Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: rFoW4h5xklKQWwnRLcgdAiBzXz7w2LC+YInlNnsRC3A=
Subject key identifier: 16:2A:85:71:DA:28:AA:B0:08:D9:82:3A:CE:6C:FD:07:47:5F:AD:57
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 019358E53ADB58B9CD7625CA446FF654CD01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0A56
Signing time: Sat 23 Nov 2024 12:00:37 +0000
Manifest this update: Sat 23 Nov 2024 12:00:37 +0000
Manifest next update: Sun 24 Nov 2024 12:00:37 +0000
Files and hashes: 1: 2-ENE8qCVRNGZ3Gg_9ecsLZTeHw.roa (hash: DgHOebdTTX85KX1AT/TLLstDp6ASkQmWh/lQhUNBM6k=)
2: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: kdyQ2TtzdACiul86CK2q1cqA61PvwJdLZ21krzV1nFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:e5:3a:db:58:b9:cd:76:25:ca:44:6f:f6:54:cd:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Nov 23 12:00:37 2024 GMT
Not After : Nov 24 12:00:37 2024 GMT
Subject: CN=162a8571da28aab008d9823ace6cfd07475fad57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fc:4a:3a:97:62:c6:9a:91:4f:76:f2:b2:f6:
f9:a8:2d:c1:9e:69:45:4a:84:a5:cc:28:3f:01:3b:
e9:d3:70:99:09:0b:47:9f:e1:c0:4b:9d:fa:2b:48:
77:57:4b:cb:6d:09:2f:62:aa:ff:6e:b1:cf:db:73:
c0:f5:97:7f:69:6f:05:a9:8b:ac:69:0c:18:92:cf:
0b:68:db:dd:be:72:f5:0d:12:6f:48:5b:8c:0c:7e:
7a:0e:d4:43:87:f9:cc:fe:1a:22:50:74:30:90:1e:
aa:a3:a1:24:c2:c6:ac:4b:98:31:15:ff:06:f7:1d:
3f:79:7f:bb:85:a1:92:de:f9:84:5b:eb:27:a6:b1:
57:56:c3:6f:08:b7:11:3a:a6:21:74:eb:a2:15:96:
14:38:67:63:15:8a:a7:bd:0d:cf:1a:92:0e:78:3b:
01:d5:87:7d:42:5a:79:ce:2f:ed:d4:dc:ea:17:59:
6a:e8:8e:fa:55:81:77:4a:1d:91:b2:46:e1:e6:53:
46:ba:13:78:6d:dc:9b:20:07:88:ec:48:70:2b:e0:
54:00:11:e7:24:f6:6d:19:9a:0f:f3:2c:b2:5d:dc:
03:3b:ff:2b:43:2a:cb:33:84:ce:79:9c:32:c9:88:
af:e1:5c:d6:d0:5d:6b:3f:59:19:fd:f9:dd:dc:3d:
cc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2A:85:71:DA:28:AA:B0:08:D9:82:3A:CE:6C:FD:07:47:5F:AD:57
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:3a:54:3d:fb:05:3d:3d:90:c2:4a:22:04:43:36:49:aa:4c:
5f:12:25:50:8f:c9:93:d3:d6:6c:2a:ee:d3:06:a5:4e:7f:0b:
da:99:06:a8:b8:31:5e:76:9e:0e:9e:11:f6:7a:67:f1:35:ff:
52:d0:c8:67:d8:e6:2a:ec:02:c6:5f:ce:7a:f4:36:bd:a4:5d:
21:b1:44:5f:02:0d:7b:77:96:35:46:89:eb:8d:35:e5:8c:9c:
9d:f1:51:ad:7b:30:28:78:89:36:02:98:a4:04:dd:fe:f8:3e:
87:a1:cf:6b:3f:ed:46:94:06:37:13:e3:92:97:70:58:bc:1f:
6a:84:f2:3d:2e:53:86:c5:fd:77:9a:23:f6:ce:5c:ff:8e:e1:
98:6f:e2:69:16:89:26:9b:95:c5:1d:b1:ca:aa:12:12:f3:b2:
51:11:6a:8f:83:2c:68:4e:ea:0b:a4:b7:b9:37:f7:06:9c:9a:
c2:27:7c:16:b4:cb:48:c5:81:9c:b0:9e:56:40:f1:f5:7f:c1:
16:80:fb:c0:b0:0a:81:82:a7:a0:e4:5b:7d:10:f0:e9:0f:0e:
71:c9:79:1e:b1:52:9c:71:08:32:aa:7e:c8:e6:66:a7:8f:94:
b5:21:3c:71:0d:10:b4:fc:92:d6:71:a3:fe:ae:f2:c1:8a:40:
6b:67:cd:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 14:51:56 2024 by rpki-client on console-ams.rpki-client.org