Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json)
Hash identifier: 768dRtOm8E+etKGNLcCFFW9mNsKDL5NLVbrLvgpclM4=
Subject key identifier: A1:01:5A:0C:E3:B1:91:D8:63:D4:0B:DE:88:85:B2:29:A8:93:EC:28
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 019357D28F324DA3DA87F46EE49BFB175E38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
Manifest number: 1370
Signing time: Sat 23 Nov 2024 07:00:37 +0000
Manifest this update: Sat 23 Nov 2024 07:00:37 +0000
Manifest next update: Sun 24 Nov 2024 07:00:37 +0000
Files and hashes: 1: JiB3FXwp2QWtIqsnoszc93ADycI.roa (hash: ZI764dph9CL9w4eK7Sdu3kG8HQl6P3MnmJTq5j604Ac=)
2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: DFtUgl8Fl6jAi6OU8kh26XDqqys2R9RTovJoS9yAHcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:8f:32:4d:a3:da:87:f4:6e:e4:9b:fb:17:5e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: Nov 23 07:00:37 2024 GMT
Not After : Nov 24 07:00:37 2024 GMT
Subject: CN=a1015a0ce3b191d863d40bde8885b229a893ec28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e1:71:51:13:45:8b:eb:e4:5a:19:99:ca:df:
b8:33:5d:2e:55:89:f9:f8:09:12:3d:2b:f5:01:fe:
da:93:be:ab:bd:f1:e6:3c:22:86:69:51:45:65:7c:
64:12:71:40:1e:9c:82:63:3c:87:c9:01:fc:54:76:
52:84:fd:3b:3b:6c:bf:31:e4:82:9f:45:17:5a:0a:
96:2c:62:67:2a:b1:8d:f0:e7:e8:ab:df:fb:40:21:
36:4e:a6:26:13:e7:5d:c7:77:96:63:8d:3e:79:5d:
03:63:31:4a:ab:68:23:7a:f2:b7:99:33:e3:11:5f:
e8:ed:38:e1:da:3f:6a:64:1d:81:6e:51:34:5e:ef:
24:a9:30:4c:a5:1d:09:24:b9:08:98:b6:ee:95:d9:
bd:e7:36:8c:0d:3b:0c:4d:94:80:cb:0f:6d:b7:76:
16:c0:73:74:8b:ff:c9:4a:15:93:c8:0e:4e:94:f8:
f1:f2:f8:b4:97:0b:4d:d1:74:37:54:37:1e:2d:d0:
ac:62:68:9d:82:f5:56:f2:3e:2a:6b:20:d2:71:5c:
86:a2:c2:6a:61:78:80:9e:3e:97:21:23:9a:22:3c:
c3:b4:89:ae:8d:a9:65:7c:3e:41:5e:9a:85:fb:da:
d6:69:49:0f:1e:6a:b9:d6:5b:7d:24:d9:c2:e8:4e:
98:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:01:5A:0C:E3:B1:91:D8:63:D4:0B:DE:88:85:B2:29:A8:93:EC:28
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:69:ac:10:59:ec:49:28:14:b7:78:a9:7e:e7:4e:bc:0e:20:
97:5a:68:7b:ef:25:76:7b:38:bd:fb:2a:79:a4:95:60:55:75:
14:52:e1:35:42:48:f5:87:5c:ae:3e:36:f6:21:a4:51:d9:69:
cf:00:b4:98:84:10:02:65:8f:0d:a9:b9:84:0b:4d:d5:80:64:
ff:96:d0:3f:1c:ba:0c:18:90:c9:a5:e1:23:6d:0d:50:35:f4:
96:a9:f9:1a:17:36:f4:8e:dd:db:13:b4:97:7a:0b:26:86:3f:
62:09:55:51:31:5d:7e:f9:1b:d2:68:cc:ab:26:8a:bd:e6:25:
28:a1:ab:b7:0f:ac:f8:ce:82:e8:e9:93:30:32:93:6f:77:9e:
9c:92:1b:0e:38:f2:e3:52:f4:c8:c5:4f:8b:30:09:dc:8f:34:
4d:a1:30:d2:81:4f:bf:5e:8d:52:86:54:53:17:b7:c4:64:ce:
a4:9c:ba:81:ca:8b:72:ed:65:0f:01:8f:af:e0:41:e0:03:9b:
18:a0:1f:e0:7c:ce:37:96:05:38:da:01:66:bb:74:67:16:5c:
ae:5a:34:49:81:e5:85:e2:56:f7:1d:60:16:16:e7:0b:e3:99:
9f:52:11:78:87:36:d6:db:c7:5a:f0:17:4f:7b:96:24:8c:a4:
ff:e1:bd:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:22 2024 by rpki-client on console-ams.rpki-client.org