Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
File: SU14c0FlEKL7I0bvNCKAFVUicTs.mft (raw, json)
Hash identifier: dwxc01v27smeijDQMmYWZG71Me/HVJ0Fguz2jtEM2D8=
Subject key identifier: B2:AB:A9:70:BA:E4:B4:86:A5:1C:80:13:B3:EE:32:84:42:D1:3F:D8
Authority key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Certificate issuer: /CN=494d7873416510a2fb2346ef342280155522713b
Certificate serial: 019355769ED2A49B1F4F47687FDBA03CD358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
Manifest number: 1081
Signing time: Fri 22 Nov 2024 20:00:57 +0000
Manifest this update: Fri 22 Nov 2024 20:00:57 +0000
Manifest next update: Sat 23 Nov 2024 20:00:57 +0000
Files and hashes: 1: F6PQ9QxCrP1FvXd_CfbLxRhhTNQ.roa (hash: n0PRrUQAyBx9CcvAOmYSIyc/QdWUwxnb8OXptwsMWLg=)
2: SU14c0FlEKL7I0bvNCKAFVUicTs.crl (hash: UvwFNvjkxrJDbs5q/iBRR3iMvNqZ6lM/uFFjPi0BABk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 20:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:76:9e:d2:a4:9b:1f:4f:47:68:7f:db:a0:3c:d3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494d7873416510a2fb2346ef342280155522713b
Validity
Not Before: Nov 22 20:00:57 2024 GMT
Not After : Nov 23 20:00:57 2024 GMT
Subject: CN=b2aba970bae4b486a51c8013b3ee328442d13fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:ae:be:51:0d:e0:ae:d7:f6:2f:59:51:c6:
99:2e:d5:ab:31:7d:48:14:c4:6e:a8:e1:93:d0:c8:
5c:ad:7b:d6:19:78:0c:3e:59:34:fa:d9:46:10:ed:
31:2e:4a:11:ef:84:77:f9:04:bf:3c:51:2d:23:cd:
35:26:cc:24:54:22:9a:0a:ea:dd:f2:c7:bb:7e:15:
9f:19:86:d1:44:3a:30:0c:01:76:ea:ab:30:14:bc:
4e:66:d3:94:2a:17:29:c8:b4:a5:91:a7:0a:c7:01:
16:c8:57:72:94:0b:d1:8a:f1:85:ad:ea:3e:15:4b:
7f:79:f7:6a:17:c4:41:f6:d2:bb:5f:b8:58:b8:1a:
f6:69:e7:04:a9:21:15:1a:d5:4a:7b:04:3d:ec:fe:
5b:b9:b9:c9:52:16:39:3c:8c:45:f3:14:eb:d5:87:
82:10:e7:57:34:44:42:ed:fe:2f:a0:2a:50:b2:7c:
25:24:89:ac:70:2b:3a:78:ab:2f:8a:0c:cc:de:60:
b9:ae:f5:32:35:6f:8b:05:f3:d2:11:9f:cc:4a:6c:
bb:3d:ba:20:94:9b:19:01:bd:59:38:94:05:83:3d:
28:34:70:dc:e2:09:c4:68:3a:49:f1:ff:aa:3e:5c:
85:60:78:97:23:f6:55:39:ae:aa:a7:9f:35:6a:86:
87:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AB:A9:70:BA:E4:B4:86:A5:1C:80:13:B3:EE:32:84:42:D1:3F:D8
X509v3 Authority Key Identifier:
keyid:49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:cb:78:21:22:1d:e7:e8:d3:77:3c:43:c4:2d:a0:53:04:5c:
b3:7b:f2:31:55:22:ce:57:b0:1c:f1:94:ca:6b:1a:45:f5:49:
00:55:fd:80:a8:41:7d:0c:09:49:fd:3b:79:96:74:a7:96:73:
4f:2b:b1:56:a7:b5:0a:ed:ee:f3:8c:c6:26:67:20:e6:1d:d9:
e2:cd:ac:6b:9c:2c:33:a1:0e:16:19:ba:83:1a:09:02:6d:7e:
b8:eb:10:aa:48:98:81:d8:09:e6:56:4c:ae:9f:c0:e3:b6:80:
0b:32:cc:ee:c4:8c:d7:3e:f9:1f:a9:bc:c5:18:7a:4a:c7:a3:
cd:79:d1:1a:63:b9:93:6c:aa:71:10:b6:4d:30:f0:d3:c0:7e:
50:55:5c:91:5b:b1:32:a1:18:8f:1f:c0:ba:f0:f0:f2:9b:dd:
16:0c:93:b6:7b:f8:2b:07:fa:aa:ec:e2:84:e7:ac:c6:2d:58:
c1:fc:25:bf:94:ee:1b:07:eb:8b:3c:78:be:24:df:84:94:32:
9e:fc:ba:cf:ad:d1:dd:12:0b:1d:9e:74:50:73:9b:3c:94:fc:
51:df:b1:de:6f:97:3a:3a:10:e8:52:fd:92:4e:96:54:ba:b4:
bd:b1:47:db:d2:9d:a0:ab:4b:dc:46:34:40:2f:1a:c0:cc:99:
30:45:62:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:00:53 2024 by rpki-client on console-ams.rpki-client.org