Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
File: _32KebrU-YPQxJiVr1DqigPrxw0.mft (raw, json)
Hash identifier: Vglzuxr4zwWwkslSOXl5Dea1fGvD7qqhmvLV2e+X02s=
Subject key identifier: 01:63:83:23:F8:42:76:A6:2A:03:D5:F0:2A:3E:25:7D:C5:36:EB:29
Authority key identifier: FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
Certificate issuer: /CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Certificate serial: 019365204B67A663ED3765566CC290AFF987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
Manifest number: 0A1E
Signing time: Mon 25 Nov 2024 21:00:35 +0000
Manifest this update: Mon 25 Nov 2024 21:00:35 +0000
Manifest next update: Tue 26 Nov 2024 21:00:35 +0000
Files and hashes: 1: DxNAubzwjQgqTVnY1tvWFVC2CPc.roa (hash: ARZ5duJ7eezg+QILX1dJZkdEvWJw+EBTMh3lg+7/bLE=)
2: _32KebrU-YPQxJiVr1DqigPrxw0.crl (hash: 3L79omI93Hzij+goG/mdtwQ0t1/mVmMicn3xB4vbb/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 21:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:65:20:4b:67:a6:63:ed:37:65:56:6c:c2:90:af:f9:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Validity
Not Before: Nov 25 21:00:35 2024 GMT
Not After : Nov 26 21:00:35 2024 GMT
Subject: CN=01638323f84276a62a03d5f02a3e257dc536eb29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e3:7d:45:ed:97:27:15:fd:15:e5:e4:e9:56:
b0:15:da:3e:e7:11:99:e7:02:e3:73:3b:86:12:82:
87:03:fc:bb:b4:71:0b:de:e6:3d:db:7a:78:82:26:
99:8a:74:21:67:77:72:90:01:7c:5e:37:66:c4:08:
14:40:61:8c:b8:61:74:5e:b2:4d:5a:32:81:eb:9b:
16:38:68:dd:57:b7:de:20:7d:db:a5:95:47:67:77:
e0:c2:cb:55:35:78:24:0d:c6:51:79:e3:03:e8:c7:
d3:c5:e2:39:b9:d2:3b:7c:6f:93:93:ca:1c:93:f1:
ce:c2:f5:17:73:66:b4:69:2c:8b:66:b3:e1:96:50:
64:69:d1:f5:38:1b:7b:78:6f:b2:b8:a9:c6:49:30:
42:8a:1f:2c:18:db:fb:06:bc:60:f0:86:fc:fc:da:
b4:81:0f:06:f3:23:66:8f:8e:3f:d8:2d:2d:c7:c3:
e9:36:b4:ed:94:89:f1:fc:0b:34:8f:59:e2:20:78:
10:cc:d8:07:22:db:b5:5c:79:3a:50:7d:c5:99:56:
72:e0:5e:55:c4:81:7c:a8:a2:a4:f7:8f:46:44:e5:
4d:fe:91:b4:f7:7f:70:65:90:8c:d5:b7:08:27:df:
11:7b:15:d7:66:83:e9:17:a5:88:48:cf:3d:c9:22:
19:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:63:83:23:F8:42:76:A6:2A:03:D5:F0:2A:3E:25:7D:C5:36:EB:29
X509v3 Authority Key Identifier:
keyid:FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:74:98:2b:12:59:ce:c9:b6:76:f1:15:64:2a:6c:64:fa:6d:
91:f2:85:5e:1d:fd:2c:12:23:8c:be:38:8f:f6:16:ec:10:91:
67:c1:9f:38:82:4e:a0:b6:0d:c5:f1:48:68:51:ed:c9:52:07:
cb:dc:c3:6c:93:ae:65:22:4e:12:66:99:bf:9d:70:c9:bf:54:
6b:36:f9:0e:24:cf:ba:6c:a5:0b:78:cd:18:78:54:0b:17:22:
7b:c7:10:34:65:81:3e:74:70:8f:e2:50:2c:1a:f8:09:5e:25:
bd:70:96:88:76:dd:26:9a:9a:50:6a:9e:44:34:20:ee:c0:11:
1a:3b:5c:b3:21:fd:e3:3e:10:f7:f0:13:ae:28:54:1c:a6:2f:
3a:e8:99:ce:ea:1a:92:3d:76:7e:9b:8d:e6:b5:61:a7:05:e2:
00:87:6b:a2:ff:1a:2a:22:0e:db:82:50:63:2c:25:1c:72:4d:
52:8f:76:57:75:09:c3:bc:a5:d8:65:b0:42:83:e0:54:0b:29:
fe:29:fa:d0:d9:5f:db:e3:2d:59:52:3f:c7:2d:d5:17:29:52:
8a:42:d7:18:91:28:19:a9:fb:17:0d:3e:17:01:17:5f:69:cc:
87:ff:00:28:b7:bb:c6:ac:ac:91:af:df:df:4e:4f:82:d7:7e:
c6:2a:a9:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 02:55:41 2024 by rpki-client on console-fra.rpki-client.org