Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
File: mKUzMIdAu70he_adzpCz9UEghFc.mft (raw, json)
Hash identifier: wCfosHwvuqparWRoGkVDFbooxPcPv1RwZ5N2Iq7tXZE=
Subject key identifier: 5A:35:01:8D:B9:27:1D:70:FF:C9:5A:1F:75:C7:C5:FF:6E:CA:6A:C9
Authority key identifier: 98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
Certificate issuer: /CN=98a533308740bbbd217bf69dce90b3f541208457
Certificate serial: 01935319CDF3D3954863CC29CF0AAFDCDA52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
Manifest number: 1371
Signing time: Fri 22 Nov 2024 09:00:20 +0000
Manifest this update: Fri 22 Nov 2024 09:00:20 +0000
Manifest next update: Sat 23 Nov 2024 09:00:20 +0000
Files and hashes: 1: PJiX8lGaCywCSJg9obEeKowBMxc.roa (hash: iTlA9ES4WoSbt7R0h/pb8YI/UEBgKq5pg+m+D4nW0tY=)
2: QUETcbVecVuAGuX_LUV8Z0Cyw3s.roa (hash: piqAxhBMnadJrfXJRS0oUBgKIPRgBXXB6K46D898HbQ=)
3: mKUzMIdAu70he_adzpCz9UEghFc.crl (hash: YcAJaua5qCzKDkgO5FPQcaVLmp0SI94Mnp8FfIO48Bo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:19:cd:f3:d3:95:48:63:cc:29:cf:0a:af:dc:da:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a533308740bbbd217bf69dce90b3f541208457
Validity
Not Before: Nov 22 09:00:20 2024 GMT
Not After : Nov 23 09:00:20 2024 GMT
Subject: CN=5a35018db9271d70ffc95a1f75c7c5ff6eca6ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5e:28:60:55:2e:30:03:19:c9:14:7d:0a:6a:
2a:27:2c:1b:17:a2:fd:89:ec:4e:62:5f:72:2c:f8:
bf:c9:80:8b:06:75:b9:d3:dc:f0:43:56:75:19:f4:
0f:6f:82:ee:16:0f:4e:ee:17:4c:78:7e:b8:be:f4:
bd:1a:3c:bc:7c:b6:07:6c:14:6c:87:fb:c4:e6:b3:
2b:dd:78:cd:34:c4:d3:28:f4:c6:0d:ba:c7:87:55:
fe:92:0b:86:47:dc:d4:e2:74:31:7d:f3:a7:db:1a:
78:96:e6:c6:de:18:52:d2:20:a7:8f:3a:a2:ff:96:
85:64:3e:76:39:70:ff:0e:7b:29:c2:08:8a:eb:81:
70:f9:73:fa:be:4d:11:e6:e4:87:a9:e2:54:d8:1f:
ea:f0:dd:37:48:21:bd:33:4e:bb:45:6a:07:54:0b:
ed:5b:01:bb:0e:9d:2c:16:38:66:c4:ec:61:cc:ba:
28:c2:8e:47:74:b4:9e:4d:2d:6e:da:b9:41:73:6b:
1b:bf:21:16:08:bd:c9:04:52:5f:94:36:91:28:65:
03:a9:42:d3:0e:9a:23:54:0c:b1:b5:99:f4:c8:01:
f9:a8:20:88:7c:86:69:44:fb:04:5c:a4:44:e1:6a:
0b:6a:11:fb:a2:4a:00:e1:97:f1:65:55:77:30:11:
a6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:35:01:8D:B9:27:1D:70:FF:C9:5A:1F:75:C7:C5:FF:6E:CA:6A:C9
X509v3 Authority Key Identifier:
keyid:98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:42:29:20:2a:1d:1d:14:d8:58:9c:ef:04:63:71:48:72:93:
c1:6e:38:c0:2e:34:01:12:eb:b9:37:85:b8:b5:ba:0d:a4:e6:
6f:8c:36:da:79:0f:48:bf:33:84:6f:15:2b:96:60:66:c5:33:
b8:be:e6:7f:f3:df:c2:61:a9:9b:38:4a:1f:72:69:d8:c0:57:
29:cd:1d:44:15:45:25:7f:e4:ab:91:ec:4e:84:20:83:71:65:
95:69:45:c4:7c:3e:e8:98:a9:af:9e:a1:d3:f5:c9:e8:0c:da:
89:07:d4:d6:a4:bf:11:24:b0:20:da:98:bd:1c:a5:c9:ba:78:
a3:99:09:ce:9c:9d:be:06:a2:21:a2:77:2e:86:78:4a:a7:87:
3e:fc:f4:62:a0:f1:6c:a7:6d:34:cb:03:9a:f5:d6:4b:8d:6b:
be:31:b5:52:1d:26:79:c1:9d:b8:f6:ab:c0:02:16:d7:7f:79:
2e:0c:43:93:b9:c1:44:99:1c:ba:ee:0b:4c:34:60:50:67:38:
24:ec:84:0a:b1:21:12:47:19:33:a5:4f:6d:89:5b:eb:02:41:
21:2d:ea:8b:6a:4d:b9:01:2e:42:46:28:22:6f:34:3a:c2:f0:
3f:3c:e9:19:a5:e0:c8:8c:3f:f8:af:96:1f:b1:4c:34:b3:9b:
6b:07:db:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:12:05 2024 by rpki-client on console-fra.rpki-client.org