Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
File: 0RIqXLBkP3NsfseWGAmiWThmjw4.mft (raw, json)
Hash identifier: OwdtFR6d+zcn24nVdROg5PjVpui1ZMtt9OfuWF0CVnY=
Subject key identifier: 01:04:62:AE:F2:ED:66:5A:FF:14:4E:E2:05:F6:D9:69:AB:13:73:E1
Authority key identifier: D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
Certificate issuer: /CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Certificate serial: 019355E449CFF5A10748961B10356FBDE618
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
Manifest number: 1370
Signing time: Fri 22 Nov 2024 22:00:44 +0000
Manifest this update: Fri 22 Nov 2024 22:00:44 +0000
Manifest next update: Sat 23 Nov 2024 22:00:44 +0000
Files and hashes: 1: 0RIqXLBkP3NsfseWGAmiWThmjw4.crl (hash: HER1VChs4hyv3M6mWT5Ke4J9Zmlp2krLWwS3iCcn3C4=)
2: nEKnouiCbam26W4MrvIVidutBtA.roa (hash: g9c7BzWpXbLvQPj8MgnNm1fN+2EC1kslzAyN7Uhs9Y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e4:49:cf:f5:a1:07:48:96:1b:10:35:6f:bd:e6:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Validity
Not Before: Nov 22 22:00:44 2024 GMT
Not After : Nov 23 22:00:44 2024 GMT
Subject: CN=010462aef2ed665aff144ee205f6d969ab1373e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:20:c3:1c:92:eb:9c:f2:78:96:1f:92:cf:da:
8a:f5:0e:33:39:0a:f3:70:ae:d1:01:38:02:de:69:
7b:aa:76:6f:2e:e9:69:2c:c5:ae:17:1a:95:99:80:
e8:0a:c5:95:e5:50:cb:11:60:6d:26:41:46:d1:89:
12:97:6a:15:11:98:dd:f3:b4:55:92:5f:97:1a:d2:
fe:73:ac:9d:a8:fc:95:6d:92:d1:e1:97:6c:cc:4c:
ed:c8:c4:1f:c3:23:1d:3d:63:64:c3:b1:69:bf:e0:
72:2e:db:b4:0b:9c:09:c3:2b:75:00:3a:fc:5e:47:
67:10:ab:10:29:31:23:c2:6e:42:15:cb:82:95:65:
ff:49:4d:9b:e5:f4:f4:33:e7:74:8a:01:2e:8e:7e:
01:6c:d5:81:93:84:97:0a:b6:a9:d7:19:da:1f:92:
5b:eb:96:aa:38:d3:9e:91:22:ad:6c:15:26:7d:61:
2a:93:3a:3f:85:4f:60:98:ef:de:c9:8a:6a:61:ce:
ac:8d:d1:6a:0f:bd:70:b1:5a:90:b5:f9:9c:06:d7:
93:53:51:3d:12:0e:fc:0c:20:09:ee:a2:4c:da:51:
97:28:b4:85:f5:9e:d8:b9:16:81:e5:e7:f9:db:42:
dc:06:d9:c9:d9:83:a5:18:4f:cd:0c:ed:b4:84:1c:
27:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:04:62:AE:F2:ED:66:5A:FF:14:4E:E2:05:F6:D9:69:AB:13:73:E1
X509v3 Authority Key Identifier:
keyid:D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:4f:87:03:e0:44:fb:c4:36:db:cb:0f:63:d8:d4:8a:5a:5d:
f7:e4:ff:99:44:31:23:a9:f5:8d:c2:d5:28:7d:d2:55:9f:dc:
50:0c:50:eb:f4:63:48:67:55:e5:7e:bd:16:89:78:85:be:5a:
a5:f1:33:28:6a:f1:5a:3e:b7:e6:7f:98:40:69:ba:fd:a7:55:
46:12:e3:e2:de:f4:16:e5:23:d8:56:38:96:cf:c1:d3:04:7a:
da:de:f3:34:c7:70:2f:df:30:a5:34:ef:10:cc:d9:8b:13:40:
fb:fe:86:57:01:31:07:fc:32:af:7f:17:d7:55:72:6c:8b:1c:
a1:b5:64:e7:88:56:d1:6d:c5:24:39:48:5f:dd:22:49:4f:ae:
9e:df:21:a5:19:8d:88:ce:35:7f:83:e7:55:ee:3f:92:38:dd:
08:d6:0a:7a:db:15:15:53:c0:be:a6:bd:15:24:d7:49:0f:f2:
bb:55:e6:1f:de:35:83:2a:7a:7a:84:1d:6c:86:61:c9:2f:51:
c2:d4:ba:29:3f:7f:16:62:c2:56:61:2b:81:ef:e5:b0:83:46:
59:42:1b:12:22:66:c9:9f:4f:84:c5:b9:72:a2:d9:b0:82:64:
ea:46:4b:87:bf:0b:09:eb:11:66:96:33:a8:4b:fe:f6:7f:08:
f5:fe:e8:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:00:45 2024 by rpki-client on console-ams.rpki-client.org