Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: EVF2bILD3zDEgCrZ5oq2U8+RxOD8UrT0I8O61dqTFdg=
Subject key identifier: 47:B4:55:14:24:E0:B8:2E:3C:F3:87:38:9F:10:8E:13:A0:F5:42:63
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 0193644468B8DC70DF48524021DD19A1F7FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 1377
Signing time: Mon 25 Nov 2024 17:00:24 +0000
Manifest this update: Mon 25 Nov 2024 17:00:24 +0000
Manifest next update: Tue 26 Nov 2024 17:00:24 +0000
Files and hashes: 1: DLmZcVJPpBJV2sVGk13YZbfAsQM.roa (hash: UPrLveATd5V16X20qQsW1mNFiRpiWWQI8/n/xkX0IY0=)
2: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: Xsl2JytKZX4KvvNHei+ZSqecjQ2TQXH1ZZl7atQ7XX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:44:68:b8:dc:70:df:48:52:40:21:dd:19:a1:f7:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Nov 25 17:00:24 2024 GMT
Not After : Nov 26 17:00:24 2024 GMT
Subject: CN=47b4551424e0b82e3cf387389f108e13a0f54263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b6:77:51:de:6c:46:63:f0:cf:dc:00:5e:f8:
0a:0c:07:e2:cd:e7:1a:76:e4:4d:ae:d5:30:cd:55:
cd:d8:c7:ea:b8:b0:39:45:7c:e1:7e:1e:bf:75:c0:
75:31:4e:c0:25:f4:e0:c3:89:84:38:c6:ef:5d:db:
16:24:05:ef:b2:60:17:d4:c4:a8:fc:a9:0e:e7:a8:
88:9b:62:b6:a3:5a:cd:d3:c2:ce:f3:a0:03:5a:6a:
63:b9:e1:df:af:61:eb:ef:22:68:50:07:67:3f:03:
8e:3c:bd:88:cb:62:0e:d0:72:b4:5f:50:b5:15:5c:
c1:88:75:71:b1:5e:7d:b5:80:8c:83:35:db:07:d6:
3e:e1:1c:d3:06:1d:5d:6e:10:4e:4d:57:64:84:a2:
da:b3:f2:b4:48:ed:2e:d5:52:2a:e5:48:c8:1a:0d:
d7:e0:a6:a8:2c:84:96:f1:93:c7:e3:4a:25:11:1f:
4b:e9:b7:30:73:19:34:d6:06:b2:38:5f:f4:39:c4:
de:78:0e:cb:53:91:37:52:d5:09:a4:3f:ee:19:2c:
7e:30:49:03:47:9c:77:bd:c3:8f:a0:0f:ed:b3:87:
fe:00:5e:a8:7e:7a:b4:93:c7:0f:b2:d0:67:61:80:
f6:f0:38:f2:0d:13:ba:22:a7:a7:f8:a7:73:4d:11:
d1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B4:55:14:24:E0:B8:2E:3C:F3:87:38:9F:10:8E:13:A0:F5:42:63
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:9f:6c:22:e7:0f:c3:0c:3c:d9:4f:ca:57:17:58:87:66:e5:
b6:a1:77:47:dd:22:a0:68:2d:06:b8:35:06:d0:4e:d5:75:a6:
37:4c:ca:07:d7:e2:9b:90:38:74:d6:09:bc:a2:f4:c8:b1:0d:
9c:24:d7:23:9f:49:e5:53:ce:27:d5:28:ee:c8:aa:ea:b9:5d:
ca:02:1a:93:fd:98:de:20:35:95:b3:29:79:d6:58:a7:90:2f:
87:0c:0a:2d:bb:7d:c6:25:1b:fd:00:d1:92:8e:b1:af:6d:61:
51:2d:a2:00:cb:f7:c9:fd:6e:48:e5:e8:9d:f4:fd:9b:65:55:
41:af:29:2c:e0:d8:3c:7f:ee:32:b6:22:e3:9d:b7:cf:9c:a1:
e0:bb:31:2a:25:0a:f2:90:d8:07:9a:23:f9:e1:0f:bb:37:97:
aa:fa:72:e7:64:32:fc:cf:ae:80:3b:d1:00:9a:b1:63:30:6b:
9d:7d:88:c7:e3:4c:a9:b5:ff:ff:73:76:ce:ae:8e:d2:2e:45:
d9:18:f8:dd:ed:5e:bd:d3:2c:58:85:c6:51:3a:3f:f7:15:34:
b8:86:60:6f:0b:b5:50:eb:6a:ce:fb:ce:cb:c0:b9:54:d3:00:
72:ba:b6:b2:fb:35:c2:3b:f4:57:0d:8a:81:3d:97:6a:0b:84:
84:91:a6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:08:49 2024 by rpki-client on console-ams.rpki-client.org