Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: 60JMRVvtJiPuYPlVLUcsFer1LzGtndEQZiR1X74cvoE=
Subject key identifier: 31:4F:A8:4C:86:30:05:24:CC:10:B6:48:6E:E1:08:E6:BB:6B:FB:CA
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 0193587897EE2CD9CEC51FB29A9251A44A9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 137B
Signing time: Sat 23 Nov 2024 10:01:58 +0000
Manifest this update: Sat 23 Nov 2024 10:01:58 +0000
Manifest next update: Sun 24 Nov 2024 10:01:58 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: w3Bl01PVT1ep20lgsToidwEKjir1hrNRgMb1ZngAKl0=)
2: BTEFmxApNcRXUG3FvdPAv1FrG_A.roa (hash: OVXSJm9BYCh0daP9YUBEg5ImNEblCcM5Tn+NUBUm+DM=)
3: g5CgRvkMNsAIfSPRrZKAoc83dmw.roa (hash: b0+iYHkrYY5itcVPcmWicFjHpyM0J9I80oQX1hAfiIQ=)
4: ocLojybqrMR9wTztcJr6AY-s07U.roa (hash: igNyxKcniHRm94ccZj4kkKHDkiZRDD4dE+mqy7fPTjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:97:ee:2c:d9:ce:c5:1f:b2:9a:92:51:a4:4a:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Nov 23 10:01:58 2024 GMT
Not After : Nov 24 10:01:58 2024 GMT
Subject: CN=314fa84c86300524cc10b6486ee108e6bb6bfbca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:46:fb:37:d2:9a:75:22:56:fe:e8:ec:c6:c3:
97:15:4f:d6:b7:c5:1c:78:41:c7:88:4a:26:af:54:
4f:ec:57:19:2a:b1:de:b6:bf:fd:96:b2:bc:69:03:
1e:cc:6a:e4:47:db:f4:1f:46:08:31:f9:9c:20:9a:
9a:73:36:ce:8b:2d:f9:4b:69:9f:b1:95:47:33:9c:
bc:0c:77:39:27:66:41:3a:34:0e:13:5e:88:96:d3:
42:59:f4:db:60:b8:cd:99:b8:45:77:f8:46:49:b2:
4c:3c:ff:77:2f:a4:02:c3:b1:6b:d3:78:2e:c0:3c:
2f:fe:11:75:04:c7:10:ec:31:f2:00:59:19:2c:dc:
08:94:5b:8c:c0:06:79:4f:67:69:d8:a0:59:a8:d1:
fc:5d:28:49:84:ea:5c:20:04:c6:0e:c4:72:00:3f:
fd:f6:ca:c3:6c:d5:25:40:89:98:e7:ae:4d:17:d3:
10:af:11:99:29:10:93:e1:c0:91:4c:80:cf:7f:50:
84:61:61:e7:c5:63:96:a2:54:73:1b:cf:80:7c:59:
6b:4f:18:24:73:dd:82:6b:d3:bc:5e:3a:46:f0:81:
3b:ef:4c:30:57:05:1b:3a:4d:17:49:32:41:b1:59:
05:53:85:fe:2d:68:8e:0d:4e:74:92:30:03:b0:8d:
ec:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4F:A8:4C:86:30:05:24:CC:10:B6:48:6E:E1:08:E6:BB:6B:FB:CA
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:0e:df:a7:ed:82:87:11:93:96:03:22:b7:b3:2f:bf:fa:aa:
e7:20:80:5d:bb:96:24:9f:e7:09:2b:1b:79:9a:02:11:c6:97:
69:7a:31:54:5c:6f:91:27:2d:5b:da:4a:0c:55:81:14:8c:94:
51:24:f3:22:8f:f8:9e:9c:8a:bb:cc:07:4b:a2:79:81:4e:af:
13:7e:99:eb:51:af:95:90:2b:60:8c:11:2d:27:0d:b5:85:45:
99:8f:14:ca:44:ad:83:28:8f:f6:73:d3:b2:a8:83:8a:4e:5a:
7c:b8:e7:ef:b0:50:e3:a5:e3:b4:6b:87:37:5a:f7:e6:10:34:
01:00:a4:24:90:9d:80:a4:d9:ba:51:11:93:e2:73:5b:a1:2b:
40:36:5c:97:c3:56:77:e4:6c:c6:af:4b:7e:b3:0f:45:74:5e:
fb:a1:bc:18:6f:f0:7a:5d:eb:bf:90:b2:23:1c:6c:25:a6:0d:
e3:af:d5:8b:cd:1c:ae:ad:b6:a8:6b:f1:cf:dd:38:d0:68:b4:
96:1e:21:65:48:ec:98:74:91:11:b4:ee:3d:60:8d:f7:ed:f9:
3d:db:ba:e0:82:dd:4a:e2:9f:e8:0f:5d:5f:34:73:f1:4b:4d:
c9:8d:2e:b8:ee:93:e8:ae:ba:1c:ea:aa:af:da:bc:6e:16:9f:
e0:cd:0d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:06:17 2024 by rpki-client on console-ams.rpki-client.org