Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: xCm7FNV4+NqJ/GI0E2Jjk6V3a7OWLNTafAXMLzfIkiQ=
Subject key identifier: 70:6D:A9:F4:14:A4:61:B9:C8:EE:F8:7A:04:97:B7:3C:FC:80:87:7E
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 0193595322D637EB4D109F2B7AFC3F51A5A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 10B6
Signing time: Sat 23 Nov 2024 14:00:40 +0000
Manifest this update: Sat 23 Nov 2024 14:00:40 +0000
Manifest next update: Sun 24 Nov 2024 14:00:40 +0000
Files and hashes: 1: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: 2l5TNPuHdFDMylJfkYMxQY+9/0twK2PW2d7lLT+lhZU=)
2: xJRDdgU1QKvWLcDDvgD65_2zgH4.roa (hash: VGOKCDEQsA5H4jgg9RyTcHL7RXja6Sw6T7nUmI++BMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:53:22:d6:37:eb:4d:10:9f:2b:7a:fc:3f:51:a5:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Nov 23 14:00:40 2024 GMT
Not After : Nov 24 14:00:40 2024 GMT
Subject: CN=706da9f414a461b9c8eef87a0497b73cfc80877e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:76:dc:03:f3:93:1a:82:44:3a:52:c0:f0:28:
c4:96:34:c0:a9:b2:09:76:f8:a7:01:98:ef:4e:e0:
c9:85:2a:50:a6:88:9c:c5:5f:29:b1:ea:0b:09:eb:
ff:93:ad:99:10:97:27:b3:a0:04:cd:ee:dc:b8:27:
91:5f:67:37:f8:ef:29:59:fa:de:27:48:14:dd:17:
81:cd:6e:69:2a:5d:8c:3c:fe:e1:27:23:3e:60:25:
ca:d1:77:4f:3e:c6:74:2c:f8:1e:da:09:e6:ab:47:
d0:d2:e3:69:dc:17:68:70:0f:3a:0d:d5:ac:ff:6d:
49:ca:15:33:83:0f:78:af:1a:17:4c:e9:a1:5f:cd:
ac:53:56:4c:18:48:3b:f2:35:7b:62:8d:72:91:37:
3d:51:b8:e9:d3:fa:c7:46:63:54:d4:49:c0:2d:f1:
1b:e0:40:e7:db:d0:d9:41:98:5a:f0:1f:b7:19:b4:
21:65:15:5c:66:26:db:b4:17:d2:56:f4:d8:f6:61:
37:fc:2b:32:4e:0d:a5:1b:7e:07:47:e7:be:8a:c8:
8e:14:1b:d9:b0:c8:34:ad:ac:11:64:00:8e:c7:5f:
cf:ec:15:18:ca:ea:a5:69:1f:b1:5f:c5:74:4b:df:
45:4f:11:e7:7c:db:b9:fe:28:65:9d:55:2c:b2:6b:
57:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6D:A9:F4:14:A4:61:B9:C8:EE:F8:7A:04:97:B7:3C:FC:80:87:7E
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:16:a7:8e:47:4e:ba:bf:01:19:52:29:f8:6a:1d:31:34:f1:
8f:ab:ae:bb:e7:f0:8b:8d:6a:88:76:78:81:64:b8:d1:c7:95:
ad:51:9b:28:17:52:21:53:4e:5e:e1:38:97:b0:84:e8:f3:e3:
30:22:01:35:31:e8:4b:bc:24:1a:71:a4:d2:5e:07:51:7e:0e:
5f:7a:ba:77:39:5a:89:15:51:df:14:a2:f4:6a:dd:4c:47:60:
12:0f:5b:fd:07:fd:10:51:9f:ef:cf:3a:55:6e:83:82:9d:58:
94:20:cd:99:d5:07:51:b8:b1:4c:bc:44:cc:a1:6b:0c:f2:c5:
4a:3d:25:f0:c1:25:c0:15:7d:5e:e9:04:64:d5:c2:d6:f5:dc:
25:a3:f9:3f:5e:c1:d4:12:27:86:44:1e:25:76:0a:3c:ed:5f:
09:7d:87:96:ec:e9:25:22:7e:df:e3:46:15:de:0a:18:f0:24:
d0:42:c6:59:ee:48:e1:6e:b5:83:17:60:7b:0e:fb:86:5d:97:
aa:38:66:25:5f:ee:41:2b:5a:6e:2b:94:08:da:e5:f2:69:fd:
5e:db:35:4e:a0:1f:c1:ab:df:3a:14:ed:99:5b:f5:40:7b:59:
b0:14:d3:42:9c:cb:7e:5e:f1:21:e8:b9:af:b8:a6:68:71:cf:
7d:db:06:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 17:10:32 2024 by rpki-client on console-ams.rpki-client.org