Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
File: yjNIUNrzcSIFIBmSKevekO8osBg.mft (raw, json)
Hash identifier: 4OcO1DLx14E1soaqI7Dp4WBdv69wHvEBIhaR4SSB5+E=
Subject key identifier: 65:CE:FC:07:F9:9D:47:78:1C:53:2E:06:19:A6:1D:47:A0:53:AE:B2
Authority key identifier: CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
Certificate issuer: /CN=ca334850daf371220520199229ebde90ef28b018
Certificate serial: 01935162E05CC5A16D2BE87DDF6C61C29095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
Manifest number: 03EA
Signing time: Fri 22 Nov 2024 01:00:54 +0000
Manifest this update: Fri 22 Nov 2024 01:00:54 +0000
Manifest next update: Sat 23 Nov 2024 01:00:54 +0000
Files and hashes: 1: yjNIUNrzcSIFIBmSKevekO8osBg.crl (hash: nfBvaHFefNURHuo48Jts5s1CCLccPgzJtcmrw0P5cyA=)
2: z0ZTq5UmLetbF76I9y9vnkX4ez8.roa (hash: j7aeW3iCCthYtnhIjU/T884xKgADzQXK5W95k92tp4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:62:e0:5c:c5:a1:6d:2b:e8:7d:df:6c:61:c2:90:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca334850daf371220520199229ebde90ef28b018
Validity
Not Before: Nov 22 01:00:54 2024 GMT
Not After : Nov 23 01:00:54 2024 GMT
Subject: CN=65cefc07f99d47781c532e0619a61d47a053aeb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c7:ca:ee:76:58:54:ad:60:a7:89:c8:28:4e:
58:66:04:59:e3:4f:c4:b6:8c:59:13:7c:16:17:8e:
d1:ca:a4:9f:cb:a1:98:2c:3b:00:8d:4c:0c:81:4f:
f3:e9:ee:cc:cd:5d:93:42:29:2e:1e:b0:01:e4:9c:
e5:ba:d9:e6:f1:d6:56:40:33:7a:ae:66:25:f5:8c:
72:ac:61:31:fd:37:e9:6d:93:49:15:20:48:a4:a6:
73:a4:83:51:38:69:d0:70:91:49:3f:fd:22:e0:a8:
29:ad:a1:95:77:4a:a2:28:1b:b3:c4:81:ec:c1:a3:
da:7d:18:08:73:2c:56:1a:d8:51:54:ce:7c:f9:a4:
11:bc:ae:c8:02:52:22:0d:2e:8d:ad:8c:32:1e:af:
a3:64:d5:7a:52:e4:7c:51:5b:77:e5:14:b3:46:77:
40:43:54:d0:06:9f:ae:33:2d:14:ba:e9:25:47:a6:
80:09:14:ae:df:76:7a:80:6e:0c:e6:9f:73:64:ff:
9a:43:a2:7f:ba:66:25:a9:3b:3e:0c:dc:df:bb:c8:
67:7f:76:35:5a:5f:70:ab:8e:bf:ab:f7:7f:ba:27:
33:39:00:db:14:2d:d4:b8:22:49:b3:ff:25:63:e9:
a2:63:ab:43:23:10:41:16:1c:a4:1b:46:b7:af:b3:
d6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:CE:FC:07:F9:9D:47:78:1C:53:2E:06:19:A6:1D:47:A0:53:AE:B2
X509v3 Authority Key Identifier:
keyid:CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:5c:7d:77:3e:fd:4b:33:ac:a9:be:a9:f0:ad:48:bc:ad:64:
60:22:62:1e:73:dd:c3:5b:fb:53:59:46:b3:3a:6d:cc:c2:4d:
37:ff:b5:54:28:02:65:fb:68:f9:2d:85:84:88:e3:62:a4:bc:
c7:50:5c:2d:74:12:b8:f7:94:1c:f6:73:6c:2b:ba:51:46:99:
8b:f0:55:23:c9:e6:1b:17:e8:4a:41:3b:19:cf:33:a1:05:37:
ce:14:1b:40:4a:74:5c:53:fe:8f:96:38:82:b9:2d:8a:7d:c0:
f9:13:b1:ea:31:fe:4f:12:d6:67:e0:7c:5a:cc:20:19:ae:54:
ea:67:97:ef:13:f6:36:32:a5:6e:30:aa:97:bd:d0:90:b9:06:
c0:ec:2f:b9:f6:d1:53:96:72:f8:a2:7b:23:cf:34:91:30:05:
87:43:31:bc:7e:9d:39:93:35:39:d8:80:71:a0:0a:e0:fa:6e:
7c:0a:a7:e6:09:c3:fd:b9:60:4b:74:f1:80:fd:b7:f6:0c:35:
b5:34:c4:a6:b8:f8:1d:66:25:aa:bb:47:ed:f5:76:72:31:9a:
36:cf:8a:eb:d1:6d:c7:fe:ba:22:f4:45:8e:63:cc:44:fc:37:
ec:c6:a3:ec:29:a2:bb:1c:71:c0:71:8b:26:73:e3:46:1a:ae:
c1:64:1b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:53:43 2024 by rpki-client on console-ams.rpki-client.org