Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
File: IG0YKjtEp74F0-5w3JCoXVer-40.mft (raw, json)
Hash identifier: dKCF63dis2Nh4IGakXCRoBV+M78rmNhEvp/s6sJ6UgU=
Subject key identifier: 8D:6D:4A:E4:51:FC:61:21:6F:13:88:2E:E9:66:28:15:CB:F5:EF:C8
Authority key identifier: 20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D
Certificate issuer: /CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d
Certificate serial: 019355E41B10DAB7E8541F9B290A7473C6C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
Manifest number: 12D2
Signing time: Fri 22 Nov 2024 22:00:32 +0000
Manifest this update: Fri 22 Nov 2024 22:00:32 +0000
Manifest next update: Sat 23 Nov 2024 22:00:32 +0000
Files and hashes: 1: IG0YKjtEp74F0-5w3JCoXVer-40.crl (hash: bjszFwwdtfEaRr9p3f6XoOyippQw24qL43e3A48rL5w=)
2: bje3A4zheYKVA_GWZ8FXvAZ4rlI.roa (hash: jc26dxfLrJLJOlE9GZ9jzKSd5eBahlqkkhUJDtWu4Dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e4:1b:10:da:b7:e8:54:1f:9b:29:0a:74:73:c6:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d
Validity
Not Before: Nov 22 22:00:32 2024 GMT
Not After : Nov 23 22:00:32 2024 GMT
Subject: CN=8d6d4ae451fc61216f13882ee9662815cbf5efc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fb:1d:54:2d:ca:b0:27:04:99:13:fb:0b:0f:
51:de:2a:9d:c4:cb:19:19:f9:e8:6e:ae:37:18:f1:
88:f1:ce:5c:4e:6c:8b:7a:95:ee:0e:80:7a:32:28:
ae:16:c2:f1:3d:e9:da:80:55:2d:3c:83:ac:77:72:
d0:1b:51:c5:26:fe:38:80:d4:45:e9:d1:37:88:77:
2b:dd:69:d6:64:ec:de:57:a6:ba:cf:fe:b6:1b:4e:
01:8d:bd:a7:c4:d8:98:ca:a1:f5:36:0f:e5:b7:83:
b0:a2:55:ad:75:ca:0d:94:0c:39:7e:24:3f:4b:ee:
9b:55:af:d3:b2:b7:1d:36:28:9b:13:a9:08:d4:69:
76:d6:6e:85:8c:c2:c0:11:10:53:64:dd:03:5c:69:
1e:0f:0b:cd:64:94:a1:30:96:b9:6b:f6:52:d3:33:
30:85:3c:0d:19:70:80:54:6a:9e:2e:19:ee:94:51:
16:f9:e8:bb:22:ec:d9:c2:fe:21:47:74:6b:c4:46:
50:58:19:fe:d0:81:53:97:34:42:67:52:cd:8e:2d:
27:23:78:37:4a:6f:8f:98:0f:75:88:32:e7:43:aa:
7a:18:8c:96:f4:ec:16:87:04:55:d4:c5:d8:23:bd:
42:40:05:60:ca:c6:1f:a2:8b:9c:50:71:af:dd:6b:
64:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:6D:4A:E4:51:FC:61:21:6F:13:88:2E:E9:66:28:15:CB:F5:EF:C8
X509v3 Authority Key Identifier:
keyid:20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d5:9e:12:2c:72:6b:d0:32:e8:72:f3:4d:73:74:52:ca:3f:
97:e2:a6:4d:43:b0:c7:b3:84:7c:87:e9:cc:c5:cb:d9:65:a3:
ad:c3:41:d1:db:a9:6f:01:b5:ed:85:51:70:e1:f8:13:00:df:
20:40:48:87:3c:f7:a9:87:47:fb:55:5a:8d:8e:31:f5:63:74:
5f:be:f5:51:7f:6a:49:eb:ce:04:bc:e1:8d:13:b8:82:bc:23:
35:4a:14:15:7c:45:81:6f:0e:2d:21:e6:4f:70:52:00:f7:81:
c0:21:26:2b:c0:e2:e4:db:f7:bd:c4:2e:82:b9:d8:66:6f:aa:
28:8c:7e:cb:66:d0:a4:d8:1c:42:44:9a:50:1b:1d:39:6d:0e:
c5:a6:f1:53:cf:2b:93:71:ac:5b:70:e1:49:18:26:3a:0e:76:
bb:95:2e:31:20:13:00:b4:f8:ba:e9:19:a9:c7:ce:01:29:df:
3a:99:ef:22:88:ef:e3:1b:ac:2c:fc:53:b6:74:8f:88:04:ba:
17:69:74:f1:0e:80:ff:b6:d6:72:a0:94:60:c2:bd:7d:ae:3c:
ea:76:9a:d1:5c:be:f9:1b:9a:b7:0e:b5:42:c4:e7:01:1e:d4:
54:cf:e9:35:c7:e1:a8:31:f5:fd:53:3d:db:ba:b5:f0:90:4e:
2a:71:70:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:17:03 2024 by rpki-client on console-fra.rpki-client.org