Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json)
Hash identifier: so0caAoIu4givvcFOUClr3pKQrKYbWerM7kYDbBw7FU=
Subject key identifier: 63:F4:BE:A3:61:46:08:29:33:A8:56:C3:56:CC:46:E9:58:1A:84:06
Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Certificate serial: 0193553F88A1DC843A879E784ACA2E4E6801
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
Manifest number: 53
Signing time: Fri 22 Nov 2024 19:00:47 +0000
Manifest this update: Fri 22 Nov 2024 19:00:47 +0000
Manifest next update: Sat 23 Nov 2024 19:00:47 +0000
Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: txliu8HDRn/GEsAQiYQS1tWA1p4pXKxEWaHteAz8G/4=)
2: 4NBIIOLYrf7Qr3KNbO40jE-NYdY.roa (hash: fjamdwKMk9gomKqr+pqaGQ3E3SdYA1RLZz4PRfadfZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:3f:88:a1:dc:84:3a:87:9e:78:4a:ca:2e:4e:68:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Validity
Not Before: Nov 22 19:00:47 2024 GMT
Not After : Nov 23 19:00:47 2024 GMT
Subject: CN=63f4bea36146082933a856c356cc46e9581a8406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:05:2c:49:de:37:30:2d:77:13:95:64:85:e9:
6f:f3:03:af:d1:2f:9e:ad:d4:ee:79:d5:ef:9b:b2:
9a:df:5d:ea:0c:1f:f4:ab:42:4f:5c:5f:df:83:90:
e8:67:61:7d:6a:fd:77:00:a7:70:43:eb:9d:86:76:
db:a8:68:27:84:87:6a:e4:83:74:87:37:9b:ef:45:
dd:60:ee:31:a2:ff:fe:f1:26:7b:da:c4:80:ba:93:
88:69:cb:b1:e0:c4:ba:33:5d:14:90:de:2c:eb:f3:
e3:b2:1a:04:ec:d4:c0:a6:bc:7d:db:2a:a0:ef:e6:
55:64:10:ad:9e:d9:8a:21:1a:2b:f4:70:bf:c3:e0:
11:0e:6f:48:e8:8f:cc:1f:79:73:12:d2:7d:01:f1:
e3:30:02:33:68:3e:9b:66:af:8e:c3:6d:ad:f3:c0:
a4:b2:a5:dd:73:f4:85:a6:ff:62:39:eb:8b:37:e9:
8f:8d:0e:78:ee:c9:d2:6c:c1:f0:a0:00:ba:08:00:
cf:ea:a7:0f:77:43:0c:f2:49:1b:23:d9:77:5f:e9:
71:45:65:0b:c8:db:d5:fc:01:47:72:e3:a4:88:99:
68:29:a2:2a:cd:a8:c5:0f:e3:ee:17:9f:06:bf:d2:
22:df:74:f5:82:5b:26:2c:66:e2:59:6c:18:e8:65:
c6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F4:BE:A3:61:46:08:29:33:A8:56:C3:56:CC:46:E9:58:1A:84:06
X509v3 Authority Key Identifier:
keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:70:ab:e0:29:99:8a:86:a1:c5:0b:15:64:87:b6:19:f9:31:
59:85:fc:cb:1b:56:b0:56:5f:00:e5:29:83:32:43:d3:bb:5e:
41:04:15:5b:82:4a:fe:b7:1c:b4:1e:ae:90:d2:8e:e9:89:ec:
5c:9b:2f:b2:ba:ec:f7:3e:db:3c:d6:a7:41:4e:8d:9a:63:56:
55:3a:11:bd:cb:3c:c8:0c:06:e0:b3:90:c9:05:dd:98:47:64:
70:68:fa:10:49:ae:e0:82:f3:44:50:de:bb:14:4e:01:f9:cc:
12:7a:3b:1c:22:68:e8:8a:75:83:7a:e2:f4:b4:95:da:c8:da:
aa:23:94:57:12:21:c1:f2:ff:03:06:3c:e0:d4:9c:2b:51:c3:
36:17:ed:5a:6d:d1:50:63:8f:f8:cf:9b:5c:2b:01:9a:81:30:
c4:bc:51:65:ac:bb:bc:f2:fb:09:97:b1:90:fe:78:eb:87:3b:
a2:1c:82:02:af:2a:f4:02:d8:e8:70:42:af:55:03:a3:95:b4:
ec:4e:b9:60:98:84:3b:89:fe:fa:4b:c4:4d:df:c1:cc:29:1d:
46:6a:e7:35:f9:cd:ce:d3:11:54:40:75:87:af:f8:ee:9a:87:
eb:24:a1:52:f7:79:5b:3c:ef:95:40:d6:c0:f4:89:9b:f5:56:
76:e7:3b:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:51:36 2024 by rpki-client on console-fra.rpki-client.org