Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json)
Hash identifier: bAexLSUn7G78FDItsreF6zPMGk+1agCVvWxgQ+1HabA=
Subject key identifier: 1F:E0:2B:8A:6D:D1:03:3E:C0:8E:C3:C6:C1:CB:64:90:B9:B9:F7:B5
Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Certificate serial: 019357D292B2D1B5262AFB37A6674634A814
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
Manifest number: 1370
Signing time: Sat 23 Nov 2024 07:00:37 +0000
Manifest this update: Sat 23 Nov 2024 07:00:37 +0000
Manifest next update: Sun 24 Nov 2024 07:00:37 +0000
Files and hashes: 1: QTobJZVsJpwC9mtay3CdjRkaXZ8.roa (hash: El9ogu+oynjAbY2wrpKdDusBDwOguR7djzgPxtCnaqw=)
2: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: Uaj4ALoen0unwW4GYKsU6z90DJ6rvZtcmu8IRt7e2lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:92:b2:d1:b5:26:2a:fb:37:a6:67:46:34:a8:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Validity
Not Before: Nov 23 07:00:37 2024 GMT
Not After : Nov 24 07:00:37 2024 GMT
Subject: CN=1fe02b8a6dd1033ec08ec3c6c1cb6490b9b9f7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:de:88:5d:b4:25:a6:6b:31:a1:04:ea:51:33:
bd:66:35:14:89:e5:d3:50:a2:e6:d7:d1:da:11:27:
dc:67:73:fc:cd:77:b2:c5:d5:58:bf:19:86:9a:4a:
38:87:66:3e:d7:7b:28:a3:f1:2f:53:b9:f0:f4:aa:
52:dd:6b:dd:0a:f5:a2:93:ef:f5:74:7b:e1:4b:01:
3a:72:d7:76:78:80:1c:cc:66:7c:a4:84:0c:c6:20:
d9:27:7a:0a:23:cd:1f:5f:39:da:55:9a:e1:c4:1d:
e6:94:ed:97:6c:8e:d3:62:fd:fb:35:a4:2c:b1:da:
c3:23:b8:8a:6e:e1:d5:4b:a4:f9:0f:84:bc:91:d5:
ea:16:94:42:4b:f8:f7:7a:d8:2c:00:21:f6:ff:0b:
0c:37:d2:28:9a:d9:e4:aa:99:4e:e2:54:19:72:15:
2b:c1:1d:c1:f9:3f:5e:44:ac:f2:34:95:fd:b6:3f:
72:3c:c5:99:86:67:3c:af:e8:88:c7:93:e6:e8:01:
87:ee:ff:97:c4:ce:69:6f:db:58:20:c0:16:0b:ae:
5f:e3:df:fa:4f:94:40:8c:fa:ff:2a:b7:96:37:0f:
8d:f5:2d:98:56:8d:af:1d:cc:00:72:e4:3b:bd:8c:
68:4e:e2:6d:01:18:fe:25:08:0e:e9:c3:45:ae:dd:
b8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E0:2B:8A:6D:D1:03:3E:C0:8E:C3:C6:C1:CB:64:90:B9:B9:F7:B5
X509v3 Authority Key Identifier:
keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c1:aa:8b:17:b7:72:ca:b5:81:5a:99:c2:06:a4:a2:f3:ea:
0f:c1:c0:80:c4:6c:15:8c:f2:6a:50:7e:33:7d:c7:bb:9b:21:
28:81:0e:b5:0b:45:e8:e5:f6:af:62:ec:49:3d:02:4a:92:24:
cf:1a:b9:87:fa:c9:0a:6a:45:b1:28:5b:cf:3d:b0:3c:ef:a5:
bc:c5:5a:e7:8d:a6:1f:e0:d5:11:98:c7:bf:0b:29:ee:ad:c0:
bb:d2:85:fa:84:db:3c:c8:3e:8a:93:ed:39:1f:64:82:39:0a:
7b:de:b1:5a:67:72:27:e1:0e:38:45:de:e0:7a:de:92:08:f7:
5c:37:2b:03:e1:7a:be:07:b5:f2:01:af:88:b1:ec:1a:46:a7:
7b:fe:63:ea:6f:47:98:47:25:0d:86:6f:d1:69:0c:3e:bd:e6:
f1:7b:ca:b7:26:66:91:81:a6:63:2f:8f:88:27:32:de:8a:6f:
3b:61:d6:b4:ea:3d:e8:0e:48:55:6c:cd:b7:87:0c:1a:73:17:
b7:a8:c5:39:71:f2:34:bc:bf:82:70:02:88:37:86:d4:9e:81:
96:8a:55:06:74:3d:28:1a:1b:d7:33:38:f0:0f:21:e4:1f:80:
8e:8b:f7:27:83:1f:85:fa:28:4a:ce:25:72:4f:95:32:2c:7a:
d8:63:49:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:48 2024 by rpki-client on console-ams.rpki-client.org