Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
File: pRA1bcClIYlc5h-FSV4G2vehKzs.mft (raw, json)
Hash identifier: +2dSmBuZrM+ZaUJaXkynz7eA0kuge0P5/kgaqonupio=
Subject key identifier: C0:1E:DC:27:6D:58:6D:1C:41:F4:6B:30:C0:BA:D4:51:29:57:C6:A5
Authority key identifier: A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B
Certificate issuer: /CN=a510356dc0a521895ce61f85495e06daf7a12b3b
Certificate serial: 019369A1B937C2ADE0A4DF97B67F261E3AFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
Manifest number: 137D
Signing time: Tue 26 Nov 2024 18:00:26 +0000
Manifest this update: Tue 26 Nov 2024 18:00:26 +0000
Manifest next update: Wed 27 Nov 2024 18:00:26 +0000
Files and hashes: 1: Lv2rVZZy6fjtuuyV5iNS1p-wbjM.roa (hash: /vhrDzUUhup0J2ABu67y/tV6hliMfFpbxoRRq9IPs5I=)
2: pRA1bcClIYlc5h-FSV4G2vehKzs.crl (hash: ns+90hxg8GPVzQ3qNG9ejT00hLSrN34ReazJHVURZI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:a1:b9:37:c2:ad:e0:a4:df:97:b6:7f:26:1e:3a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a510356dc0a521895ce61f85495e06daf7a12b3b
Validity
Not Before: Nov 26 18:00:26 2024 GMT
Not After : Nov 27 18:00:26 2024 GMT
Subject: CN=c01edc276d586d1c41f46b30c0bad4512957c6a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:53:12:7a:f0:11:b1:cc:2c:f3:30:f6:83:52:
7f:9e:73:25:84:6e:9d:80:a0:cf:a3:f4:91:d8:dd:
9b:7f:b9:24:91:69:8d:8c:5d:17:8d:24:65:ff:52:
7d:7c:91:a6:98:bb:ab:ae:fb:73:56:75:f5:0b:a7:
ff:10:30:d1:cd:50:e5:b7:17:c6:b1:7d:1a:90:2a:
76:f0:99:f6:03:15:f9:c4:8e:cc:91:9c:96:ca:7c:
c9:9f:9a:ae:4e:41:0f:19:a3:05:55:20:d3:d0:c0:
2e:e4:65:e8:fb:08:fe:65:de:ab:62:60:27:0b:6a:
95:58:7c:3a:09:5e:a7:2f:bf:5d:8d:6d:bb:42:b4:
bc:08:db:5e:fb:7d:3f:3a:67:24:30:e8:a3:79:36:
d8:11:28:8c:90:1f:82:9e:dc:65:71:9f:84:ea:28:
1e:6b:d0:ba:7c:f1:68:83:07:8a:02:e8:b0:f3:b9:
20:83:e1:4c:4c:21:f6:00:10:f2:3e:77:8c:17:c0:
04:0a:2f:fc:c2:56:4d:4c:45:5e:5e:ab:32:4d:51:
5d:a7:a2:8d:5f:26:9b:fd:04:e6:2e:95:0e:dc:5d:
8a:00:04:f8:43:d8:d9:23:01:03:d7:fb:95:8a:b4:
0f:98:0b:5d:09:e2:36:1e:07:2d:05:e3:4a:39:f3:
45:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:1E:DC:27:6D:58:6D:1C:41:F4:6B:30:C0:BA:D4:51:29:57:C6:A5
X509v3 Authority Key Identifier:
keyid:A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:4b:3c:0e:de:5d:3f:87:39:67:e7:64:fc:1c:8d:ee:05:57:
45:7e:25:b0:cb:92:b4:4c:0a:5d:95:3e:e1:42:05:ca:80:83:
e5:d7:27:db:04:5d:85:c8:4a:de:0d:bf:23:20:13:b4:95:0a:
8a:f8:0c:2f:00:6c:4b:34:71:e4:cc:d7:50:e7:d6:7b:a7:b9:
99:29:13:37:e3:77:b3:1a:cf:23:90:6a:78:fd:2a:a2:96:c7:
f3:dd:52:1a:a8:9c:47:3f:59:ca:c1:36:9f:40:0d:8c:90:f1:
18:83:fd:4d:82:18:6b:19:b2:e9:06:16:46:61:38:d2:0f:68:
7d:ee:5b:33:ab:02:05:31:8f:9a:a8:4d:79:23:41:cc:44:74:
fb:48:69:9e:a4:8e:28:a9:90:a5:41:09:76:72:05:19:ac:f2:
b2:56:c5:31:7a:cb:4d:72:ed:63:a9:a7:12:c3:24:e2:a0:b8:
5e:47:4c:5f:7a:48:30:41:22:d2:b0:21:f0:e7:2d:06:f8:b8:
ba:6a:8b:44:69:82:cb:a4:23:ed:22:4b:fe:31:a2:37:c1:0a:
5a:77:dd:2d:1c:14:6d:74:0f:11:e9:34:18:72:43:9c:b6:71:
cf:54:51:57:e7:4e:1c:fa:99:1d:e9:2b:44:77:24:bc:52:0e:
82:eb:37:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:31 2024 by rpki-client on console-fra.rpki-client.org