Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
File: XZxbcz-6cemMB-E7A6fFWrhMyO0.mft (raw, json)
Hash identifier: 38Wg6dJvR+ffYb5sRAslqbeUZiZVt1MlDN5RaRSSfTs=
Subject key identifier: 8F:7A:FA:45:4C:D8:BD:F7:47:ED:43:53:01:6E:C1:11:23:10:78:47
Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Certificate serial: 01935878E323ADA8AEC391083891652B7F3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 10:02:17 +0000
Manifest this update: Sat 23 Nov 2024 10:02:17 +0000
Manifest next update: Sun 24 Nov 2024 10:02:17 +0000
Files and hashes: 1: NlZbb3JEFvLS7qgpO5Sarfp7X6M.roa (hash: m/qdjOcr/p8LWnX+p0Dhv9lthJEH6izG7CaZhpN/GKc=)
2: XZxbcz-6cemMB-E7A6fFWrhMyO0.crl (hash: r0Va0JANTopsjEjhvzwbo3x47s2I8x2w+j9XC/843SM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:e3:23:ad:a8:ae:c3:91:08:38:91:65:2b:7f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Validity
Not Before: Nov 23 10:02:17 2024 GMT
Not After : Nov 24 10:02:17 2024 GMT
Subject: CN=8f7afa454cd8bdf747ed4353016ec11123107847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0d:36:a0:98:2a:75:c7:94:e7:5c:38:1a:6a:
66:e9:81:3d:a2:38:f0:59:69:41:31:4a:f6:48:4f:
12:d5:f0:09:2a:0e:45:73:f5:ac:65:85:ae:41:ca:
11:01:c5:3d:1d:09:46:8c:aa:42:4f:0a:74:64:f5:
b6:53:e1:16:7c:27:1d:de:5d:2a:6f:ba:ea:ce:da:
6c:b0:36:73:66:70:33:88:8b:73:da:f3:94:a5:42:
de:bd:85:55:c3:96:fd:63:df:95:8a:37:e3:01:d1:
c9:9a:71:57:00:a8:5c:6e:71:bd:32:26:e1:73:01:
9d:5a:f0:a2:af:9e:fe:4e:5e:ad:3d:22:b5:bc:46:
ca:1c:58:12:ea:8e:4d:0a:02:4f:4a:ed:2b:2f:5a:
b5:66:b6:d9:bb:d3:c2:f3:4a:e8:3f:39:c9:56:bb:
db:0e:1e:f6:e1:5f:21:55:fa:4a:bb:f1:86:4d:9e:
19:a2:72:84:17:6d:a2:57:5a:e9:3c:b5:9f:b6:bf:
d2:68:86:50:1f:9e:69:20:ff:04:7b:0e:bf:ef:77:
0c:e4:a0:32:3b:2c:0b:3b:0d:ee:58:97:36:d8:11:
e8:bb:42:22:d5:1a:55:2c:b7:a4:51:96:a2:f1:02:
84:cf:ce:02:9a:49:85:cd:ad:8e:10:1b:1c:85:44:
18:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7A:FA:45:4C:D8:BD:F7:47:ED:43:53:01:6E:C1:11:23:10:78:47
X509v3 Authority Key Identifier:
keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c8:a2:68:4e:50:be:ee:a9:87:e7:a0:a1:11:09:46:b2:96:
7f:45:22:7c:d2:eb:e4:c7:36:a4:14:89:46:37:0b:ae:7a:ca:
b8:bd:b5:28:fe:73:b5:a4:56:9b:de:45:d7:65:d6:89:0d:da:
96:a0:f0:af:02:e8:32:62:5b:9f:e9:da:60:41:e6:81:44:17:
0c:5f:c9:91:83:13:1d:48:fa:ad:ee:b0:37:27:de:8f:02:34:
db:df:dd:82:a0:30:b5:7a:25:26:1d:6e:3f:09:a5:0e:3b:28:
54:28:c0:ce:c3:98:4d:1b:c5:a7:5f:97:fc:94:11:8c:d6:a3:
ef:31:73:3e:69:28:ef:9c:6f:fe:da:5a:01:61:0c:8e:4e:28:
7d:64:33:e7:8a:1f:c6:21:cc:8b:eb:20:42:66:da:61:fc:e6:
0c:b6:14:b2:c6:8a:7e:07:93:31:c8:19:4e:2e:4b:85:fa:7c:
33:67:51:c6:7c:cc:6b:47:17:c7:56:0d:57:ed:67:a0:e7:ca:
64:a3:23:5d:10:7d:f9:37:2d:67:7a:78:df:2e:c7:7d:b5:51:
9f:83:9d:a5:65:fc:c7:ef:91:8b:ae:e2:ce:e3:a9:11:61:f4:
9d:fd:15:e4:67:40:b9:f3:24:3d:b6:39:5b:7a:ab:0e:c8:34:
b5:89:cc:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:00:12 2024 by rpki-client on console-fra.rpki-client.org