Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
File: PN4kcMhWOUlIej54dDxUTJnsimQ.mft (raw, json)
Hash identifier: iIActOBcjmojR7A9oNsve7YAyJZJNLoBAJqU90XaHCk=
Subject key identifier: E2:14:8F:0A:BA:AE:3B:31:BA:C1:7E:1D:B2:42:AD:0B:E9:87:DA:33
Authority key identifier: 3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
Certificate issuer: /CN=3cde2470c8563949487a3e78743c544c99ec8a64
Certificate serial: 019358092E625112BEA09C40F05D6FD36081
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
Manifest number: 05F4
Signing time: Sat 23 Nov 2024 08:00:16 +0000
Manifest this update: Sat 23 Nov 2024 08:00:16 +0000
Manifest next update: Sun 24 Nov 2024 08:00:16 +0000
Files and hashes: 1: MbmLFVlz3Z_PtoogvlV5R2w4dyw.roa (hash: 9rSQ+ACHazOG/xbp0K7+Pt3Duxbq9J4eIQPdKQUNgkM=)
2: PN4kcMhWOUlIej54dDxUTJnsimQ.crl (hash: lv12j1NVfcfRzGbe62QIfPG+sqVA/RAMvy5RZXMwq5A=)
3: ZamqP1ip1FXfMzoBGsBUQJFl5Hs.roa (hash: VtU6mnl9H4NWdNwsoyUoYeN3NKr9hoiiuaRhOOOXNnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:09:2e:62:51:12:be:a0:9c:40:f0:5d:6f:d3:60:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cde2470c8563949487a3e78743c544c99ec8a64
Validity
Not Before: Nov 23 08:00:16 2024 GMT
Not After : Nov 24 08:00:16 2024 GMT
Subject: CN=e2148f0abaae3b31bac17e1db242ad0be987da33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3c:13:d7:1d:16:ec:52:46:8b:19:d1:90:42:
5b:81:18:67:0f:24:82:f9:bc:c3:54:b5:79:57:97:
6b:15:98:6b:0d:ef:f0:49:12:ea:7c:8e:56:cb:6d:
5f:f6:f1:84:7f:be:89:c7:c6:2e:9b:39:31:6a:d8:
d0:25:1f:74:a6:e0:7c:59:26:16:6d:ba:7f:bf:37:
16:8c:99:c0:fd:26:b8:a6:81:90:a7:a8:3d:67:ed:
18:7e:1d:d8:9f:34:ad:44:92:44:3e:e9:ee:7a:2e:
a9:90:b6:42:cc:fd:b9:d1:81:41:42:95:96:95:a8:
be:7b:99:56:5a:b7:1a:1b:b4:92:44:66:ff:b3:49:
aa:e3:45:6e:04:c4:85:42:06:c1:8f:fe:28:d3:f0:
27:46:2d:79:77:b0:6f:49:97:02:c7:63:20:4b:af:
66:30:f2:ed:58:68:ca:eb:9e:f7:a5:cb:1a:9d:7b:
47:9f:0c:90:87:ce:76:c8:59:43:cb:a4:ba:d1:e1:
84:b6:0b:dc:91:1d:99:be:ac:40:94:03:80:3c:b1:
f6:b5:e8:64:d1:ba:1e:b5:8f:6b:1a:fc:bf:45:85:
38:f8:b7:5c:49:66:70:06:9c:a5:73:f8:f5:15:9f:
06:81:a4:af:6f:e1:57:38:1f:c6:01:7d:50:18:2d:
8a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:14:8F:0A:BA:AE:3B:31:BA:C1:7E:1D:B2:42:AD:0B:E9:87:DA:33
X509v3 Authority Key Identifier:
keyid:3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:9f:60:86:4f:8a:e8:88:bc:3e:9c:b9:36:ad:0e:24:3f:96:
de:e0:53:eb:c7:a1:9b:38:a3:94:8a:82:7f:ca:94:83:3a:1a:
a6:03:93:a7:a5:71:d6:64:60:59:53:35:94:bb:fe:bf:3b:2f:
fa:84:dc:bd:7b:1f:6c:0d:b3:bf:84:20:13:c6:10:bc:98:a7:
0c:8e:c3:d4:b0:01:e7:78:cc:a4:7c:aa:60:07:a8:8e:00:f4:
fc:b4:24:04:b4:49:60:9f:a3:30:4f:4c:9c:c9:fa:d2:9b:be:
57:99:73:ce:66:91:62:9e:16:ca:e9:35:2d:81:d4:17:46:ff:
2b:75:c6:ce:8f:6a:9d:9b:80:3a:89:c6:3d:95:bc:59:2d:2a:
bf:d6:31:ec:bb:40:0f:9d:8b:c3:ae:19:81:27:02:5b:e3:0d:
36:88:26:6e:84:9c:7b:37:2c:e4:ce:e3:a4:34:29:45:9b:0a:
fe:3a:1c:9a:b7:fa:49:0d:90:74:28:0d:50:9d:da:d6:3d:7a:
92:f2:aa:52:c9:f9:6a:b7:8f:25:27:8c:ba:b6:20:97:be:d8:
77:50:83:4b:bb:41:1c:eb:0d:50:86:04:eb:6e:c4:fa:df:7a:
32:b8:51:49:c0:0f:85:da:80:6b:87:5b:51:13:a8:55:bb:60:
be:7a:33:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:29 2024 by rpki-client on console-ams.rpki-client.org