
Signing time: Sat 23 Nov 2024 07:00:39 +0000
Manifest this update: Sat 23 Nov 2024 07:00:39 +0000
Manifest next update: Sun 24 Nov 2024 07:00:39 +0000
Files and hashes: 1: wDLjy0neVpyXhrsoQjHlseX6PF4.roa (hash: oUBsAnXvojrtpo7XuNg8PMOTlo9RlqVD9YYcDyiHDeE=)
2: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl (hash: xo1JBaxIGPhQWeVW+BiAui2QyP3Gw89r4EiblgPrFZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:96:c2:d4:6d:25:c8:00:5a:67:31:d6:03:84:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0
Validity
Not Before: Nov 23 07:00:39 2024 GMT
Not After : Nov 24 07:00:39 2024 GMT
Subject: CN=8a8b8bdf1b37bd354f73735816af9b8ba8ee0911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:33:c3:ac:ca:73:76:3f:6c:37:b5:5e:f2:45:
8d:03:fc:5a:3f:d2:79:92:53:9b:27:70:08:94:97:
cd:3e:be:a7:71:d3:28:c7:6c:76:be:b3:13:d9:b1:
14:8f:f7:08:ce:9e:8a:99:d6:57:5e:bb:13:b5:cc:
eb:d9:d8:05:db:92:ad:f3:26:aa:df:c2:2b:0d:61:
1d:70:9d:cc:b5:35:56:bb:06:7e:28:52:96:9e:3a:
5c:d0:8e:79:f7:16:ee:9a:03:8a:fb:60:73:19:29:
a4:23:40:39:c1:99:6e:d5:91:f4:f7:5b:e2:0f:9f:
25:6f:6d:b8:b7:57:84:7b:89:39:e0:1d:f6:44:d6:
ca:68:eb:9b:6a:d2:d7:03:13:48:c3:1b:6d:a3:47:
de:99:5d:52:0f:a7:3a:9b:2f:d0:93:01:49:47:99:
33:ec:d3:9d:08:3e:aa:37:59:0e:b1:1c:8e:d8:33:
35:74:04:da:65:77:a3:46:5a:60:53:97:5e:5b:ae:
e2:cd:c5:d3:02:cc:a2:7c:eb:ac:32:ca:a6:9a:d2:
3f:a4:d9:ca:b2:99:05:6d:5d:f4:45:c5:fa:b1:f5:
38:2a:d0:28:c4:ed:9f:92:e9:66:00:87:c8:e1:32:
12:23:81:fd:33:a3:fe:2f:74:98:a2:4f:79:44:eb:
24:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8B:8B:DF:1B:37:BD:35:4F:73:73:58:16:AF:9B:8B:A8:EE:09:11
X509v3 Authority Key Identifier:
keyid:CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:d8:5b:9e:c7:7b:e7:55:99:43:8d:89:1b:54:4b:61:d6:2c:
bb:02:ea:a8:8c:c3:96:ee:cf:16:8b:eb:e1:43:df:e4:0a:f0:
e2:39:d3:8f:0a:e2:f6:c6:ae:1e:14:50:0c:2e:6f:cf:7e:08:
de:b2:0c:01:6f:88:9f:89:80:05:2c:57:db:2c:25:eb:71:a2:
2b:db:41:0c:9e:e0:be:95:7b:7f:7c:42:68:83:ba:3e:13:76:
34:8b:b0:de:e7:c4:17:d4:d1:04:47:b3:c8:18:fd:f2:63:67:
90:81:e6:3f:2a:c9:e4:69:5a:d7:b8:d7:55:a8:c5:92:a2:16:
a5:9b:3f:6c:c2:cc:02:d2:e6:38:ce:45:79:55:9a:26:d2:b9:
1b:87:d3:fe:fc:85:db:a8:80:b4:a7:e0:66:8c:82:da:04:e5:
b7:3e:b5:c8:07:0d:f7:99:13:87:5b:89:cd:26:97:08:ef:ef:
73:c1:ab:3b:9e:3c:c6:7c:a2:47:c3:8c:37:c1:a4:31:8a:5f:
29:47:e0:77:30:1d:a2:b9:93:b5:a6:92:d3:8b:97:06:86:8b:
a6:0d:3a:92:7e:34:84:0f:44:cd:54:80:c5:d5:32:94:69:38:
a4:32:89:4f:fa:68:cc:05:67:b2:67:28:c6:be:20:a2:90:e5:
76:9b:7b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:53:51 2024 by rpki-client on console-fra.rpki-client.org