Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: DeUWA/vA9kZvC6DP5wGmBZLUhaxGHrO/UjxKWMUtzPA=
Subject key identifier: 7A:C9:88:28:EB:CC:2A:00:88:E6:63:2C:16:6F:46:0E:5B:35:AA:17
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 0193568915AABFB998641086AF35A6955D91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 0218
Signing time: Sat 23 Nov 2024 01:00:44 +0000
Manifest this update: Sat 23 Nov 2024 01:00:44 +0000
Manifest next update: Sun 24 Nov 2024 01:00:44 +0000
Files and hashes: 1: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: 3jiku1Ws4VjxCyWjXWBf2SjQ5X08iBLKXzgm29+6j34=)
2: z4ec-dKrRrWzF_j744kk8vJe2CU.roa (hash: yzIajNr6fBdJtYNrAInkNoCcdl1WLFvt4nON8n56e/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:15:aa:bf:b9:98:64:10:86:af:35:a6:95:5d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: Nov 23 01:00:44 2024 GMT
Not After : Nov 24 01:00:44 2024 GMT
Subject: CN=7ac98828ebcc2a0088e6632c166f460e5b35aa17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3e:89:47:9e:ec:c6:0c:de:1f:58:1e:86:b7:
08:4c:10:7a:a2:9e:66:82:79:ab:1c:82:50:fd:31:
b0:f6:77:3e:94:d9:18:44:44:cf:a0:5a:0b:fb:f8:
54:73:ab:1b:69:ba:a1:94:47:06:95:b5:c8:c3:1d:
0f:4a:1d:99:eb:9e:0f:d1:ea:31:2c:69:d7:b6:49:
06:3b:9b:52:5f:e3:59:73:3b:8c:a4:b6:b2:9b:61:
22:b1:95:d7:fd:7e:75:9b:2e:5a:af:72:ca:56:2f:
47:25:b4:cb:91:73:95:69:6c:9d:78:21:38:f1:d4:
2b:6a:f8:0e:96:f6:48:57:6e:7b:a9:f7:4e:4e:3e:
9e:ab:18:0d:d3:61:b8:77:a3:4c:e5:a7:f6:cb:63:
c2:a6:b9:c2:43:d7:b6:be:57:a2:3a:82:d6:b8:dc:
a7:b1:c2:94:55:df:9c:e0:34:94:ac:6a:dd:49:ed:
19:16:c6:64:13:a9:64:0c:30:61:d9:a9:a3:4a:2e:
39:81:50:f6:53:06:1e:03:4c:12:61:66:da:df:8e:
2d:84:be:17:ed:f6:26:57:b3:5f:e4:77:27:04:72:
c7:62:1c:2b:f6:fc:14:83:6e:eb:67:c3:37:13:55:
88:89:4e:02:5e:6d:b8:9e:d1:44:df:bb:94:dd:21:
79:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C9:88:28:EB:CC:2A:00:88:E6:63:2C:16:6F:46:0E:5B:35:AA:17
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:47:81:2a:35:67:ff:df:d2:48:3d:8b:da:42:ee:98:4c:b5:
f9:45:9b:79:8b:1b:36:2a:8d:16:91:64:21:bc:c7:f6:21:77:
0d:36:8d:76:0d:5b:e3:ac:8a:ee:66:aa:c4:a3:a8:aa:ba:f8:
7b:74:f7:27:e9:84:0b:59:3b:fb:31:79:18:ca:27:a3:4f:8f:
54:44:58:e2:f8:9a:25:33:2d:97:a0:d4:b0:d8:ed:31:4a:23:
9e:64:7b:06:d2:dd:d0:30:0e:cd:03:74:81:e8:40:74:ed:3d:
c0:17:03:e2:64:f7:c8:75:68:e0:46:c4:1f:a3:2f:bc:56:c8:
3d:ff:9a:4b:32:7c:58:31:2f:34:c0:37:a5:ff:11:76:f3:25:
75:0a:b9:23:c6:ee:b6:ec:63:45:3d:ae:6c:55:a7:19:a7:4b:
b3:23:ba:a7:fb:df:61:ca:31:d4:32:77:89:2c:d1:29:26:8d:
ed:5d:25:93:cf:cf:ba:2f:50:66:fa:54:cd:7b:e6:88:bb:e4:
f8:5c:2c:ff:d7:b1:a2:36:d4:ab:08:eb:1e:18:a0:0e:b7:52:
4d:96:38:15:b9:29:ea:73:dc:9a:77:8f:e3:57:7f:c7:02:9c:
cd:b3:5b:68:8c:18:9b:54:34:20:74:33:38:6d:80:47:7f:4a:
6a:46:8f:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:56:49 2024 by rpki-client on console-fra.rpki-client.org