Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json)
Hash identifier: nggJJtgsbM5jFKc9TP2bjXZhbtZ2FYudHQ3XCnSF8ew=
Subject key identifier: 89:4C:F6:48:8D:20:05:61:00:90:F7:17:57:AF:F4:1C:45:A6:79:C5
Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Certificate serial: 019357D2668763BDD001AFA50562B3F3A3B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
Manifest number: DC
Signing time: Sat 23 Nov 2024 07:00:26 +0000
Manifest this update: Sat 23 Nov 2024 07:00:26 +0000
Manifest next update: Sun 24 Nov 2024 07:00:26 +0000
Files and hashes: 1: SSaIEg8bf4aXs5NL1iCvo17jld8.roa (hash: dZX/ugcHjaxIvcTwYtk9JOyTv0HWUSDlh2Q0u1gEfbw=)
2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: k1HB9y5XuHyzVAFodOVZjulTjPk/7WPWtV/3hCIG1iU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:66:87:63:bd:d0:01:af:a5:05:62:b3:f3:a3:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Validity
Not Before: Nov 23 07:00:26 2024 GMT
Not After : Nov 24 07:00:26 2024 GMT
Subject: CN=894cf6488d2005610090f71757aff41c45a679c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a0:cf:ea:b0:58:76:1c:b6:04:58:e3:07:3f:
ad:18:70:af:e9:51:5c:e4:7d:2c:81:cd:78:8a:51:
6f:1a:b8:eb:c6:99:82:1d:83:d0:db:ec:0f:a6:cc:
33:57:8a:81:0c:8f:eb:6a:2c:2b:61:98:31:5e:a9:
84:43:ba:1d:9f:c8:92:00:a6:92:3b:da:48:7d:62:
5c:ed:32:81:38:e8:66:43:70:ee:31:b6:a2:72:a5:
8e:c7:34:6d:38:ba:d5:43:95:25:f9:05:82:4d:bf:
3b:23:69:41:5b:08:8d:36:6e:7f:d6:3c:d5:bd:8a:
2e:31:b0:66:be:25:1e:85:70:83:65:b9:e2:c5:95:
4b:23:2b:d2:fa:24:89:5f:37:e3:48:73:69:92:19:
b3:13:fe:3f:01:9f:d5:20:f7:7e:56:a7:eb:9c:9b:
31:24:d6:3c:75:16:bc:e5:2d:8e:37:09:e4:b7:06:
0c:eb:7d:14:17:65:7b:9b:bf:b1:a0:9c:88:20:4a:
c9:40:0f:ae:3c:ab:fc:a5:62:50:01:b6:23:c1:49:
46:bc:09:19:1c:a5:3c:25:6e:7a:7f:1a:95:59:0a:
cc:9f:2d:6a:2d:31:fc:ea:f9:85:a7:67:29:3a:6a:
10:14:61:ae:8f:ce:fd:2c:88:ab:7a:27:0c:65:f0:
b9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4C:F6:48:8D:20:05:61:00:90:F7:17:57:AF:F4:1C:45:A6:79:C5
X509v3 Authority Key Identifier:
keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:0f:9c:74:af:73:af:35:29:20:45:6a:2f:fc:db:cd:74:30:
63:6c:cc:e2:02:17:ae:61:2f:82:e0:9e:20:e8:84:80:d6:88:
8d:2f:46:ec:b1:a0:96:b2:a6:0c:fd:be:d5:3a:54:63:26:15:
6d:c2:90:26:36:59:8e:af:68:34:19:b8:e3:77:e2:bf:90:56:
44:ef:23:04:4b:01:d8:51:57:6b:5e:3f:0e:71:90:34:20:a4:
2b:c4:78:05:5e:23:ca:91:e5:1a:63:5c:88:f5:7b:6d:db:6f:
1f:04:18:49:19:71:d5:f4:24:06:f9:72:12:e1:54:12:9e:4d:
97:a2:56:9c:d4:75:7d:25:07:06:3e:8b:8f:29:98:49:df:56:
c6:d5:55:48:d4:49:61:47:ca:b3:48:d5:38:eb:35:34:7b:f9:
0a:82:7c:aa:87:9c:89:ef:33:f5:f8:cc:0f:ac:88:c3:b6:4c:
bd:3f:a7:da:d6:26:e0:1b:04:14:24:db:ca:c9:29:e4:c5:76:
e1:c7:32:97:5a:69:17:47:80:81:4f:29:e1:08:85:d7:74:16:
78:ae:79:08:70:09:71:c0:8f:21:32:c4:7b:9a:e3:bf:e5:7b:
05:5b:c2:3c:bc:3a:08:6e:8e:9e:7d:41:8d:30:ea:36:95:34:
84:a1:f4:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:54 2024 by rpki-client on console-fra.rpki-client.org