Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
File: XeYTaCVSAQKY86aUoA18WQYGC5U.mft (raw, json)
Hash identifier: X38+7fRDcBOkcbdqmMeBGXwUQNDvXatsMy5ulZgreQk=
Subject key identifier: FA:98:03:6E:87:FA:9B:05:0F:BF:DF:C1:D0:AF:5E:C6:02:FC:4A:D4
Authority key identifier: 5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
Certificate issuer: /CN=5de613682552010298f3a694a00d7c5906060b95
Certificate serial: 01936B223C388A517CE619D4243631A9799E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
Manifest number: 137E
Signing time: Wed 27 Nov 2024 01:00:25 +0000
Manifest this update: Wed 27 Nov 2024 01:00:25 +0000
Manifest next update: Thu 28 Nov 2024 01:00:25 +0000
Files and hashes: 1: UlM26jJgAIOkg7XWHBlDa9wEvLc.roa (hash: QXvZ2ltulISDde05uFsxY0sVB3SoNy0qmWMzOpYRTc4=)
2: XeYTaCVSAQKY86aUoA18WQYGC5U.crl (hash: wohYYrrHibRsm+LQ9aoiLfobCx/n8YxNPX2CxEchvhQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:22:3c:38:8a:51:7c:e6:19:d4:24:36:31:a9:79:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de613682552010298f3a694a00d7c5906060b95
Validity
Not Before: Nov 27 01:00:25 2024 GMT
Not After : Nov 28 01:00:25 2024 GMT
Subject: CN=fa98036e87fa9b050fbfdfc1d0af5ec602fc4ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6f:2d:56:5c:4f:1d:e1:51:9e:1e:ca:94:50:
13:38:a8:04:4d:e5:ac:26:73:82:2a:ff:4f:f0:e3:
66:ab:41:33:b6:a5:49:ba:d6:06:0d:5b:20:9b:4e:
41:07:21:cf:d3:a6:66:ff:fe:d4:04:0a:0a:b6:51:
1d:4e:57:5b:a7:3e:6d:a5:99:e1:73:85:ed:58:ef:
e4:f2:ac:36:cf:7f:b1:d8:26:7b:f2:41:49:4f:e5:
12:36:af:6e:73:d2:34:66:1d:a6:69:42:13:6d:e1:
56:a5:bf:27:df:4d:01:98:47:03:b9:5e:ec:87:f2:
af:1b:c1:17:80:72:ec:36:b8:c6:3b:3d:04:d7:6c:
f4:a7:db:a5:1a:d2:5f:ac:2b:6f:1a:21:69:b0:98:
8f:57:8c:6e:87:05:cf:a9:29:43:fe:64:37:b7:0c:
ea:7b:3f:33:9e:56:69:37:0f:eb:5f:2e:ed:f3:44:
10:d4:18:d9:17:3c:e9:fa:be:3d:49:62:d5:53:08:
cc:7f:9e:61:16:f5:bb:ca:66:6a:bf:7b:c0:6e:ac:
1c:f6:6e:13:18:d7:9d:c8:a5:ea:b9:91:2c:ef:d3:
cb:61:5f:b8:7c:da:c4:90:a1:7e:31:a8:a0:9d:34:
f0:eb:2e:18:18:0a:b0:78:14:ca:b8:54:64:ee:cf:
9f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:98:03:6E:87:FA:9B:05:0F:BF:DF:C1:D0:AF:5E:C6:02:FC:4A:D4
X509v3 Authority Key Identifier:
keyid:5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:1a:cf:69:3e:34:16:d0:56:6c:a0:58:26:c9:35:93:26:60:
6b:44:45:96:16:ea:6f:77:66:c8:c9:1c:1f:2e:42:07:df:f1:
b1:2a:1c:3e:f7:c8:21:7d:75:e6:41:46:90:91:76:d4:b3:41:
4b:b2:d4:05:54:92:06:de:c7:69:cd:8c:2c:c7:68:d1:62:db:
0a:4b:68:2b:77:6a:3f:fd:4d:d4:a5:e5:3e:40:ce:19:ff:a0:
4c:c8:0f:25:ff:8d:7e:b6:40:21:a6:4c:e9:d6:2e:9c:33:f1:
3c:73:9f:b3:ab:f4:04:bb:f7:b0:62:d1:c4:4f:e6:d8:0d:89:
63:88:af:f9:83:f6:9e:c7:0e:c7:04:f6:56:0a:63:65:1d:13:
4f:c1:05:93:3a:0b:1b:86:7f:5b:77:4e:fc:7a:11:4a:ff:e4:
ea:d7:48:1d:0b:11:34:1d:83:55:9a:61:7e:ea:d1:05:fb:57:
c5:d7:4f:9f:85:0f:84:b2:f6:f0:95:c0:e0:42:5b:40:31:33:
0c:18:44:47:6f:4d:3a:8c:f8:24:9b:2d:f0:23:e5:19:a3:65:
dd:a6:3a:27:ba:96:3c:16:2f:43:2b:22:72:9d:53:ea:ad:93:
63:9a:0b:12:56:66:29:aa:82:d0:42:f3:9b:cc:a6:41:6e:e3:
07:f9:de:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:32:03 2024 by rpki-client on console-ams.rpki-client.org