Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
File: dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json)
Hash identifier: GZb9q1AII1+CJRzPsnHl+IE0DLTVJ3zPOkmIwexKIpw=
Subject key identifier: 0C:46:7D:C9:6C:D8:35:04:29:CD:C7:CF:5B:07:C8:E7:C3:72:84:6F
Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
Certificate issuer: /CN=7720c670434da5102261099da101f25dd3f7aada
Certificate serial: 01936B226D3F8419887EC0607CB314D23E74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
Manifest number: 0BBE
Signing time: Wed 27 Nov 2024 01:00:38 +0000
Manifest this update: Wed 27 Nov 2024 01:00:38 +0000
Manifest next update: Thu 28 Nov 2024 01:00:38 +0000
Files and hashes: 1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: TaNbZL5BeK11O5Xpft3SyT2/B9uC3ZySa9Rcq6fGs6M=)
2: qkXD50jyS1kD_4st0XzB_QdkroY.roa (hash: 26dmKqb7XRRP7w0SjrG9J/qaFpCWsLiO8heCugiYxYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:22:6d:3f:84:19:88:7e:c0:60:7c:b3:14:d2:3e:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7720c670434da5102261099da101f25dd3f7aada
Validity
Not Before: Nov 27 01:00:38 2024 GMT
Not After : Nov 28 01:00:38 2024 GMT
Subject: CN=0c467dc96cd8350429cdc7cf5b07c8e7c372846f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:49:b8:67:86:67:28:ec:1d:46:db:5e:ee:62:
75:33:0d:4e:0f:3a:27:a2:5d:b8:2f:22:96:69:60:
be:eb:e3:87:3e:f4:b3:86:d2:d4:9b:5d:d4:a1:5a:
67:a0:6a:e3:7c:fc:fd:a7:3d:5c:ce:87:4d:1e:67:
b6:91:b4:d2:26:cc:08:28:79:3f:19:02:ad:77:12:
d7:5a:29:1c:b6:d7:50:8d:a9:ff:45:6c:62:4a:03:
8b:8d:4c:27:89:e0:fc:72:90:ba:c5:44:50:48:cf:
eb:f9:de:12:dc:73:1e:fa:27:ab:25:0e:b0:71:1e:
00:95:64:53:89:6e:af:3d:f9:7c:2b:36:1e:8b:79:
c1:8b:5e:3f:d1:f1:9a:a7:a4:aa:0d:65:7c:9d:0a:
3c:d4:23:8a:c1:cf:a8:1a:5f:84:dd:eb:78:be:06:
43:2e:55:ee:15:7f:a7:27:28:53:ff:5a:e4:b8:20:
13:e7:c8:7e:31:1a:9c:24:21:3d:fc:da:60:35:0b:
95:68:f1:44:6d:f1:5c:06:f0:cc:3a:a9:9a:e7:8f:
11:b2:dd:a2:67:d1:50:23:a6:ae:9f:bf:35:b7:af:
0d:6e:2d:9c:90:ec:79:2d:a4:3c:98:d9:21:34:34:
13:8c:75:9e:3b:eb:35:8c:a2:69:0e:2c:03:9e:aa:
37:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:46:7D:C9:6C:D8:35:04:29:CD:C7:CF:5B:07:C8:E7:C3:72:84:6F
X509v3 Authority Key Identifier:
keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:c8:d9:41:ef:d5:6b:31:f9:4b:20:6a:d9:cb:23:33:54:be:
ea:80:31:ab:86:e4:c6:d1:91:d1:6b:75:fb:0e:84:b9:b0:cf:
95:a6:68:12:fa:fc:14:41:23:e7:e8:a7:86:7a:f2:f3:2c:38:
1f:c1:b1:6e:09:ed:72:05:e5:c9:66:5c:8a:1b:25:39:2f:7a:
0d:df:99:13:27:f5:d3:bc:cf:97:97:f6:96:51:10:18:36:aa:
26:0b:b9:6e:03:1f:cd:89:0c:f7:3f:fc:11:ab:ac:17:94:c8:
d5:62:35:60:5d:2a:c7:aa:00:a8:72:36:f6:35:24:73:db:0e:
50:79:00:61:aa:b8:d6:74:a6:28:e9:b8:75:3b:b0:8e:c9:3e:
9b:a9:8d:3e:e8:95:4f:27:68:4f:eb:d7:71:86:07:7b:4e:f7:
eb:b5:e8:2b:5a:92:7f:82:40:14:78:05:8b:79:95:d7:c1:d9:
29:e6:cf:7d:f9:f9:50:00:93:6d:53:90:2b:a3:80:12:8e:2c:
a5:27:85:7b:b4:fd:eb:c4:e2:50:ef:a8:5b:15:ee:fb:7b:7a:
4d:ad:77:61:78:00:9e:a4:13:87:69:5a:6c:d6:0a:4e:f5:6d:
db:a7:bb:f0:cd:76:a0:b8:bb:9f:31:a5:5f:0b:a2:f0:7b:96:
58:b5:7b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:48:06 2024 by rpki-client on console-fra.rpki-client.org