Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: 4KkcyZ93kekNtD4Fth75SgqT/EbuwQo12+K3yhm+bdw=
Subject key identifier: 65:BD:FA:2A:6D:45:C3:C4:D9:F6:14:ED:9E:48:13:EA:DB:73:23:B6
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 019353BECE6CC333F50C07B6731EBB23D5B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 1370
Signing time: Fri 22 Nov 2024 12:00:33 +0000
Manifest this update: Fri 22 Nov 2024 12:00:33 +0000
Manifest next update: Sat 23 Nov 2024 12:00:33 +0000
Files and hashes: 1: HyNCxQlG4pU8sUEoFsYhLb1GzCY.roa (hash: G6il+trKEhoxsyl0BONyQUhAmxkiYuT6eiUBFu1sWZE=)
2: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: UJNFa6myR8Cyr1sRGdFGyDevkesbv6PCxyFeVgim394=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:be:ce:6c:c3:33:f5:0c:07:b6:73:1e:bb:23:d5:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Nov 22 12:00:33 2024 GMT
Not After : Nov 23 12:00:33 2024 GMT
Subject: CN=65bdfa2a6d45c3c4d9f614ed9e4813eadb7323b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0a:4f:07:91:6c:25:0c:66:5d:ca:0d:99:62:
96:e2:21:aa:81:24:5b:55:2e:20:fe:a8:a4:08:b7:
35:f2:89:c0:cc:8e:9b:b4:7a:b2:4e:77:f9:1c:40:
34:13:2b:bf:7d:3c:1e:9c:8e:7f:ab:a5:b9:24:e4:
4f:8c:4b:48:58:fa:ad:57:8c:99:99:9b:c9:07:c1:
67:ff:8f:dc:90:1d:3f:da:0f:2f:fc:a7:ef:4f:ee:
b8:55:79:1a:6c:45:2f:04:4d:8e:00:08:e7:76:3f:
3c:01:ac:5f:7c:33:3a:5c:50:a5:ed:b5:8b:14:b4:
d8:74:ad:2b:9d:ef:d6:08:df:3b:55:21:b4:51:47:
52:ed:87:bd:09:6b:89:12:bb:84:67:9e:f9:d3:eb:
ab:80:99:6f:5c:f8:e7:13:24:cc:90:5b:f5:af:52:
f2:2b:dc:b4:06:ad:9c:c7:8a:9c:49:e2:cf:ec:ed:
41:a3:bf:9f:0b:d4:64:e6:bb:ca:3d:c9:03:dd:58:
f2:6d:15:5e:c6:a3:25:1c:e0:35:79:62:0a:03:c4:
22:c1:16:da:ea:48:b7:c8:73:04:9a:a8:c6:1a:0f:
e0:fc:82:b2:05:21:df:0e:94:64:12:71:85:cb:e0:
14:69:fe:1a:ad:8c:10:6c:11:11:fb:4d:d5:ce:8a:
1b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BD:FA:2A:6D:45:C3:C4:D9:F6:14:ED:9E:48:13:EA:DB:73:23:B6
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:92:3c:76:4e:3f:b0:c9:5e:6f:1a:e5:32:d0:b6:6d:04:7e:
51:41:7e:d6:c7:ee:ba:00:fc:c8:14:22:3a:5a:07:04:31:fa:
a2:17:46:29:1f:4f:de:04:af:71:28:20:3a:6a:15:75:74:2f:
f9:b5:25:df:45:50:17:b5:b9:7c:19:fc:7c:7e:7e:9f:7c:f3:
28:1a:f0:37:5a:f6:36:81:5a:68:99:3e:ec:b4:9c:a3:60:ff:
6f:d7:0f:3d:a5:bb:9f:8e:cb:ac:16:dd:b3:eb:26:3e:de:21:
e5:85:49:5d:93:5d:a7:33:f1:00:df:4a:a3:cb:6f:e0:87:25:
c9:39:ea:ac:7d:5e:28:dc:59:b6:2b:9c:f1:2f:4b:0e:f0:ba:
70:b6:46:fe:2a:7d:a3:ec:4b:ef:f4:a4:89:04:95:05:fc:23:
e5:ff:c5:17:73:ce:5f:f9:94:e0:1a:75:6a:df:52:15:a1:3d:
f1:1b:9a:62:30:88:cb:c2:51:d9:d9:5c:5c:cb:c8:d9:62:88:
95:9f:33:e4:47:21:78:b4:89:71:9e:88:04:78:a4:27:13:01:
f5:33:9e:eb:f9:fc:86:1a:e5:cd:98:05:28:7e:ae:5f:3e:b0:
22:41:96:f5:95:c7:c9:00:68:4d:5c:b0:12:fe:a1:ec:3e:d8:
a9:db:b4:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:42:09 2024 by rpki-client on console-ams.rpki-client.org