Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: QygrfqVGn6dJf1D8cv1wBiexTKlYcC3ZuC+53KCHDLo=
Subject key identifier: 25:27:FF:F3:E4:65:73:1D:FA:56:DF:42:EE:A0:99:E4:27:E2:E5:4E
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 01935878C31383E1706F33C54449AF818C72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 1094
Signing time: Sat 23 Nov 2024 10:02:09 +0000
Manifest this update: Sat 23 Nov 2024 10:02:09 +0000
Manifest next update: Sun 24 Nov 2024 10:02:09 +0000
Files and hashes: 1: J2pl9u3f9BSU5K1ejEXydxZPiHU.roa (hash: 5is3ZAhxFWeXYY/s7j7GhX+KES9+xfvbI7Cc8rtrvio=)
2: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: sBTR83RofEd19YMLjJ9GqxJ52i7AmlWQwTHl0z8ycuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:c3:13:83:e1:70:6f:33:c5:44:49:af:81:8c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Nov 23 10:02:09 2024 GMT
Not After : Nov 24 10:02:09 2024 GMT
Subject: CN=2527fff3e465731dfa56df42eea099e427e2e54e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:3e:a8:2a:7b:94:b4:ab:37:87:6a:d4:b7:
15:34:62:69:f9:c0:29:9b:f5:c8:f9:ac:0c:de:5c:
24:11:1e:31:ec:81:58:db:d6:80:6b:41:0c:5f:40:
b6:aa:52:2a:ea:2d:66:ea:29:7c:c7:c4:1a:7f:fb:
fd:4f:e0:b4:aa:d7:d5:e7:ba:d6:47:39:86:95:11:
75:31:1d:cc:e6:81:d0:ca:82:b7:a2:27:c5:60:af:
aa:d1:da:3f:6a:9f:90:17:1d:29:82:7c:83:68:48:
8e:ee:92:30:77:98:ce:75:ea:ef:c3:67:b1:5f:ed:
33:3e:d9:23:56:17:3f:be:df:5b:57:88:56:8a:f6:
bc:33:a1:fc:de:26:61:88:76:8c:10:40:4c:9a:0f:
de:6f:78:bd:25:99:9c:5d:95:eb:37:f5:ae:43:9b:
ec:53:bb:db:9c:04:8d:8a:2b:f5:52:d1:51:75:91:
80:e1:f0:55:6b:e1:1c:4e:86:ce:cd:90:1c:28:16:
0f:b8:c0:91:ba:03:7d:ec:d3:87:b6:64:13:89:37:
1c:d8:e7:c6:d7:f4:3c:ec:fa:05:93:79:42:3b:b5:
17:a8:26:72:f4:b6:4f:e7:d8:5d:ad:f4:41:fd:ea:
bb:64:cc:48:36:c8:f2:f2:c2:ea:9a:58:c0:18:23:
51:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:27:FF:F3:E4:65:73:1D:FA:56:DF:42:EE:A0:99:E4:27:E2:E5:4E
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:40:3d:40:c3:5b:39:df:8b:e9:bb:dd:22:aa:a3:5b:d6:60:
af:88:5a:41:a4:56:7a:8e:59:30:64:8e:a2:b5:78:55:3d:8a:
cb:22:87:3e:f1:89:3a:d1:e4:30:9c:64:f1:11:88:c7:47:dd:
9d:2f:1d:a0:70:6a:10:79:ae:ab:65:c6:36:be:85:88:50:02:
c1:75:bd:cf:5d:00:af:15:1e:c4:94:37:d0:69:3c:9b:76:54:
8a:88:fb:42:53:91:f4:65:ad:1e:ea:07:b6:e0:82:7d:37:36:
b0:af:37:6c:d5:0c:99:93:26:8f:53:e3:ec:db:f2:ac:26:70:
33:bc:fb:df:df:36:66:78:1f:24:7f:fe:9c:aa:24:74:e6:7f:
41:0d:1b:ed:27:dd:6c:69:0d:17:35:0d:15:f4:d4:ad:63:39:
60:ee:79:68:bc:c8:c1:d6:f0:a3:d5:b0:0a:10:fb:24:16:08:
42:85:cb:f1:d4:a6:5d:81:37:13:cb:9e:00:ba:92:e8:87:d9:
3b:8b:2a:0c:a9:4d:87:7e:ae:6a:c6:79:5b:9a:f0:5b:f9:4f:
fd:2e:65:1f:9c:61:2a:5d:91:70:f8:ab:5a:08:b1:92:cb:f0:
4c:fd:90:40:75:db:45:d8:34:db:19:7b:06:be:13:06:38:d9:
7b:ad:20:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:59:57 2024 by rpki-client on console-fra.rpki-client.org