Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft
File: OpL12TZ1K68tDfcTKZSZzs-p9I0.mft (raw, json)
Hash identifier: lXkMWXb2HUeTvIo5fy6bpgO+lWTo8Wn+VkyvIi9mJfw=
Subject key identifier: 57:C2:14:EC:E1:1C:03:D0:DE:9A:50:3C:6D:AD:4A:29:D9:B7:C8:ED
Authority key identifier: 3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
Certificate issuer: /CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Certificate serial: 019359C1353510111F50B22029186FB0F31E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft
Manifest number: 1377
Signing time: Sat 23 Nov 2024 16:00:54 +0000
Manifest this update: Sat 23 Nov 2024 16:00:54 +0000
Manifest next update: Sun 24 Nov 2024 16:00:54 +0000
Files and hashes: 1: OpL12TZ1K68tDfcTKZSZzs-p9I0.crl (hash: 9hVsDY621Ky6KP1yZYP/NxqwRCEQM8Ol1VUKKWMw0JI=)
2: ul-fOt9DG8A7b-9OiqGjBFstYIo.roa (hash: BlW2kK+mveWqFVbsGd2Y7LvK0Lajn9UPNMc3Bv8KwSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:c1:35:35:10:11:1f:50:b2:20:29:18:6f:b0:f3:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Validity
Not Before: Nov 23 16:00:54 2024 GMT
Not After : Nov 24 16:00:54 2024 GMT
Subject: CN=57c214ece11c03d0de9a503c6dad4a29d9b7c8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8a:d5:ca:7a:ab:ce:15:d7:9b:ff:e4:10:5b:
8e:a0:e6:65:dc:fb:e5:d7:b2:16:54:ac:1d:0f:0d:
4b:a2:fe:16:ce:36:62:3a:47:e7:79:f2:68:5b:30:
79:c9:ca:86:a2:af:43:3c:6d:91:cc:15:78:fb:7d:
bf:c6:c2:db:16:19:27:18:ba:65:f2:22:4a:29:9a:
13:ed:b1:95:c9:7b:f5:21:90:32:94:5e:76:35:d8:
b6:91:3d:51:18:a4:1f:ba:a9:ce:51:e9:e9:1c:63:
55:1b:7b:b2:de:ed:42:01:c1:51:4b:0a:86:82:97:
72:b0:4b:9f:df:38:24:fe:cf:94:54:94:c5:0d:5f:
83:7a:37:94:09:79:16:f2:ad:31:03:b1:d4:e9:59:
51:e0:a9:e2:7f:40:8b:1b:3d:9c:fe:f2:a8:8d:b9:
0b:4e:e5:40:7c:a0:43:4d:d3:41:73:d7:97:61:7b:
b6:18:38:9d:03:ce:e8:eb:0c:0b:79:45:2e:42:39:
92:fb:eb:72:d7:3c:1e:7c:c4:41:4c:27:38:5f:12:
86:86:dd:28:3d:72:72:70:a4:63:9c:37:96:fa:fa:
3a:3b:9d:e9:a1:59:9c:4f:a2:1b:8a:72:df:b5:7b:
f0:67:94:5c:50:b4:09:04:9f:4b:46:8d:ba:12:2a:
4e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C2:14:EC:E1:1C:03:D0:DE:9A:50:3C:6D:AD:4A:29:D9:B7:C8:ED
X509v3 Authority Key Identifier:
keyid:3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:35:5e:35:8c:7e:61:99:d7:63:92:d2:a1:9a:ca:56:ce:a0:
15:e7:a9:e0:16:86:05:0f:99:ac:a5:91:23:51:1c:68:b4:97:
a3:41:4f:28:03:73:8f:0e:7c:5f:78:7e:a0:5d:32:87:b4:29:
e8:36:9a:41:c5:23:1f:29:85:ae:1d:e5:51:e8:3d:fa:1a:1b:
d4:1e:1b:42:e3:a5:98:90:ab:bc:67:e8:24:c7:80:4e:be:fe:
0a:58:dd:99:60:6c:1b:14:b2:47:91:7c:0d:de:0c:e5:e0:de:
ba:65:cf:65:96:e5:62:c1:95:1f:b3:34:13:50:68:51:95:fb:
88:7d:cd:3c:26:38:4b:1b:88:3f:5a:b1:b3:28:d7:5d:38:8c:
73:57:f5:4c:f4:89:e5:1b:19:b6:73:62:05:16:0f:9b:d7:f6:
01:ad:af:c4:5b:54:f9:ac:60:0f:6a:22:89:a8:79:82:ed:fa:
27:8a:c5:93:46:94:40:53:33:25:1b:7b:ab:b0:de:f1:c9:63:
23:30:b8:f4:68:1f:63:65:de:f7:e3:5c:56:8f:ce:0a:85:66:
6f:aa:78:37:28:ea:b6:a1:00:44:81:d9:aa:5e:ff:5a:55:c8:
12:91:24:0b:77:3a:c9:69:69:c2:30:6a:53:01:6d:20:e5:30:
10:bb:14:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 19:00:11 2024 by rpki-client on console-fra.rpki-client.org