Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
File: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft (raw, json)
Hash identifier: 7xzwJQuW3Id14tjNvNEFR551wBhysMDRa9/CGgPceiE=
Subject key identifier: F5:D3:44:96:38:AF:D1:09:49:FC:12:34:DB:49:BE:13:80:A2:60:99
Authority key identifier: 77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
Certificate issuer: /CN=779fbaaac6541ab318529eb025613c6520e47646
Certificate serial: 019356BFA75AA73BD856AD4AC42A5F4C8430
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
Manifest number: 0223
Signing time: Sat 23 Nov 2024 02:00:20 +0000
Manifest this update: Sat 23 Nov 2024 02:00:20 +0000
Manifest next update: Sun 24 Nov 2024 02:00:20 +0000
Files and hashes: 1: FTiBJr18tsm_GQOfs6xvm_gBoOY.roa (hash: 96Np2d+yXVEORSUtJbWOWFZVAdQZFU8vvi0XiRBeZ8w=)
2: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl (hash: w4qEGBmZPTc8GImoKMeOAWVcihNK9VzX8FZoidxpdLU=)
3: gVQBxfLnZPnjico_NgbsmkLKXh4.roa (hash: CZnnuA/umfuB1bSzhyQYaJicrU6nxPubU2e7uizG/u0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:bf:a7:5a:a7:3b:d8:56:ad:4a:c4:2a:5f:4c:84:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779fbaaac6541ab318529eb025613c6520e47646
Validity
Not Before: Nov 23 02:00:20 2024 GMT
Not After : Nov 24 02:00:20 2024 GMT
Subject: CN=f5d3449638afd10949fc1234db49be1380a26099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0a:ca:95:cd:92:37:76:3f:e3:a8:96:21:72:
ee:61:77:f9:d0:92:15:80:c1:dd:85:86:53:84:8e:
65:6e:01:80:2f:21:68:55:25:9b:1c:85:69:da:04:
64:ca:56:1d:7f:57:01:1c:69:e2:00:21:2a:3a:ef:
bb:7b:e3:e6:a0:2a:f6:47:9e:6b:73:99:24:1f:c7:
7c:7c:cd:d6:ba:38:f9:d7:22:e3:97:d7:da:98:34:
b8:e8:13:43:d4:3c:14:ee:f6:2f:95:58:3b:ea:aa:
f1:1f:f6:7c:28:dd:76:43:06:40:bf:5a:64:6a:d8:
30:7a:49:0d:6c:e6:1d:89:63:58:1f:a5:23:14:c7:
7d:4a:1f:c7:76:62:42:c5:33:55:7c:49:c9:38:cc:
66:18:d1:de:8d:11:13:dc:33:3e:28:6a:93:17:a0:
c5:68:06:1e:99:a3:99:78:54:10:eb:71:ce:cd:49:
87:d5:ad:9c:a3:e5:c8:e3:07:1a:5c:5a:6c:17:c9:
31:61:09:38:3c:b8:cc:92:9e:01:a8:ec:18:33:e0:
8e:59:c1:75:1f:40:7b:6b:d9:36:80:d2:b6:d0:3b:
c6:af:0e:2e:5b:d1:4e:9b:78:76:f4:e9:ec:64:8b:
25:0a:c9:ae:34:2c:da:76:39:4c:97:f6:2a:d3:28:
4c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D3:44:96:38:AF:D1:09:49:FC:12:34:DB:49:BE:13:80:A2:60:99
X509v3 Authority Key Identifier:
keyid:77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:a3:cb:0c:45:e3:2a:13:8f:72:9c:72:b1:9e:04:68:a9:36:
9a:68:bc:83:da:de:6a:a7:8e:e2:6c:e1:ec:b0:fb:ba:cd:73:
94:96:ea:a3:c7:97:0b:d2:c7:3f:c8:ac:41:98:5e:45:ff:2c:
b6:a1:40:59:f3:b0:ba:d7:a2:65:d6:be:63:43:56:b7:cc:c0:
62:b1:ea:a3:ac:55:b7:d7:18:d1:de:a0:9a:86:22:f3:cb:80:
af:a0:5a:31:7f:14:55:4c:d9:17:e3:a3:62:40:7d:93:72:c1:
81:d2:02:69:1c:f4:57:cd:22:4a:5d:9f:02:30:67:ec:5a:08:
ba:41:fa:33:a9:b2:ce:07:8b:3c:a1:93:b9:07:ae:85:b2:7f:
d5:f4:19:74:91:b9:27:fa:9f:5c:83:1c:15:fe:a3:55:7e:21:
e8:f7:fc:15:06:8e:31:98:ed:dc:d9:e2:d1:4b:e4:3e:92:0e:
74:f0:3d:c0:99:bd:66:26:4c:8e:05:71:f6:63:a8:ff:6d:2b:
9f:21:05:ac:8c:a6:1a:6c:f7:a6:75:1a:88:86:7b:89:d5:f1:
83:cc:a9:d9:f9:82:0b:75:98:6a:20:4f:f2:cf:16:63:35:de:
40:99:77:fc:3e:2a:b4:81:97:ca:07:ff:9b:e1:57:74:cb:bf:
82:d8:f7:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:40:40 2024 by rpki-client on console-ams.rpki-client.org