Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json)
Hash identifier: 247hS38GDByVU3oSN6D+Hhv/HFWIkbZ0HEiUMYY1W+k=
Subject key identifier: 0D:0F:38:A3:5A:D2:2E:CE:0B:AC:61:D4:F1:79:9D:3E:D4:8D:CE:64
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 019356F686A1407DB288E518D02D7C3A9DFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 03:00:17 +0000
Manifest this update: Sat 23 Nov 2024 03:00:17 +0000
Manifest next update: Sun 24 Nov 2024 03:00:17 +0000
Files and hashes: 1: E8PGgVAvoeXlBStb766fh9328ic.roa (hash: BALNFKsIlbMeHuf6nFJYJd/w9tx1+ycIiIhf7mh+fVo=)
2: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: tGXOEaVB4N9GvJkXCBwxmqQ+EqDEm2RMxX+Dt7hhLj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:86:a1:40:7d:b2:88:e5:18:d0:2d:7c:3a:9d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Nov 23 03:00:17 2024 GMT
Not After : Nov 24 03:00:17 2024 GMT
Subject: CN=0d0f38a35ad22ece0bac61d4f1799d3ed48dce64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:48:e5:1a:58:89:37:c2:c4:34:4c:3d:72:7f:
a0:ad:71:fe:e9:46:70:8a:ec:ae:d1:f5:f2:28:5c:
c8:eb:a8:cd:28:08:88:27:68:e0:05:14:2f:0a:52:
97:1f:cf:1a:d5:4e:50:f1:02:8a:8f:df:6e:8d:e5:
c6:ca:c3:ce:9a:61:b9:ef:f3:4d:3e:83:55:e2:68:
fe:9e:28:d2:c6:58:8e:c3:2d:08:ac:9c:03:fb:9f:
cc:1a:fa:61:8a:be:72:14:3f:bc:5d:16:5e:b5:5d:
b3:f3:b6:79:ab:48:23:72:ba:ef:07:45:9b:2a:26:
ad:d1:66:bf:10:c2:a9:29:fb:ae:da:56:2f:a8:a7:
37:3a:e5:37:c9:59:c0:d2:6c:9e:28:c6:4d:b7:fc:
cf:8c:aa:4a:ec:a9:f1:9f:d2:ff:1e:61:f4:40:45:
5d:89:20:e6:3f:6b:e3:1c:63:67:ed:d5:81:63:08:
fb:05:f0:f0:14:b3:cd:5a:5b:40:f5:c8:64:bb:ed:
95:fd:95:e3:9a:18:d2:87:69:b4:df:d9:8f:bb:a2:
f4:bd:80:d3:a2:36:6e:c5:43:70:48:01:8e:1a:2d:
6d:a5:b8:f7:c6:78:46:c3:1b:6f:d1:c5:de:77:23:
28:ba:94:6e:14:08:4b:bb:5f:83:fd:2e:53:53:8c:
be:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:0F:38:A3:5A:D2:2E:CE:0B:AC:61:D4:F1:79:9D:3E:D4:8D:CE:64
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:d3:a9:e7:b0:a6:d7:74:04:3c:a9:1f:0c:a7:37:6a:af:50:
ac:5d:04:46:27:55:64:02:94:a6:b2:7a:22:f4:6b:1b:7d:04:
3c:df:ec:b2:98:3a:ac:0b:86:2b:27:eb:2f:ce:bb:64:c4:9c:
72:69:e8:2a:90:ba:1d:be:11:3d:01:c6:7e:b2:df:78:f5:eb:
c7:93:62:04:05:25:a1:88:f4:54:19:23:0e:73:54:ed:97:48:
2d:75:d0:c3:ac:4f:c5:b6:4d:25:4d:c8:f8:46:8b:57:53:2f:
77:63:1f:73:a2:f5:b5:c8:a6:8d:2f:60:1b:17:21:1d:b5:4b:
6b:78:0a:30:4d:9f:eb:2b:bf:37:b2:c0:d7:50:25:5d:24:5c:
9b:01:f3:e0:df:b9:45:1d:95:46:5d:65:b9:53:24:9d:a0:8f:
02:d0:91:15:f4:c6:ab:8a:d7:56:8f:26:e9:c2:38:74:55:a2:
80:ad:5e:dd:02:e8:a0:f4:e9:44:d7:c1:aa:22:06:18:0c:a3:
a0:54:61:c3:90:78:68:4a:c4:49:d3:c9:94:32:14:3b:d0:b4:
eb:ad:4c:7e:76:a6:a9:ac:78:78:45:65:4f:66:9c:a7:b1:b6:
ab:b7:76:9c:e6:73:e7:63:81:cb:0f:03:bf:6a:72:24:d8:b1:
d8:03:c8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:25 2024 by rpki-client on console-ams.rpki-client.org