Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: wjrziZ4d+QAK6e7u2XO0IhALmFmd4G+Oo/Yr7WMAp6c=
Subject key identifier: 8B:4B:26:C3:CE:6A:D5:75:A9:D7:AD:3B:E7:45:94:16:D5:DC:84:04
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 019356BFAA4426A53B4FA0DF52D916FA3453
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0758
Signing time: Sat 23 Nov 2024 02:00:21 +0000
Manifest this update: Sat 23 Nov 2024 02:00:21 +0000
Manifest next update: Sun 24 Nov 2024 02:00:21 +0000
Files and hashes: 1: 0a8FN8FTIEbSVMU9dR7kj1MMHSU.roa (hash: G4EOAkoERx1fOcRd2uiBPN9D/u0llTSpzQXBwIz0iqQ=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: 22CiPUFnQxDNuSwZ3FH6PuGsf4b1dzQKl9zNCmDggg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:bf:aa:44:26:a5:3b:4f:a0:df:52:d9:16:fa:34:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Nov 23 02:00:21 2024 GMT
Not After : Nov 24 02:00:21 2024 GMT
Subject: CN=8b4b26c3ce6ad575a9d7ad3be7459416d5dc8404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a9:c8:e7:5b:5a:1d:35:45:ec:59:63:03:bf:
3f:da:7b:87:07:2d:62:09:b3:0f:e3:f3:f0:bd:5b:
41:43:0d:e7:f2:22:6f:8d:9d:ef:e0:a5:00:6b:7c:
55:ee:01:74:50:7a:0b:d2:44:ae:67:d7:b4:0b:b5:
f3:d7:c6:7e:3e:03:b3:ad:ab:99:ef:60:1c:36:81:
6e:47:31:32:ae:c2:6d:2c:81:ef:eb:61:d3:27:a2:
45:97:34:c2:df:93:09:84:08:43:79:20:48:92:55:
ce:ac:e0:85:91:7c:87:41:df:1d:50:29:45:0b:64:
d0:2d:7e:c8:02:a5:e2:0e:d3:d6:d5:60:d8:0b:5f:
92:f1:52:f7:55:ff:51:50:ab:5e:4a:9a:c1:59:77:
3b:8d:77:b5:63:14:5d:2e:0c:84:5a:dc:ea:5a:33:
54:7e:ab:fe:fc:8a:78:44:f2:03:ca:02:a4:37:ff:
9a:eb:48:c7:48:27:41:67:e5:dc:dd:6e:c4:5b:57:
22:27:b8:b2:b1:0c:79:cf:ec:16:ed:06:3c:e8:38:
54:dc:a2:de:b4:ce:c7:c0:bb:a5:56:11:06:6d:42:
be:77:4c:0c:1f:22:d4:7c:49:4d:e1:74:a7:ba:d5:
fa:5e:56:5c:3d:7f:23:ca:99:64:73:0b:00:49:cb:
57:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4B:26:C3:CE:6A:D5:75:A9:D7:AD:3B:E7:45:94:16:D5:DC:84:04
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:52:92:09:46:40:f7:b0:e9:2f:d7:87:15:ca:d2:95:3e:ff:
37:36:c8:11:81:0c:3f:aa:2c:2c:d4:fa:89:f0:5a:47:6d:2b:
fc:b5:a8:c1:ba:fc:e5:b8:1a:f9:ad:d4:4b:a0:0b:70:60:64:
7a:4e:13:f4:04:11:50:b9:b1:42:b8:46:ae:2a:b9:61:d9:07:
60:29:6d:4d:76:9c:71:b2:ca:af:92:fe:99:94:99:08:dd:e7:
44:65:8d:7d:69:76:15:74:bf:ca:a6:54:fd:1b:49:4d:65:a1:
3a:38:7b:f4:8e:40:2f:12:2c:c9:d0:49:3e:e8:22:d6:c1:88:
97:2f:5f:b1:af:58:9c:a6:6c:42:d8:bf:f8:6e:be:e5:c6:fe:
d2:e6:1a:c8:d7:e0:20:b4:ea:0d:42:fd:29:92:f5:55:e5:2e:
3d:8a:ef:5d:45:c9:ee:3c:15:aa:7c:40:fe:4a:63:5a:ec:59:
c5:d2:24:22:81:44:99:cd:b7:b5:28:5e:64:cb:b3:ea:64:28:
78:56:8c:92:b1:8f:6d:40:57:60:c2:dd:ea:47:7f:81:58:af:
77:99:1b:89:68:bd:b1:35:73:29:76:86:6e:01:57:be:77:c4:
b2:e3:c1:d0:5e:d9:bc:c6:d2:3c:0f:f8:66:32:60:5e:fc:97:
c0:30:30:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:10:56 2024 by rpki-client on console-fra.rpki-client.org