Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
File: OJDnpFSaVx9otoja1PXO2OUpBos.mft (raw, json)
Hash identifier: DSCLpzZlIAtIxJYDHMgIlTffZYwbOSoeLXIQ2pSFI30=
Subject key identifier: 43:F7:B1:56:B2:A7:59:00:73:12:97:E2:F9:EC:A6:9A:20:A7:CD:FD
Authority key identifier: 38:90:E7:A4:54:9A:57:1F:68:B6:88:DA:D4:F5:CE:D8:E5:29:06:8B
Certificate issuer: /CN=3890e7a4549a571f68b688dad4f5ced8e529068b
Certificate serial: 01936AB45514CA14D99B5EB760D6D2BD0085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 23:00:23 +0000
Manifest this update: Tue 26 Nov 2024 23:00:23 +0000
Manifest next update: Wed 27 Nov 2024 23:00:23 +0000
Files and hashes: 1: OJDnpFSaVx9otoja1PXO2OUpBos.crl (hash: TzTvhPncSbJ6jk7oOIpnuDh0d9z8K7Dvd6pF67l2Bw8=)
2: S9g7Vzh1P2FMifJvSn439KZG27g.roa (hash: v15MkXapqMIIz2ocPmFrHKam9nmEjR38xTT54Tkaxq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:55:14:ca:14:d9:9b:5e:b7:60:d6:d2:bd:00:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3890e7a4549a571f68b688dad4f5ced8e529068b
Validity
Not Before: Nov 26 23:00:23 2024 GMT
Not After : Nov 27 23:00:23 2024 GMT
Subject: CN=43f7b156b2a75900731297e2f9eca69a20a7cdfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:0d:47:4f:7f:1a:61:bb:77:86:98:66:b1:
91:1b:6a:cf:81:f3:83:67:fe:4c:8e:55:c5:61:39:
c0:25:b4:73:94:40:f8:dd:8a:9e:95:80:4d:b3:ae:
33:18:75:da:e9:80:a3:cb:8f:51:40:dd:1b:a5:0a:
35:11:90:6a:9f:42:ab:dd:89:8b:75:02:53:4a:17:
4f:f3:44:53:21:8c:ed:ac:77:a8:c7:e5:43:93:bb:
96:11:89:1f:ec:f5:f0:04:9a:e0:c4:f3:25:31:9d:
14:0c:6b:50:9d:63:3f:16:ab:12:b7:12:14:39:12:
8a:9a:31:54:14:bb:72:3e:74:7e:5c:1d:5c:73:3b:
9d:98:f6:ce:94:ab:a6:04:1c:ce:7c:f5:bf:45:b0:
f1:6d:cc:18:cd:12:37:23:0e:1e:7e:68:12:60:b4:
06:9a:ce:61:bf:97:d5:a2:72:45:d7:57:19:bd:2c:
a6:e3:0e:06:de:4a:f1:12:5a:8e:ca:8e:ef:1d:ed:
df:45:67:82:47:8e:28:bc:8f:47:41:fc:c3:35:24:
5f:49:6f:60:9b:bd:0e:95:d6:4a:58:52:d0:a5:b6:
89:e8:d1:9b:94:0e:91:84:cd:33:d0:08:83:f0:69:
34:a6:88:d5:13:51:7a:88:03:ed:9f:d6:cf:a8:82:
8f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F7:B1:56:B2:A7:59:00:73:12:97:E2:F9:EC:A6:9A:20:A7:CD:FD
X509v3 Authority Key Identifier:
keyid:38:90:E7:A4:54:9A:57:1F:68:B6:88:DA:D4:F5:CE:D8:E5:29:06:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:c0:50:15:98:9b:3c:3c:a2:82:a9:d5:f3:6f:5b:df:a0:4b:
5f:e3:26:8a:59:a9:e2:0c:5f:1d:9d:77:d3:d6:fa:34:fa:57:
0d:40:e0:70:50:88:a4:c1:55:d0:36:e1:b0:a0:7e:ca:c1:d0:
a6:7e:66:e0:92:15:09:85:4f:2c:f9:76:3f:e7:75:04:f7:14:
05:f8:22:c4:db:ec:fe:59:bb:53:6f:2b:6d:ce:ca:97:c8:7e:
f6:a8:64:31:9e:f4:67:e3:05:8d:89:9c:49:f3:a9:61:c2:d0:
61:5d:e8:57:d7:5a:c2:b2:df:ac:58:38:7d:39:eb:62:3c:3b:
c4:0b:2e:6b:6d:8b:04:73:20:bf:6d:da:1d:25:91:ee:a6:35:
b0:4c:4f:1a:67:02:f7:31:1f:b1:6b:e5:bc:f1:b9:05:f1:c6:
9e:20:1d:3b:e6:92:0e:be:39:8b:7b:04:85:d8:e9:7f:3b:8c:
fd:4a:a8:53:4a:e7:64:50:20:ac:45:1f:13:d0:30:a9:b9:27:
2f:46:09:ed:20:1c:bc:93:05:3b:e7:ab:0e:68:03:ab:e8:50:
69:17:38:8e:ac:4f:18:d8:de:69:aa:34:14:bb:17:c0:e9:9f:
1b:27:76:e1:15:ee:f4:a1:77:04:fd:54:4d:39:bf:df:c9:1a:
5f:a3:06:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:41:06 2024 by rpki-client on console-fra.rpki-client.org