Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: l1bKkr9TcCRTENGI7auh4Xup976ziWXkBYl4VPp1/YM=
Subject key identifier: A1:83:05:24:E0:60:EB:2F:95:C9:CC:F4:3D:54:90:AB:F1:2C:12:58
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 019353F5EDB9FFAE932C14FDC5962710D9D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 087F
Signing time: Fri 22 Nov 2024 13:00:46 +0000
Manifest this update: Fri 22 Nov 2024 13:00:46 +0000
Manifest next update: Sat 23 Nov 2024 13:00:46 +0000
Files and hashes: 1: 9-oJA5jHTaTF0H_iRZLSkPKOMzc.roa (hash: xIgfjDynyH3yFaKNE+xvycxCA8piVXFmX9uqULX4htA=)
2: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: 9IP3Wv4G3bF7c4cw1kYCoYWT/MuycEi64PbtvURoJx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:f5:ed:b9:ff:ae:93:2c:14:fd:c5:96:27:10:d9:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Nov 22 13:00:46 2024 GMT
Not After : Nov 23 13:00:46 2024 GMT
Subject: CN=a1830524e060eb2f95c9ccf43d5490abf12c1258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:de:75:3b:91:5d:51:7b:6b:2f:1d:f1:6a:c9:
53:9d:14:ea:45:2e:c2:8e:73:7a:d2:c6:04:5f:cb:
20:59:5e:8e:4f:1b:e7:1a:bf:1c:37:ea:6d:55:b1:
c8:a7:bc:a6:71:84:a9:09:c2:22:fe:72:a4:dc:80:
c3:69:c1:67:f0:5b:13:ce:58:5b:56:75:5f:17:a2:
c3:11:85:fd:7f:23:7f:a7:d6:f8:dc:67:75:00:2f:
8d:ef:f8:22:c4:dc:2f:73:11:da:87:52:95:76:4f:
a8:e4:ae:76:b8:90:ee:fd:41:d7:50:42:82:cd:1f:
09:d5:9e:c3:1e:b4:72:40:ac:10:17:bf:5f:ff:fa:
86:d7:d2:d5:db:bc:dd:df:c5:c2:77:41:ef:0c:4d:
33:78:8a:70:31:48:fa:b4:07:70:6b:81:45:0c:26:
30:92:dd:53:63:19:13:12:f1:de:73:a2:b3:b1:cd:
32:c9:c2:3e:aa:cf:a0:c8:66:56:b9:06:ac:c6:40:
80:dd:a3:48:08:80:47:cf:40:93:12:c6:03:61:10:
fc:a6:50:63:4e:05:11:33:1f:c7:29:f1:29:da:39:
c3:fe:ba:c3:3b:66:a7:c2:c1:36:ff:ef:c8:fc:d7:
98:7d:97:54:2d:90:49:10:a8:d7:f5:41:de:cb:4b:
70:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:83:05:24:E0:60:EB:2F:95:C9:CC:F4:3D:54:90:AB:F1:2C:12:58
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:d6:bb:6d:e7:ff:9c:8f:14:7b:99:a5:d9:8e:90:27:60:86:
6d:ba:58:05:93:3c:94:a0:08:57:51:74:f7:d6:cb:71:1a:f1:
7d:30:ff:39:06:d4:43:7f:7d:87:ee:02:82:4d:b1:21:17:de:
4b:a6:ba:60:7c:0e:8a:33:f5:55:f7:11:01:7d:6f:40:31:a9:
ea:36:9f:62:08:bc:57:fb:52:98:69:e6:29:82:f1:87:54:a4:
30:a5:e3:da:39:d6:79:1c:c7:58:71:38:47:3a:1a:10:e0:8d:
0a:d6:81:cd:b1:68:dc:38:d7:7b:be:96:0c:4f:40:82:04:a7:
76:6e:29:6d:f1:5a:ad:03:12:94:40:f2:fd:c6:c2:3f:45:28:
72:8d:af:9b:ed:9f:08:49:0e:03:be:aa:ff:c5:b5:53:12:4f:
d3:81:91:45:a1:54:c7:d9:61:16:09:e5:ef:f6:bc:63:6b:0a:
08:66:af:03:14:7f:66:2e:08:6d:5e:de:10:ad:a3:80:fc:58:
06:9d:55:43:d5:b0:97:08:e2:e2:84:0a:43:75:34:ba:5d:75:
1d:e9:0a:11:7b:32:e9:b8:41:2e:af:a6:f8:e5:5c:4e:40:21:
1e:86:18:ab:be:21:17:5e:92:c2:85:66:da:dd:7d:90:35:ed:
41:3e:fd:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:34:57 2024 by rpki-client on console-ams.rpki-client.org