Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: 5Y3zmJ+hiVs6eY9+deKik66d2NCkbSdYVTrKNnzdEJ8=
Subject key identifier: 47:34:41:D7:2D:72:0D:80:64:E6:04:24:C7:01:73:BE:42:0F:70:C5
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 0193579B5E8200CFE24B0BC7A7508ABD762F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 0F3E
Signing time: Sat 23 Nov 2024 06:00:20 +0000
Manifest this update: Sat 23 Nov 2024 06:00:20 +0000
Manifest next update: Sun 24 Nov 2024 06:00:20 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: DS709TLjK2ERtyopz8yYFKW4sFUJ4AmWcFX93cI5YNU=)
2: zYzjXahtSWU4k0uZpmF9zsJlelA.roa (hash: OCIECJAmSyMf2zxPigVjRIJ1zIUVfQDqJZJr58OsuoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:5e:82:00:cf:e2:4b:0b:c7:a7:50:8a:bd:76:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Nov 23 06:00:20 2024 GMT
Not After : Nov 24 06:00:20 2024 GMT
Subject: CN=473441d72d720d8064e60424c70173be420f70c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:51:a3:da:12:de:db:3d:18:d6:23:dc:76:ba:
15:6a:31:43:34:be:d7:54:e6:99:2e:84:fb:49:4a:
ef:ed:ff:2c:87:72:33:d6:68:f5:fb:69:30:ef:c9:
3f:3d:af:34:37:9f:07:92:0c:63:ca:76:bb:8a:6d:
ed:cd:6e:61:41:ba:32:79:4a:4c:09:e9:aa:49:0a:
e5:e9:3d:7a:bc:95:ca:c7:db:80:d2:a1:1c:19:87:
ab:e1:5e:b6:b0:d1:0c:10:f5:fd:69:4a:51:89:72:
d5:78:1a:3c:78:1e:01:a3:47:74:91:ca:f2:2a:52:
ff:83:04:a7:15:c4:2b:79:d6:dd:a5:30:84:dc:51:
48:90:40:a8:af:86:f7:72:17:38:2f:88:8c:45:32:
f7:5a:76:66:6b:71:0a:29:6b:89:a8:a4:bf:8f:1f:
18:0e:1a:b3:97:82:96:d2:a5:96:ef:37:1e:54:39:
65:fb:4e:36:9c:6c:16:29:3a:2c:6e:44:cd:a6:c0:
d6:ad:68:c0:06:bc:3a:26:c2:ed:7a:13:2c:46:7a:
c6:e3:8a:e3:42:a6:2f:5c:b7:fc:56:1c:90:d0:52:
23:c9:12:c3:35:e6:4f:2c:4d:be:b2:26:02:28:a9:
29:cd:fd:12:61:b3:81:18:c8:fc:f0:5d:8c:18:52:
db:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:34:41:D7:2D:72:0D:80:64:E6:04:24:C7:01:73:BE:42:0F:70:C5
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:3d:87:b2:12:cc:64:94:93:88:26:5a:dc:72:ad:24:0c:d3:
ca:ca:46:ff:76:ff:b1:d5:78:37:72:75:4f:0c:01:06:e4:80:
78:66:1f:c8:07:96:b4:01:c6:37:5b:f0:23:b9:34:f6:41:f7:
eb:8b:ab:22:18:b6:c4:c9:75:cb:8a:7c:4e:0d:85:30:78:cd:
72:92:65:42:75:2e:05:43:88:1e:61:a3:ad:81:a4:a9:11:d9:
0a:10:bb:1c:bf:b3:ac:a3:f1:de:32:77:f4:19:d6:7a:fb:af:
83:33:34:22:52:79:3d:35:a3:41:ae:c2:e6:4e:a5:5d:15:72:
92:79:f5:34:83:e0:5c:40:d4:3f:cb:6d:e5:14:53:bb:bc:8a:
79:8c:c1:a6:25:fb:86:f9:15:6d:4c:7f:e3:43:11:38:87:bc:
3a:c2:7e:24:47:9c:00:bf:14:35:40:07:ce:cd:41:ff:a3:b0:
ed:16:91:ec:65:3f:e0:84:43:c4:62:32:bf:3e:1f:e1:76:fb:
3b:90:1a:64:cf:3e:80:cf:df:3d:d9:95:fc:d5:17:3d:e9:84:
1b:a4:62:b5:61:d9:10:2e:e0:e7:cd:bd:da:b2:36:f2:92:ed:
bb:c9:f5:86:ca:8d:f7:13:a8:8b:b8:b4:01:0c:8c:b0:a4:8c:
12:47:33:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:55:36 2024 by rpki-client on console-fra.rpki-client.org