Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: MMAsGgy+W00gyifs4pb6wmzHZdlmoY4yGoi9BmHqjFc=
Subject key identifier: A0:57:9A:F2:E5:56:94:85:33:F3:26:B7:0B:24:DD:80:23:73:D2:B1
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 01935764EA81E0C52F58F3AA79F0C67967AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 054A
Signing time: Sat 23 Nov 2024 05:00:51 +0000
Manifest this update: Sat 23 Nov 2024 05:00:51 +0000
Manifest next update: Sun 24 Nov 2024 05:00:51 +0000
Files and hashes: 1: X717aLsLlgnVlUzVlfB1ws7L4zs.roa (hash: gTPCXh6ROvOy5smU0nN+o5TkY8PXCrQjS5cokgafSJk=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: 52E/fd7Z6z/HYYB86YxIrrDeS2rKO5fH03b4T9xGGa8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:ea:81:e0:c5:2f:58:f3:aa:79:f0:c6:79:67:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: Nov 23 05:00:51 2024 GMT
Not After : Nov 24 05:00:51 2024 GMT
Subject: CN=a0579af2e556948533f326b70b24dd802373d2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0b:3e:b2:75:d5:3e:fa:ca:13:dc:51:e0:0d:
8f:0a:79:f4:b3:e3:5e:d8:f9:e9:ac:05:9b:ae:bc:
fd:43:0e:c6:49:e3:32:20:36:a7:db:a8:d8:59:4c:
ed:d8:d8:52:79:6b:04:93:ea:fa:48:3a:4d:bc:ed:
1d:e2:06:37:94:12:ad:09:35:cc:9d:79:20:92:7a:
11:7b:c4:db:b9:b0:cc:4a:c9:45:20:e1:be:6a:01:
01:b3:53:c4:a2:43:ab:b5:b6:1c:66:0b:ce:43:84:
34:eb:03:da:4a:55:26:af:37:73:2e:2a:7b:6a:60:
0a:db:7b:99:d7:bf:d6:ad:f4:47:ae:f1:78:5b:0f:
c5:3d:05:31:e8:ab:5b:23:63:6f:40:44:ac:4f:a9:
f2:ba:cf:94:af:8f:79:b8:70:01:bb:5d:bd:cc:2d:
d4:2c:81:b5:13:5c:26:b0:d1:13:01:37:7c:61:8f:
1a:61:b5:f7:8a:2e:07:e0:e2:cd:d1:85:cd:58:fc:
6a:cd:91:4f:ed:7d:d3:cc:7e:cd:ff:52:62:10:06:
68:33:f4:f1:4f:c6:62:f5:bd:65:58:18:64:ef:5f:
f2:08:73:ca:dc:17:cb:cd:29:1d:e4:6c:ff:3e:14:
9b:78:17:f6:bd:8d:70:97:0f:70:c4:9b:fd:30:9b:
b2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:57:9A:F2:E5:56:94:85:33:F3:26:B7:0B:24:DD:80:23:73:D2:B1
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:3e:45:1b:aa:73:9f:e3:74:a1:64:1c:1d:a3:9d:65:a1:f6:
2b:dd:f0:96:e6:67:2f:d6:2f:08:d5:ac:2b:0b:86:48:f6:86:
96:17:c1:c1:fc:f9:03:a4:69:37:bb:0e:8e:18:9e:88:14:f1:
91:48:d0:2a:72:71:f4:a4:28:47:3d:93:d3:2d:e2:53:6e:70:
3d:77:ed:58:70:5f:b4:1b:f1:33:57:23:e4:e4:a6:f6:1b:c0:
39:fc:a3:b8:ee:d1:35:e2:f5:31:aa:5b:b1:8f:3c:f8:9b:70:
0e:4d:05:de:d5:b0:81:64:30:4b:1a:6f:2f:89:b4:17:97:f0:
70:ea:c8:61:7d:c9:4b:9d:7f:fc:1c:a3:13:7a:59:45:a7:ab:
dc:9e:a1:ac:b6:52:20:5b:ce:a6:10:a2:9b:a7:06:72:53:86:
9d:cd:53:92:cb:d6:fe:65:89:72:26:09:c3:89:b4:a6:d8:ba:
2c:b0:a5:8e:ff:78:33:73:c5:15:52:1b:03:e9:b0:22:68:ae:
d8:6b:e9:28:e9:01:e5:bd:53:9b:46:99:c0:64:dc:e2:8d:30:
eb:9b:e7:1a:41:d8:2e:62:36:43:cb:5b:0c:37:d8:90:fe:ca:
62:12:69:1c:c3:f1:28:98:5a:80:42:9c:84:b8:34:cd:c7:90:
b9:86:4e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:22:15 2024 by rpki-client on console-fra.rpki-client.org