Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
File: xcSzrlnZgfJQzIfatZeFSr7XowA.mft (raw, json)
Hash identifier: MPCXPf97tI1be441kQLa5oT42R37aevyIR2nzX0rCS4=
Subject key identifier: 8B:34:2D:EC:99:CD:1C:4F:38:7A:2B:CB:1D:1E:A5:74:C2:D6:4E:BD
Authority key identifier: C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
Certificate issuer: /CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Certificate serial: 019356BFB2C73C7203CFB780AF74AFC6FD11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
Manifest number: 0289
Signing time: Sat 23 Nov 2024 02:00:23 +0000
Manifest this update: Sat 23 Nov 2024 02:00:23 +0000
Manifest next update: Sun 24 Nov 2024 02:00:23 +0000
Files and hashes: 1: DNP2uHuHHfMJt90CBkTh-4hxweQ.roa (hash: AaLJPM+m6vErDoMrcQmfI+j2FDXQXDZplsaB4t23+YE=)
2: xcSzrlnZgfJQzIfatZeFSr7XowA.crl (hash: eIqS1XcM02er5fiPjUAthK1utWqPE+CRxqStAIJ4mXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:bf:b2:c7:3c:72:03:cf:b7:80:af:74:af:c6:fd:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Validity
Not Before: Nov 23 02:00:23 2024 GMT
Not After : Nov 24 02:00:23 2024 GMT
Subject: CN=8b342dec99cd1c4f387a2bcb1d1ea574c2d64ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d1:57:0c:a0:5e:d2:7a:a8:88:69:b2:3e:8c:
0c:bc:bd:bd:bb:02:06:17:de:f8:a2:48:eb:69:aa:
57:3c:56:89:5a:84:27:9e:3c:c1:fd:54:60:fd:ea:
ab:46:e7:6e:67:ff:4c:67:e3:db:03:8a:e8:ec:6a:
2d:91:74:c4:a1:16:ba:5c:8e:af:6e:67:83:d0:57:
71:c1:10:22:a2:2a:c7:06:35:4f:f6:53:21:db:ae:
0c:90:87:5e:80:c5:6a:38:1c:35:08:1a:61:db:d0:
19:b2:09:84:5b:97:32:1c:bb:88:9c:c1:1e:3f:45:
40:38:fb:2a:21:39:6a:a5:66:dd:87:f6:07:ef:45:
20:6c:be:16:01:f0:3f:ff:9c:5e:bc:0a:92:bf:5c:
b4:cc:c0:12:be:f8:bc:d5:c1:5d:7f:b4:c4:72:14:
80:70:a4:a9:16:f0:9b:0a:43:67:2a:a8:69:48:e1:
56:32:a6:ce:5e:fe:a5:c0:10:00:ec:73:2a:b5:98:
e1:55:fa:e5:e8:82:13:8b:99:66:64:64:0b:3d:8c:
9d:d6:ff:bb:cd:81:d6:b7:90:35:71:3c:5f:a9:8d:
c0:0f:9c:2e:d9:81:4d:f1:d8:78:99:01:29:06:54:
55:0d:7f:27:28:6a:83:7e:f3:78:36:b2:f5:32:d4:
89:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:34:2D:EC:99:CD:1C:4F:38:7A:2B:CB:1D:1E:A5:74:C2:D6:4E:BD
X509v3 Authority Key Identifier:
keyid:C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:f9:68:46:a4:df:a5:55:08:6c:f1:93:f9:6a:df:2d:b0:fc:
88:5c:67:63:05:f8:df:27:9f:87:a6:b5:b1:6b:cf:11:54:2b:
3a:5f:96:ca:c1:a1:4d:4e:f7:38:b6:76:34:fe:7b:3c:cf:a6:
21:87:dc:92:39:7d:13:b2:da:4d:4f:11:c6:0c:06:4a:65:2b:
f1:62:7c:11:c9:12:73:58:61:71:c3:e8:76:c5:61:40:0b:a8:
25:fa:89:a5:82:56:67:06:d4:6c:a9:eb:8d:82:39:7b:1a:0d:
d2:0a:33:6f:44:ba:9b:2e:c2:b7:cc:89:3d:ac:86:40:dd:d5:
3f:86:c1:b2:68:bc:6b:73:6d:ff:b0:e8:e7:e0:62:97:62:e7:
8d:cc:0c:6d:fe:25:d4:6b:f4:6c:b0:ad:de:8a:0f:a8:dd:de:
08:b5:e7:c5:7a:55:4c:a7:70:84:e4:92:13:ce:00:11:79:a7:
1f:92:a3:87:af:17:ce:0f:8a:27:fe:ed:b8:05:93:af:02:fc:
9e:c9:68:92:b8:ce:b6:c2:d6:d0:5c:47:f6:e2:d4:df:b0:fa:
19:09:67:cb:19:7e:8a:81:21:8a:e5:9a:06:24:72:6b:e7:76:
13:66:d7:5b:2b:b2:32:71:c5:9d:a9:6f:6b:22:23:a5:3b:c5:
51:0e:08:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:40:38 2024 by rpki-client on console-ams.rpki-client.org