Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: Vb7daSFtB6Ze7G5Q36uBQ8MK3KksWqHzcYrSrk3ErjI=
Subject key identifier: 23:07:CC:85:B2:D1:2F:58:84:01:19:AE:55:DC:68:8F:B1:96:D5:C5
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 019405A18C32DD17E18850BDA091298BBC02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 3A
Signing time: Fri 27 Dec 2024 01:01:00 +0000
Manifest this update: Fri 27 Dec 2024 01:01:00 +0000
Manifest next update: Sat 28 Dec 2024 01:01:00 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: 31eQ4xyG0AA/wpqho4wnN//WENpDBv5a1rwvUb7bxcg=)
2: v84WM5wcLHYYikGtwE7_oXoTatw.roa (hash: Q5kH3pDX+h3B45cYrAvKIdE3T5P++9UuzdCFSbFnX4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:a1:8c:32:dd:17:e1:88:50:bd:a0:91:29:8b:bc:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Dec 27 01:01:00 2024 GMT
Not After : Dec 28 01:01:00 2024 GMT
Subject: CN=2307cc85b2d12f58840119ae55dc688fb196d5c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f8:56:3e:07:90:a6:87:09:69:ae:fa:2c:3b:
14:4f:d1:9d:a9:2e:7a:2b:b1:f3:0f:3e:63:9b:95:
f5:ed:16:24:23:09:bc:78:0f:f9:52:90:71:0e:4b:
0c:13:8a:1f:14:9c:5b:51:1a:89:44:e6:5b:43:78:
c7:56:09:2a:e7:38:7f:c8:98:0f:c0:64:17:53:be:
19:d7:c9:90:a1:9a:7e:25:55:5e:66:3f:f3:8a:57:
9c:0f:55:5a:e2:f5:20:8b:ba:37:b1:02:62:7d:ca:
a8:de:5b:f6:47:f7:32:09:bb:53:7b:df:e2:a3:67:
48:a2:3c:1e:ae:0c:b1:33:00:9d:60:08:1c:a7:f1:
9c:0c:5c:0f:73:2b:9d:7b:e0:49:10:08:7e:17:d2:
c0:fd:87:3b:e3:fe:9b:f1:1f:fe:c0:e1:5c:e6:46:
7c:3e:01:fb:0d:7c:17:dd:23:3d:e5:39:8a:ea:f5:
cc:a9:c1:2d:39:ad:50:6e:c9:bb:b3:c5:03:20:de:
83:3f:92:74:4e:90:9a:8b:0b:ef:a3:8d:3a:e3:06:
73:53:19:af:09:7d:a1:4e:96:d1:36:a1:aa:7a:87:
a9:81:8d:2f:f1:52:0f:6c:c5:ec:28:af:1a:6e:61:
50:cb:10:02:c4:89:f7:24:84:cc:fc:57:a6:b5:cc:
b1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:07:CC:85:B2:D1:2F:58:84:01:19:AE:55:DC:68:8F:B1:96:D5:C5
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:d9:e2:52:4e:48:5d:c5:9c:ad:4d:24:77:45:9c:dd:97:00:
29:f9:8e:d0:0d:1b:f6:8a:b6:48:c5:16:63:eb:56:32:b0:53:
1d:22:65:35:b3:56:05:ab:1f:fc:0b:a4:60:fd:14:ad:b5:09:
12:50:54:8a:1a:d8:68:c4:f2:a2:f2:97:b7:3d:c2:ce:15:d8:
5f:4d:c8:a8:72:80:f3:3d:79:ec:54:98:bb:bf:94:cc:ee:dd:
1f:6e:01:e4:5c:0c:4f:f0:7d:f3:19:82:3e:b5:b7:6b:f8:ed:
f3:f0:0d:f5:ab:72:1b:87:2a:a8:79:57:0c:60:97:7a:02:bd:
13:26:b8:bf:54:50:e0:ec:63:6b:79:8d:f7:04:cf:e1:da:fd:
a2:e9:26:1c:7b:79:81:4a:c2:eb:90:f5:50:24:7f:ed:3c:53:
26:bc:d2:c8:62:16:58:7b:09:f0:97:7e:f3:d3:5e:74:4f:8a:
3a:a9:ea:0e:ad:37:86:cb:4b:8d:b5:31:c8:0b:a5:a5:9c:e8:
70:64:61:66:1b:a9:dc:5f:16:1e:09:f6:5a:55:b8:d9:7e:f9:
7e:dd:fe:35:ee:f6:21:af:43:08:40:18:ec:bf:e2:be:41:84:
7b:50:c1:02:dc:50:f6:6d:cf:b2:7f:1d:ee:16:5c:cd:cb:18:
c7:74:93:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 09:43:11 2024 by rpki-client on console-ams.rpki-client.org