Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
File: Lg1AUXqHO33CrrKNDtai-ZOj100.mft (raw, json)
Hash identifier: sL54rejJZVEsg0vJeSCF5HwM4cUYyFB7L9Evm8TWoeY=
Subject key identifier: 38:3F:28:4E:B4:E7:C4:28:96:D2:7A:BF:3D:E8:B0:5A:84:5E:B5:F6
Authority key identifier: 2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
Certificate issuer: /CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Certificate serial: 019356F7017ADFE8CCE8654034FA7DBC61B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
Manifest number: 1057
Signing time: Sat 23 Nov 2024 03:00:48 +0000
Manifest this update: Sat 23 Nov 2024 03:00:48 +0000
Manifest next update: Sun 24 Nov 2024 03:00:48 +0000
Files and hashes: 1: Lg1AUXqHO33CrrKNDtai-ZOj100.crl (hash: f5vb8YJVeZc+rAzB2MvZ2fq+YqkH8zKvdu4ClrN71FE=)
2: yMJ3AJXV7WGJHJvJkUciZtrsXJU.roa (hash: 37d132ZgeZzFj9E9ztJtsj57NHyMBeOjocVH6T1LNrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f7:01:7a:df:e8:cc:e8:65:40:34:fa:7d:bc:61:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Validity
Not Before: Nov 23 03:00:48 2024 GMT
Not After : Nov 24 03:00:48 2024 GMT
Subject: CN=383f284eb4e7c42896d27abf3de8b05a845eb5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9d:a9:cd:4d:68:1c:b0:6d:29:53:22:91:55:
ec:dc:40:23:c5:2d:76:58:c1:60:b4:63:27:c0:33:
30:0f:4c:1d:47:ff:8f:0c:ac:ad:ae:49:91:42:f8:
14:a4:3f:92:44:80:35:d6:4b:a6:5c:d1:42:ea:d3:
3f:00:9f:37:d0:37:ec:df:d5:24:53:be:ac:58:80:
f3:e1:ed:74:6d:1e:39:b5:79:4a:b7:8e:dc:e6:3a:
47:d7:a6:79:7b:ff:9b:2d:0a:ec:9f:e8:f8:bd:7a:
d5:ea:45:f0:5c:38:74:08:d1:4d:31:1d:48:3d:06:
ca:61:1f:96:53:fd:d8:d5:2e:bf:8d:4c:3d:3f:d2:
66:3f:30:7c:68:a0:45:1b:dd:f6:74:e5:8d:44:24:
01:3f:81:2a:68:32:98:8f:9f:a4:1d:bc:69:a2:ab:
23:09:f9:ba:41:3a:83:37:20:69:59:99:dd:00:7a:
4c:a0:34:2b:4d:14:00:80:9d:5d:e2:51:4f:18:59:
51:a8:43:27:63:53:e5:84:7e:77:10:f3:35:f7:f7:
8a:4d:a6:8a:69:7e:33:5e:8b:3c:66:47:66:11:90:
3f:a6:c8:0d:bc:2d:6f:9f:10:a9:75:df:bf:4d:08:
f2:66:a5:59:d7:b9:31:61:15:14:de:68:4c:10:37:
ec:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3F:28:4E:B4:E7:C4:28:96:D2:7A:BF:3D:E8:B0:5A:84:5E:B5:F6
X509v3 Authority Key Identifier:
keyid:2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:cf:d0:75:ef:15:3e:d6:02:ff:22:93:d8:79:dd:c4:fb:34:
e9:cb:ba:a6:ea:af:73:58:41:c3:d8:fe:e6:a6:a6:bc:a3:af:
e2:af:ad:47:0b:c7:8b:c6:70:c8:fa:0c:a8:59:f4:42:53:a8:
34:96:ab:68:78:96:27:8f:b6:01:79:88:0f:04:ff:69:d9:53:
52:a5:41:91:c4:18:59:b3:4d:ef:1d:5a:cd:87:68:6c:b5:8e:
0b:53:44:9a:0c:aa:c6:bc:21:bb:a5:0d:cf:91:22:08:cd:3b:
86:1b:06:b7:33:47:8c:9f:74:c1:e9:14:5b:1e:65:75:fb:8b:
6e:4a:be:78:bd:4a:aa:76:a3:7e:9a:37:81:24:8c:78:9b:c8:
6e:8f:ee:03:35:b6:bf:0a:a9:21:2e:2e:0d:d5:55:1e:5f:d8:
7d:1d:60:1e:56:21:f3:06:3a:2b:44:1d:2b:77:6f:17:68:d5:
05:a8:64:2a:38:d2:28:34:00:9b:1e:e5:e1:94:87:c9:d0:d6:
1a:70:4c:14:f3:5b:c7:c5:92:cf:12:f3:bf:84:09:a4:b9:29:
d8:93:89:cd:97:31:48:4d:8a:4e:3c:f4:de:11:18:87:97:64:
0f:77:ef:a6:35:6b:f5:2f:13:05:55:46:2b:75:d1:36:69:eb:
18:bc:ec:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:37:57 2024 by rpki-client on console-ams.rpki-client.org