Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: UxRjDDyRCPrQR8q+eOV7LAahSls3Yz4Y+JxJiwJ/FRs=
Subject key identifier: 79:AB:49:E4:7E:6E:85:57:7F:14:09:45:2A:EE:C4:98:87:DB:56:D0
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 019369D8D60C250396CC4E0AFEE86BE6F2C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 03CB
Signing time: Tue 26 Nov 2024 19:00:38 +0000
Manifest this update: Tue 26 Nov 2024 19:00:38 +0000
Manifest next update: Wed 27 Nov 2024 19:00:38 +0000
Files and hashes: 1: 0iPIn0B4eFrd1fYhl3B_QMoabOA.roa (hash: kLKjUt/phM+9IAnWlKGnGFf7oYR4x+MlZl4ycv/p2m4=)
2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: QeDVH2xgV0WzphisyhXSo7xCLBx6QVOY4jJyeI821W0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d8:d6:0c:25:03:96:cc:4e:0a:fe:e8:6b:e6:f2:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: Nov 26 19:00:38 2024 GMT
Not After : Nov 27 19:00:38 2024 GMT
Subject: CN=79ab49e47e6e85577f1409452aeec49887db56d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b3:6c:cc:de:99:31:53:a4:d1:69:f8:1c:cf:
13:d4:3b:84:be:e7:40:79:d2:f5:0a:e5:89:6b:56:
40:f1:a7:d0:7b:e3:2a:c6:42:fc:14:89:29:aa:0e:
bf:da:77:a9:8b:e5:12:c5:b8:1c:e2:b6:ef:fa:33:
5a:fe:8b:3b:c8:77:52:28:cf:da:f7:d3:de:de:a4:
fd:a6:4c:a6:41:1f:cc:57:17:fc:3a:e8:ab:61:6a:
18:83:5d:6d:a0:41:c1:97:9a:0d:81:59:d7:05:06:
7c:fd:44:d6:7e:4c:35:ff:e7:6f:51:ad:31:f1:3d:
dc:65:b5:73:94:ca:ee:9d:e7:c1:c5:e3:33:59:d2:
d3:bd:93:41:19:c2:68:07:1c:1d:58:a9:0c:e9:23:
0d:14:1b:71:60:c2:5e:24:49:7b:35:4f:57:a5:bb:
6b:7d:02:a1:23:6f:57:0b:64:45:9d:b2:ee:2a:d2:
c1:a7:df:2e:91:0c:bb:bf:ea:5d:fe:b5:6c:58:69:
4e:c9:a0:14:41:12:97:eb:d8:9e:bd:94:ba:a9:e1:
79:c5:2c:82:8c:09:d0:d1:a8:6a:4f:1c:70:d9:d1:
0d:ed:ae:5a:9c:a3:79:6a:99:ac:0b:bb:90:95:8b:
37:4c:a8:dc:bc:f6:7c:af:17:d2:23:73:df:7a:4f:
71:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:AB:49:E4:7E:6E:85:57:7F:14:09:45:2A:EE:C4:98:87:DB:56:D0
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:42:43:28:9c:b4:8e:77:7a:40:d6:6e:ae:67:6c:b0:fe:e2:
92:d7:d0:3d:3c:18:89:e9:1a:dc:04:2e:b0:d8:cc:ce:1a:d0:
e8:08:34:a3:87:5f:0a:d9:6d:25:39:0d:dd:6b:eb:89:f6:10:
32:46:1f:b7:e1:90:d0:aa:1e:ee:7f:8f:3d:93:a7:98:2e:ee:
a3:9e:ae:88:e0:8a:15:b2:70:8b:80:0e:6c:62:76:7f:63:f4:
55:6b:a4:df:80:85:3a:f2:30:39:01:a1:85:6d:4e:fa:1d:2a:
de:f8:25:5b:34:9d:39:e6:fe:26:8c:b0:a5:38:d7:e4:d2:15:
b3:1f:c0:6e:df:39:26:6b:b3:df:de:89:3c:22:f2:93:d5:67:
52:c3:41:d8:ae:96:c5:92:45:39:cb:bb:83:43:55:21:76:9e:
d3:78:6c:ff:5e:c9:d0:5f:80:d8:20:8d:d9:04:10:22:43:27:
f1:43:f3:3f:a7:cb:52:de:f6:2b:d3:61:92:84:36:65:62:ba:
2a:ed:ea:9e:c6:c6:b9:14:a3:a4:d2:5d:a7:9a:14:c1:02:7b:
12:c9:78:ac:84:27:dd:83:1f:c5:5f:1e:f7:77:e8:ba:ed:b9:
fa:22:5a:ea:7c:fb:a5:94:4e:5f:53:60:7f:cd:7d:fc:ca:06:
38:4b:4f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:37:56 2024 by rpki-client on console-fra.rpki-client.org