Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: SoeA2po06GFYDgL5fgI93zQX7ImRkJqwGzG/DnhlopY=
Subject key identifier: C4:89:58:8C:5B:C1:AB:60:C5:16:E9:81:37:59:72:80:CB:D7:B9:EF
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 019356F6FCC547DE2AD18B151AF9F05E179E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 03:00:47 +0000
Manifest this update: Sat 23 Nov 2024 03:00:47 +0000
Manifest next update: Sun 24 Nov 2024 03:00:47 +0000
Files and hashes: 1: LMkWxY1kXGTRpqbaUhhhsW1FZVQ.roa (hash: ho7jF/TGAZuYpIXSijUNLK0a7EA+SVzjPKtww9pJM+8=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: CnecfegKcq1jKtLXeX6UUGilbSlgcNmlnjKKrS4GpTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:fc:c5:47:de:2a:d1:8b:15:1a:f9:f0:5e:17:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: Nov 23 03:00:47 2024 GMT
Not After : Nov 24 03:00:47 2024 GMT
Subject: CN=c489588c5bc1ab60c516e98137597280cbd7b9ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:86:92:ba:63:f9:a1:66:d1:fe:34:ee:01:d8:
80:89:e5:2c:1c:31:04:cf:26:d7:b8:6e:c6:92:62:
2a:a7:96:5c:76:9e:0f:c4:2c:59:7e:de:e5:41:9a:
23:59:5c:c7:69:d2:80:d0:f7:0e:c3:44:e3:5c:42:
84:8a:ec:f8:70:7f:ff:e2:50:b7:5c:9e:1d:63:6e:
3d:2f:31:1c:e8:c8:63:c5:e6:10:9a:76:3f:f6:16:
16:e1:a8:67:71:12:94:b2:d2:50:5f:5d:1e:81:42:
14:06:e6:68:a2:48:94:a3:6b:69:05:43:ea:81:aa:
cc:4b:31:f3:c4:39:14:18:c5:3a:0d:a6:8e:23:99:
49:3f:1b:90:b9:a8:b4:4c:b4:d4:2e:fe:42:1b:c4:
a7:8b:f5:b8:68:ce:6a:1e:8b:5a:37:54:4c:bc:d3:
ac:34:25:60:77:33:6d:ba:5c:7f:81:c7:fe:93:e0:
10:ba:b9:81:e3:5e:43:cc:25:e1:fd:ea:a4:ee:d5:
a8:b0:a8:b6:d1:98:6f:0f:33:25:38:9b:6a:b5:ec:
06:04:76:35:36:e0:f6:8f:1e:04:07:61:28:69:f2:
1d:21:8d:e0:4c:93:30:60:85:95:28:fa:13:1b:16:
67:11:ca:a5:17:de:f4:80:f9:38:ff:b9:f2:cc:93:
8e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:89:58:8C:5B:C1:AB:60:C5:16:E9:81:37:59:72:80:CB:D7:B9:EF
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:48:3d:18:d5:76:6f:1c:1f:c6:2d:83:b8:b3:1c:dd:e4:27:
33:5a:e9:a7:2f:6e:38:f3:93:7f:3f:d8:17:60:fc:da:2c:3a:
4f:f2:5e:78:ed:2a:37:cf:a4:e8:5e:6e:3e:40:47:ff:77:0f:
f3:66:a7:85:23:b1:32:8d:3d:a5:2d:e1:3c:84:ce:9d:ba:6e:
e4:5c:b9:50:e0:dc:ee:1b:b6:8b:45:c5:cc:10:5a:de:ed:5f:
a1:72:75:d1:fe:79:34:f7:06:bb:cf:98:d6:e1:a9:ce:4b:4d:
33:2f:16:68:3f:1e:18:54:5f:d2:2a:0c:4d:51:ef:85:8f:b5:
3d:92:18:e0:d1:b0:01:10:10:6d:36:84:8a:b3:70:5b:62:f8:
43:19:ae:3c:16:84:00:5c:b2:dd:e8:8e:9d:45:3e:37:0a:2e:
53:da:88:61:1d:7f:d0:89:9e:89:8e:65:29:10:03:09:7e:d7:
e1:69:8f:c1:46:b9:18:dd:5c:7a:30:32:76:47:e0:96:6c:0f:
65:33:94:e8:8e:2e:3a:27:f2:c3:e2:85:e2:af:63:75:84:f7:
0f:7c:34:49:db:6c:d2:ab:04:8c:b2:9e:bd:0f:57:7b:57:ff:
ef:fa:e2:98:1c:2e:80:a2:e1:83:12:36:be:a0:9d:8f:33:7d:
8a:96:b4:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:58 2024 by rpki-client on console-fra.rpki-client.org