Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json)
Hash identifier: tvg3gUGokQTuQFXC6bzWTgUqHc1Ou7MZD1gaWGaRNhQ=
Subject key identifier: B2:2D:C0:AF:52:9B:48:1A:B8:66:87:F7:F7:CE:42:22:05:C9:38:97
Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93
Certificate serial: 0193549C5D123BB0CE7897F6C642AC9C6DBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
Manifest number: 1373
Signing time: Fri 22 Nov 2024 16:02:33 +0000
Manifest this update: Fri 22 Nov 2024 16:02:33 +0000
Manifest next update: Sat 23 Nov 2024 16:02:33 +0000
Files and hashes: 1: 1s1bbORbc4_XMFyVrTcBfrjJKGU.roa (hash: 7GaGr+VebbEC2zNOT0rBb1O/dJ3x9t+sZaDY70qUsLc=)
2: IuR1Ga_rMCicaLAzd4V8YEqpUoI.roa (hash: ZHpvCl0yIsSMLycDIxc/wQDeljz5Rhdg8jjZHdYHA+I=)
3: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: sFZIhoVtwSzCP6joKRQ5O+hHb/9UEKEepn8Mx+zwAY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9c:5d:12:3b:b0:ce:78:97:f6:c6:42:ac:9c:6d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93
Validity
Not Before: Nov 22 16:02:33 2024 GMT
Not After : Nov 23 16:02:33 2024 GMT
Subject: CN=b22dc0af529b481ab86687f7f7ce422205c93897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d2:8e:dd:63:cc:94:76:05:f6:8e:c7:fa:23:
b7:b6:85:fb:8c:dc:75:ef:bf:a8:ba:82:1e:b5:02:
1d:b5:22:0c:1b:e3:bd:72:6b:07:ce:f1:43:68:7c:
67:03:7b:7b:f2:02:ef:d8:79:01:46:0e:0f:41:c5:
16:90:ae:b3:50:ff:5f:b5:3e:13:55:4d:04:70:27:
57:11:c4:b6:80:49:de:0f:88:8d:3a:5d:97:9b:f2:
91:3c:49:4f:1b:9a:b5:31:42:40:16:b3:5c:fa:7b:
d9:5c:17:ba:73:7e:46:11:11:e5:e7:a4:f8:b6:b4:
92:fc:4e:28:fe:cd:70:11:e9:4d:16:05:58:5f:20:
68:84:e6:82:a8:ba:ee:7c:98:32:0f:3d:82:95:da:
9a:88:79:a0:71:93:96:60:fc:6c:2e:4c:5d:be:f6:
2c:b7:f6:0f:bd:54:28:72:92:06:f2:a6:0a:e7:eb:
42:4f:48:9c:3f:09:b4:15:29:48:70:6d:e8:fd:e0:
52:e2:7d:1e:df:59:7b:45:dd:3a:06:47:fd:2e:c4:
56:49:8c:56:7d:ea:2c:8e:bc:f9:91:c5:98:96:50:
dc:ab:97:b1:62:4e:04:d6:32:d8:e0:04:03:44:bb:
72:5c:c6:f3:32:21:e0:80:00:39:c3:a4:fa:75:76:
bd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:2D:C0:AF:52:9B:48:1A:B8:66:87:F7:F7:CE:42:22:05:C9:38:97
X509v3 Authority Key Identifier:
keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:50:6c:ae:1d:23:01:bf:ea:78:6e:b5:ca:25:7a:19:e5:d2:
57:12:ce:3c:6f:73:bc:7e:31:83:d3:28:3c:7d:1e:a7:7b:8e:
40:fe:a1:11:61:6e:18:81:8c:70:d7:48:eb:9a:3d:cb:cc:64:
d9:c6:04:2b:11:a3:22:59:34:63:b7:80:09:c4:91:56:ab:eb:
f2:1f:50:3a:7b:7b:0c:cd:66:55:16:c8:6a:7d:79:6d:dd:fe:
61:d4:1e:bd:c2:69:b1:5c:d7:96:db:8d:9b:21:fe:6f:8d:50:
b6:48:0a:09:af:2a:a8:33:0f:f2:87:ab:1b:4b:22:fa:eb:51:
71:37:8a:e4:ea:97:5c:15:48:09:d1:b2:20:16:0a:56:37:52:
b1:5c:b8:6b:f1:ec:00:01:5e:62:e0:5b:93:32:14:85:24:cb:
ee:0e:e3:0d:a7:a8:ed:6c:c1:58:77:09:2b:ad:2a:d9:66:c3:
5c:ff:fe:86:c9:cd:3f:f3:8c:69:49:f4:c1:3a:6b:52:26:1e:
5b:07:88:0e:10:6e:db:9c:b6:80:c8:b4:29:ac:c9:b0:51:02:
07:88:7b:f5:10:ba:50:dd:21:39:45:5a:3b:b4:cc:52:6f:32:
c3:de:76:de:a8:42:3f:0a:53:fb:d2:17:6c:6a:36:ec:4b:9f:
ce:7c:8c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:03:12 2024 by rpki-client on console-ams.rpki-client.org