Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json)
Hash identifier: uFvPnHda433S7laswvNwcZ2iLFdRss1yipHNmCJ3eoM=
Subject key identifier: 4D:FB:10:26:CE:FF:AE:55:FE:E1:E6:5E:22:DF:28:66:CA:AD:D1:72
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 019355AD2ABB001AC1125170E90E25F3A136
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
Manifest number: 1370
Signing time: Fri 22 Nov 2024 21:00:32 +0000
Manifest this update: Fri 22 Nov 2024 21:00:32 +0000
Manifest next update: Sat 23 Nov 2024 21:00:32 +0000
Files and hashes: 1: JlIRNB83GazXS6JxkeLbEOwWnhI.roa (hash: tWRfxWFZDX9H9BIznQYKYNyO4Z+fsKTH0Sqv0jhzSZI=)
2: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: R50/2obRjk5QRFuTdN4xo4CGEn6dAkkwOK6X8lLF98U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:ad:2a:bb:00:1a:c1:12:51:70:e9:0e:25:f3:a1:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Nov 22 21:00:32 2024 GMT
Not After : Nov 23 21:00:32 2024 GMT
Subject: CN=4dfb1026ceffae55fee1e65e22df2866caadd172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1e:bf:af:0f:4e:03:8a:21:e8:b1:ff:79:6d:
0d:44:a3:79:11:80:45:7d:9c:d7:0d:91:3b:b0:5e:
99:d8:1c:35:a6:9d:61:c1:aa:b9:d3:a1:72:3e:b6:
23:ed:ff:cc:1d:fa:69:2a:44:c9:a1:21:15:f0:a2:
fa:89:4a:b5:13:47:f6:2e:9b:f9:8c:68:ad:51:1a:
77:02:65:32:0d:b3:04:d5:4b:fe:52:59:b0:38:a4:
54:2d:8a:b2:3e:57:5b:2d:4d:b6:7a:2b:f7:eb:de:
b9:46:9c:f2:50:9e:b8:b7:a0:de:65:b7:28:d4:d4:
08:51:2a:64:9a:09:8c:f3:27:93:e9:28:74:f0:d5:
49:12:22:12:8f:7c:d9:16:d3:e3:e4:a2:0f:fd:ba:
7d:09:a1:51:54:2b:59:32:22:1f:15:bc:ec:18:1d:
33:35:46:ef:98:ae:17:3c:78:ae:9c:16:31:f5:16:
8c:3d:f8:c3:ca:72:92:fc:4f:1e:96:5c:b8:1f:32:
f3:d9:fd:0c:9e:30:1b:90:d4:fb:24:23:99:05:b3:
d9:84:23:95:84:68:4b:bb:26:e5:09:4b:51:ae:43:
b1:d0:76:73:e7:52:cf:a2:7f:19:d8:a6:85:9f:9d:
88:58:45:47:0f:00:aa:7d:c0:cf:56:5c:f6:8b:d7:
2e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:FB:10:26:CE:FF:AE:55:FE:E1:E6:5E:22:DF:28:66:CA:AD:D1:72
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:c8:4b:0a:c5:4b:68:cf:b0:f4:c1:db:8f:5c:4f:c5:fa:c7:
50:df:d7:38:83:78:7b:ca:37:b3:d1:31:d2:e4:69:c6:27:d0:
76:e3:cd:a1:b9:ed:1b:46:91:af:a2:aa:91:c8:38:8c:7e:82:
a9:c0:02:c4:06:6b:c4:0a:ab:44:67:af:65:9b:41:e1:30:22:
b3:6b:19:58:b3:54:e4:71:fb:8f:d4:50:78:c9:af:6e:51:28:
92:9c:14:1b:f8:fc:71:74:48:5d:a6:bb:3c:31:c6:59:e2:9b:
6c:cb:9c:ed:fa:82:02:09:89:62:57:0c:c7:1c:14:3d:ec:90:
ac:cd:b5:d9:5d:d7:15:fc:e0:35:db:69:d4:1a:1b:bc:20:3b:
0c:8d:a9:19:ff:48:c8:eb:78:62:3d:d5:2b:8e:ad:de:cd:dd:
be:09:45:1a:6e:cb:0a:8a:e6:e1:84:03:68:40:94:ac:18:15:
aa:74:da:e8:07:ab:a6:13:42:52:bd:f2:e6:88:72:16:fd:b1:
66:c8:e1:51:78:2e:23:ce:34:23:bc:1f:ec:bc:06:52:d0:72:
d6:04:e4:9a:59:da:d4:5d:34:b9:0d:b7:a1:cd:f7:92:be:7c:
2d:ae:ba:34:88:fa:53:9f:b0:f6:f9:b3:03:58:07:e2:19:e6:
9b:8a:dc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:02:41 2024 by rpki-client on console-ams.rpki-client.org