Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json)
Hash identifier: 9Ixmd7ozySst2OlHRiR1skCbcKMwpjWu+R+cyPTBgMg=
Subject key identifier: 01:E0:54:21:8D:D6:EE:F6:94:4D:CD:34:B6:A5:A3:BB:87:9E:C8:50
Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Certificate serial: 01920BA94E0A41D27DBE0C1B7C49E62A97E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
Manifest number: 30
Signing time: Thu 19 Sep 2024 19:01:37 +0000
Manifest this update: Thu 19 Sep 2024 19:01:37 +0000
Manifest next update: Fri 20 Sep 2024 19:01:37 +0000
Files and hashes: 1: SSaIEg8bf4aXs5NL1iCvo17jld8.roa (hash: dZX/ugcHjaxIvcTwYtk9JOyTv0HWUSDlh2Q0u1gEfbw=)
2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: m0BgyhVqVclA43XhtQ8NNjRnevfMtw0OVzvf2D5Rqsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Sep 2024 19:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0b:a9:4e:0a:41:d2:7d:be:0c:1b:7c:49:e6:2a:97:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Validity
Not Before: Sep 19 19:01:37 2024 GMT
Not After : Sep 20 19:01:37 2024 GMT
Subject: CN=01e054218dd6eef6944dcd34b6a5a3bb879ec850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:66:36:ad:e5:ce:42:20:06:8f:b3:45:3c:c3:
ec:0a:7d:94:61:34:90:db:65:7f:e1:c8:14:4e:a6:
a3:4d:57:52:e6:a9:5c:ad:08:b5:33:2b:42:e0:e5:
99:c4:8d:70:be:d0:6d:5f:c2:44:8b:6b:97:ae:54:
0b:bc:87:00:46:8c:50:4e:20:5f:1b:f3:c3:f7:4a:
88:f9:3e:78:3b:ac:e8:5f:9f:b1:5a:cc:ce:d2:7a:
dc:6d:cd:94:43:a3:83:9d:b0:50:fc:e5:34:38:0e:
ca:d9:9a:a8:a7:d4:f0:f3:ac:20:79:4b:f8:8d:47:
90:9e:05:38:83:a0:e0:de:d4:65:b8:9a:f7:ee:64:
78:2e:f7:25:b8:66:32:50:fd:9b:ba:2c:85:a6:2a:
22:71:25:33:7b:8e:99:5a:62:bc:23:a2:57:c5:fd:
67:74:70:4f:5b:df:70:7a:4d:4b:af:80:dd:aa:dd:
94:23:7c:8a:1e:25:44:b3:c1:0a:ae:5c:56:a7:9d:
f3:da:87:39:e5:17:1e:4f:25:a4:10:d2:df:c8:b1:
df:e8:9f:2e:cc:d1:80:a6:0b:63:99:d9:ca:40:b2:
1f:27:04:03:53:85:b2:e1:36:bd:a3:00:6a:0d:7a:
24:12:0a:36:cd:3f:ef:e1:51:13:ad:f4:2c:71:8f:
8f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E0:54:21:8D:D6:EE:F6:94:4D:CD:34:B6:A5:A3:BB:87:9E:C8:50
X509v3 Authority Key Identifier:
keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:22:cb:38:8b:2a:6b:d9:48:2e:8b:c5:10:a4:8b:22:e1:a4:
fc:00:3e:53:74:18:92:8b:36:fe:61:d5:56:36:f7:1e:51:9d:
20:62:7e:6b:d3:41:b3:8d:22:c2:63:ef:05:68:d4:42:f1:65:
4f:3d:16:20:80:89:ce:83:cf:80:e1:04:b6:a6:b5:59:56:52:
e3:1e:2f:29:27:23:2c:aa:24:0d:12:6e:15:57:60:6c:71:20:
6f:7a:4d:89:cf:93:44:08:e9:04:f8:51:da:72:78:3f:aa:df:
29:3e:14:ac:a6:65:8e:09:59:42:a8:86:c0:03:ec:04:14:80:
de:4b:5a:24:4c:dd:d9:b9:36:c8:f2:48:ed:fd:22:92:d9:fa:
ca:26:7c:fb:54:66:74:0d:b2:89:b8:d5:68:ca:0e:b9:48:ea:
e2:d1:12:0a:3a:7b:bd:6e:03:34:8a:96:aa:09:4a:49:69:f6:
26:2b:19:7c:ff:53:e3:43:53:d4:30:db:f9:bf:1f:4c:a3:7d:
c8:90:1c:64:de:2e:c9:a1:c3:5b:fb:12:68:69:e4:6e:6d:00:
f5:d3:8e:a0:6f:89:7f:dc:88:f7:45:1d:e1:98:8b:5f:e3:b4:
0d:f8:79:02:3b:b5:31:76:e0:3d:7a:2c:09:a3:b4:48:e9:2b:
c7:1b:ef:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 22:50:01 2024 by rpki-client on console-fra.rpki-client.org