Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
File: DT66aHPFtQdbPEOff-61SvHxDak.mft (raw, json)
Hash identifier: zAfjAg8vFky76odEulEzbk53FifGvH+XNMC8BsQimTY=
Subject key identifier: 78:B4:D8:F5:6C:ED:D3:81:FD:03:9A:41:55:83:9E:0F:E9:04:09:E5
Authority key identifier: 0D:3E:BA:68:73:C5:B5:07:5B:3C:43:9F:7F:EE:B5:4A:F1:F1:0D:A9
Certificate issuer: /CN=0d3eba6873c5b5075b3c439f7feeb54af1f10da9
Certificate serial: 01935877740E2D1F3AC3E44DE683E7F956F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
Manifest number: 1378
Signing time: Sat 23 Nov 2024 10:00:43 +0000
Manifest this update: Sat 23 Nov 2024 10:00:43 +0000
Manifest next update: Sun 24 Nov 2024 10:00:43 +0000
Files and hashes: 1: DT66aHPFtQdbPEOff-61SvHxDak.crl (hash: geAA8/6i3i09rckLm6IBg/phiQ9LwqGM8NOFrMb/n48=)
2: uu_YoYnvZPmOdlMMWyD_vPauEAw.roa (hash: Z/cfOisdIWlEvODbt+vH+5osAn8VKhnTAJd8Lx3wc4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:74:0e:2d:1f:3a:c3:e4:4d:e6:83:e7:f9:56:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d3eba6873c5b5075b3c439f7feeb54af1f10da9
Validity
Not Before: Nov 23 10:00:43 2024 GMT
Not After : Nov 24 10:00:43 2024 GMT
Subject: CN=78b4d8f56cedd381fd039a4155839e0fe90409e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e2:04:4e:33:75:04:47:14:c6:8b:9f:e7:50:
dc:5f:72:b0:5d:65:f2:0a:2e:09:80:21:49:f7:8a:
5b:fe:7b:95:9a:e9:2b:5e:f4:20:7f:49:a6:02:75:
bf:39:a4:bc:47:94:00:af:19:50:a2:32:fe:eb:92:
e2:03:fe:84:a5:ac:0b:cb:a9:c1:7b:4f:1c:91:f6:
ed:2a:bd:69:a3:f8:3e:12:57:34:44:d9:d6:cf:75:
3e:be:7f:08:11:18:4d:e2:07:a4:a7:b0:8f:f1:e0:
08:fa:23:59:a3:ee:ad:ba:7c:99:63:94:05:94:b5:
e7:70:78:c1:35:3c:6b:74:a4:f7:00:46:a8:d3:3c:
3e:30:ab:b0:66:53:1d:fa:61:28:33:21:8e:07:23:
2c:8f:71:68:79:b5:d0:5c:2c:e2:0d:a7:81:87:bf:
bd:24:cc:f9:1a:e5:ab:90:d9:45:3a:f8:44:43:ba:
c3:1b:e8:30:ec:00:25:50:96:1a:99:cc:74:6b:68:
24:70:7f:8e:2a:fa:e8:3c:45:4f:7f:e3:93:c3:87:
f3:67:f8:f4:3e:c0:b4:03:a5:6a:ee:86:02:78:cc:
62:17:f2:4d:80:0c:fa:46:23:da:82:d5:9f:d0:d8:
b2:15:f1:a5:a8:fc:55:55:bc:0d:04:79:3b:4e:9c:
5a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B4:D8:F5:6C:ED:D3:81:FD:03:9A:41:55:83:9E:0F:E9:04:09:E5
X509v3 Authority Key Identifier:
keyid:0D:3E:BA:68:73:C5:B5:07:5B:3C:43:9F:7F:EE:B5:4A:F1:F1:0D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:73:9c:16:75:3a:45:b5:be:e3:04:25:5f:2f:80:9a:c0:bb:
5e:f4:19:17:8d:38:f6:c4:a2:3c:fd:62:2d:71:23:e4:17:54:
29:de:cf:d1:fc:b3:39:ee:5a:0c:51:ff:f2:3e:4e:2e:63:9f:
5d:4d:1c:db:66:10:2a:b0:21:39:e9:a3:a1:d5:3f:8a:f8:74:
96:21:32:29:c3:b0:19:00:37:bd:66:a4:0e:49:88:75:40:5e:
75:10:1e:35:32:d7:bb:e1:4a:09:69:69:5f:4d:9c:a9:69:d8:
1f:0d:91:13:55:fa:39:08:f6:34:f9:ed:ba:ab:86:84:01:a8:
be:6b:1b:a8:7f:26:fd:5d:d2:32:94:c8:40:a9:3e:71:e6:d3:
8b:01:2d:48:be:b2:2f:8c:c5:10:9a:71:39:64:43:24:7f:6b:
43:0c:b6:52:2b:b9:64:fb:81:a1:c0:98:39:0b:17:88:de:9e:
1b:0c:32:99:47:56:05:53:43:01:6c:35:b1:ef:b1:db:77:d0:
dc:90:d6:94:b2:ef:a3:6b:1b:0f:e0:e5:94:6c:50:70:ff:4e:
59:a9:e9:af:58:1f:d6:58:2d:92:b4:26:48:ae:f7:4e:b7:b9:
75:d7:8e:27:65:23:05:44:72:cc:24:bd:dd:0f:41:44:c5:c1:
13:92:74:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:59:08 2024 by rpki-client on console-fra.rpki-client.org