Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
File: REIuqj2u32uQIVnu2-lMqbfSKE8.mft (raw, json)
Hash identifier: GClUa9wCPVzOxU2ejyqHF84KaS9RzuizCcniy2AIMRs=
Subject key identifier: 20:A4:0F:49:A7:62:E3:7A:D2:EA:3C:4E:19:F3:72:2C:A6:EC:80:8C
Authority key identifier: 44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
Certificate issuer: /CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Certificate serial: 019355AD3EE21D2CDBA1EDA82FAE22F21144
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
Manifest number: 09A3
Signing time: Fri 22 Nov 2024 21:00:37 +0000
Manifest this update: Fri 22 Nov 2024 21:00:37 +0000
Manifest next update: Sat 23 Nov 2024 21:00:37 +0000
Files and hashes: 1: REIuqj2u32uQIVnu2-lMqbfSKE8.crl (hash: SeyJlKDLIVnM1D3PjWhKb6IBTYyBX6UcDx0/AO7orow=)
2: XZlZ_8GBedUKnRXCB745V57iRrU.roa (hash: knTSN57tIEFuuC7/UZ1UfHk3hGF0A7sk13FH8GIHzV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:ad:3e:e2:1d:2c:db:a1:ed:a8:2f:ae:22:f2:11:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Validity
Not Before: Nov 22 21:00:37 2024 GMT
Not After : Nov 23 21:00:37 2024 GMT
Subject: CN=20a40f49a762e37ad2ea3c4e19f3722ca6ec808c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:55:a3:94:56:6f:ab:a4:c6:82:7c:08:9f:01:
79:60:48:b0:62:0a:9f:a1:82:ee:01:86:a5:d1:b4:
23:fb:c0:f0:90:39:c0:f9:c4:99:1c:eb:08:79:64:
99:d9:48:c7:71:3e:47:85:d2:dd:3d:44:ce:17:d5:
6c:e6:9d:5b:5c:4a:96:50:97:9d:a4:1f:33:1b:14:
8e:ae:78:18:23:e0:60:d0:43:1e:4a:3d:83:a3:3d:
fc:f3:08:63:10:4f:43:fa:da:3c:2c:25:70:71:a4:
48:75:1b:ec:36:b6:f8:e2:d5:9b:5f:77:3d:4c:06:
cf:7a:aa:5d:11:e3:48:70:f2:53:0b:e6:ea:37:72:
2f:aa:4f:c9:e2:0f:6d:fe:3a:96:21:30:99:3b:f0:
f2:13:86:24:d1:48:e0:70:7c:43:d5:c1:9e:0e:24:
ff:14:42:b5:a2:6b:6c:65:9a:2b:ca:a6:75:82:3d:
db:db:71:3e:fa:d3:5d:2b:ef:c9:4d:a7:56:05:64:
8d:90:cb:f4:92:d2:9d:53:05:2c:45:b3:70:f3:93:
a8:ed:2d:c0:59:b3:ab:19:84:e5:bf:c2:9b:b2:cd:
e6:2b:9f:59:8b:63:ca:1a:99:85:84:8a:6a:aa:fa:
74:32:00:6c:2b:c9:04:a9:f1:e0:08:e8:8d:5a:ef:
fe:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A4:0F:49:A7:62:E3:7A:D2:EA:3C:4E:19:F3:72:2C:A6:EC:80:8C
X509v3 Authority Key Identifier:
keyid:44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:f3:d4:a7:e8:b5:5c:ac:81:c3:bf:6b:f9:84:53:07:40:87:
8b:42:9f:79:1b:be:bb:b2:e5:b3:46:20:cf:2e:45:a3:93:c2:
9a:61:05:b2:cb:19:8c:16:c4:39:0d:c3:3c:6c:91:6b:74:0b:
d2:f4:25:c8:83:2c:59:b2:55:ad:31:39:79:ea:26:9e:4f:fd:
0a:15:49:cd:31:27:4e:2b:f3:a7:fd:a5:e1:b8:5b:63:49:da:
c0:4b:f7:12:2a:c2:32:3f:ec:e1:12:09:c7:bf:c5:fe:47:3c:
75:37:86:55:f8:89:a0:d3:ac:bc:73:67:5c:47:f3:5b:6b:df:
af:78:28:ad:44:23:a2:8b:a0:b4:40:e9:34:a3:1a:ba:ca:1d:
04:64:14:77:b2:8e:5d:26:f0:71:ff:54:8e:9d:78:8b:4b:b6:
d4:cb:eb:d7:20:c6:3d:e3:be:55:29:27:e5:c1:f2:d9:93:65:
c1:d2:73:50:9e:27:7b:c0:ee:e0:89:72:a9:2e:b4:c6:e7:87:
a7:bc:a4:a2:36:68:a3:9b:5d:f0:19:cd:e1:10:55:c2:9a:06:
c2:f7:98:e3:65:9b:aa:4e:41:a3:8d:b1:0a:a3:64:cf:fe:e7:
97:8d:9d:e2:cc:9b:f2:8d:f9:5f:ea:0b:6c:98:75:45:7c:a8:
33:3b:61:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:03:50 2024 by rpki-client on console-ams.rpki-client.org