Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
File: ChCKKMcHsOXCwubCE31Fh5EUu5I.mft (raw, json)
Hash identifier: yrMwYnDUN2XISje8fPreZvq0QwcvUxF/qimO+W0pMio=
Subject key identifier: 6C:B6:6A:86:E3:F1:C8:20:E6:7F:89:62:9B:B9:5E:C5:1B:58:DC:5A
Authority key identifier: 0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
Certificate issuer: /CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Certificate serial: 01935688CE3AC923D976CB343A581776A816
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
Manifest number: 056A
Signing time: Sat 23 Nov 2024 01:00:26 +0000
Manifest this update: Sat 23 Nov 2024 01:00:26 +0000
Manifest next update: Sun 24 Nov 2024 01:00:26 +0000
Files and hashes: 1: ChCKKMcHsOXCwubCE31Fh5EUu5I.crl (hash: weg3rb202Cp8mXE3JAHJo2cCvX+jZ6VBZott/G6AqV0=)
2: Jt0Zox4TVq6eTdr_aHK5XmDBpkc.roa (hash: sxHUKq/HBPI3LK1mqa+1qHAcM5ocqZS9m1aAc2kAv6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:ce:3a:c9:23:d9:76:cb:34:3a:58:17:76:a8:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Validity
Not Before: Nov 23 01:00:26 2024 GMT
Not After : Nov 24 01:00:26 2024 GMT
Subject: CN=6cb66a86e3f1c820e67f89629bb95ec51b58dc5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:65:d9:a1:90:1d:6a:50:7a:c5:22:22:9d:e6:
b7:05:8f:45:ba:2c:f7:88:09:da:4d:5c:31:f0:51:
64:bc:d4:77:00:be:63:26:7d:c5:eb:7e:a1:5a:6e:
fa:29:a0:75:2c:1f:8e:77:56:b0:91:f9:68:d2:05:
25:f4:d6:cb:a4:3a:44:90:ce:cd:ed:de:33:79:5e:
7f:b9:2d:c7:11:05:9d:de:a6:3d:ff:fb:35:ba:62:
0d:c9:fa:d0:20:46:f6:c6:03:70:d5:c8:a4:08:8d:
34:87:c1:97:e9:51:9b:ff:cc:63:a1:dc:5d:ce:51:
83:82:98:f8:ad:24:88:ac:51:e5:49:81:59:a5:3d:
04:c6:df:3e:a4:d5:d4:17:fd:dd:cd:5c:e4:8e:64:
82:8f:d0:5c:84:62:38:c5:83:79:a3:34:61:fa:fb:
2b:5c:c0:09:05:bb:b8:7f:09:51:90:c6:3d:12:0b:
78:f0:2f:4c:46:e9:f1:9b:6f:ad:ee:b9:fb:e1:a8:
2e:c1:f7:fd:51:07:7e:89:41:7a:d7:c8:d7:b1:f5:
21:82:8b:3b:cd:e9:ec:91:c1:f3:89:46:9c:fb:bd:
9e:be:2e:c1:cb:25:f3:40:1e:ba:70:2b:d8:57:0c:
5d:af:1e:7d:a6:3e:54:e5:ef:06:16:b5:29:2a:41:
eb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B6:6A:86:E3:F1:C8:20:E6:7F:89:62:9B:B9:5E:C5:1B:58:DC:5A
X509v3 Authority Key Identifier:
keyid:0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:e1:3b:b8:b3:38:c9:f8:9e:32:b7:37:31:44:55:50:44:19:
ee:88:3b:0c:21:c3:5e:9c:8a:df:13:6a:43:89:47:4c:b5:14:
b6:fc:d3:e1:55:1b:c1:5f:21:94:e4:33:61:e3:e3:25:cd:61:
95:c6:32:be:a7:49:53:ee:4d:4c:7e:1d:29:6c:b3:ba:68:f0:
0d:c1:f0:58:14:9c:24:24:be:fc:49:a1:35:72:22:0a:77:a8:
52:c6:3e:d1:30:4c:38:ae:06:83:19:8f:9e:e5:12:f5:a7:61:
4a:07:34:1f:69:56:c6:4e:7f:6c:df:88:c0:a1:39:f8:53:96:
65:39:17:db:fa:fb:af:38:ca:d8:cf:35:91:fe:91:75:9f:b8:
f5:d8:83:a5:e0:3f:fd:d3:82:02:e0:02:6d:27:0d:46:69:f4:
6f:c4:bc:0a:8e:93:bc:3e:02:5d:16:22:e8:70:aa:52:75:a7:
c0:f2:4a:c0:5a:7c:fb:dc:85:32:7e:46:65:52:ac:b1:04:c4:
03:f2:aa:67:05:c7:71:ff:c3:db:35:05:b0:02:ca:0f:b8:2c:
d0:89:1d:bc:e4:7b:8b:eb:7d:2b:39:cc:78:ef:38:a5:11:df:
89:58:78:f3:9f:9b:02:0b:7c:44:18:74:29:cc:79:7b:16:0a:
f9:78:3b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:12 2024 by rpki-client on console-ams.rpki-client.org