Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: qD1rltsCIBx++QW1CkjBcD/ur5NCTTpaQ8iNYLuoBS4=
Subject key identifier: FD:D0:79:EF:CD:85:51:53:6D:54:C8:85:D5:6B:21:7A:A6:1C:BB:2A
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 0193640D9BCDB73480E4DFC645F13C5168C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 123B
Signing time: Mon 25 Nov 2024 16:00:33 +0000
Manifest this update: Mon 25 Nov 2024 16:00:33 +0000
Manifest next update: Tue 26 Nov 2024 16:00:33 +0000
Files and hashes: 1: NOp-ij4c37NRZGUFGYgMZER7LK0.roa (hash: 19Wq5R4AmOjxnxT05wc7Fh6CrHyBy5nqiuZNO+Q/XJE=)
2: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: Rm/EgJ7QauCd6gHgPuji2OOgK9fGocmycj+GXroR+u0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:0d:9b:cd:b7:34:80:e4:df:c6:45:f1:3c:51:68:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Nov 25 16:00:33 2024 GMT
Not After : Nov 26 16:00:33 2024 GMT
Subject: CN=fdd079efcd8551536d54c885d56b217aa61cbb2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f9:6b:e2:80:22:ae:ac:60:75:46:2c:60:65:
70:4c:00:08:f2:b2:7a:a4:69:4e:e9:e6:89:b2:50:
50:11:e7:1e:9d:9c:60:7c:0f:67:d7:20:6a:a1:ce:
a7:eb:ff:40:ab:1e:12:2a:59:c6:92:ea:de:1a:19:
bf:11:ea:60:6b:dc:4f:34:10:dd:8e:22:ba:a6:a8:
52:d0:56:2f:44:bd:3d:8d:2f:98:e6:55:29:49:40:
5f:3c:9c:de:3d:75:ed:7e:71:33:1c:f6:07:19:24:
df:11:13:94:8d:fa:ee:bc:96:0f:4b:46:01:a3:ed:
77:7e:da:dc:1d:2e:3c:ed:a1:2c:58:8b:6f:70:c3:
61:18:20:03:a7:0c:e0:c8:50:11:60:d3:d3:3a:d0:
4a:88:1d:be:07:8c:8a:9f:87:da:27:e6:d1:3c:48:
eb:b9:21:83:fe:5a:0d:5e:38:d1:3c:fd:42:44:48:
e1:05:3b:20:80:ba:5b:8e:fc:0c:51:a1:23:6a:eb:
a5:3c:0f:71:d7:5a:4d:af:9b:57:44:f4:98:27:4f:
c6:19:60:1e:11:66:c3:e9:59:bc:e9:86:3b:fb:cd:
85:c2:b8:38:89:e4:f1:97:d8:d0:70:59:fc:d6:58:
27:84:bd:c8:e2:c0:73:b9:23:8d:df:42:3b:31:c6:
24:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D0:79:EF:CD:85:51:53:6D:54:C8:85:D5:6B:21:7A:A6:1C:BB:2A
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:c8:a9:be:e3:f3:39:d3:3e:ef:0e:39:5a:55:47:fb:7a:ed:
ee:02:5d:66:ca:0c:e6:40:e2:2b:c7:44:4e:98:bb:6a:11:a5:
4b:c0:d1:9f:b8:d9:af:8b:dd:c9:c6:55:5e:e1:b6:f1:5b:61:
7e:2c:fc:0d:10:70:58:d2:45:cc:9d:e2:3c:af:71:c4:73:f1:
1d:07:5a:f7:db:fe:56:78:69:bd:3d:e6:d6:c8:5c:02:3c:9f:
72:3d:45:82:a7:54:b8:fb:91:d9:93:3d:f0:7c:c3:40:65:08:
d7:ab:31:7f:71:b6:b4:2a:88:9e:3e:3a:38:79:42:78:40:94:
9f:8d:b4:65:10:0d:53:3d:09:96:5b:c0:f1:f3:a5:a9:96:6a:
4a:46:a6:41:ec:76:ff:c3:85:32:d3:2b:fe:29:f5:f1:3e:ad:
99:7c:d1:68:58:b5:8b:39:e2:94:8d:a8:7d:18:08:3c:b9:64:
2b:77:64:c1:60:38:fb:d9:c5:de:5a:2d:bb:78:ab:9f:c1:06:
44:57:5f:bb:00:56:23:c5:e3:7e:f5:5d:8d:ed:39:d1:a9:93:
84:35:9e:6f:d1:49:73:9a:8a:64:ac:11:f0:36:41:4e:52:49:
1b:06:79:f0:89:06:7a:22:48:c8:7a:ee:4a:5c:23:43:27:47:
55:19:fe:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:31:55 2024 by rpki-client on console-ams.rpki-client.org