Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json)
Hash identifier: OyHVQuW56V0758aj+UaJk6gjLJo0A5BaDdkx1r7+hLs=
Subject key identifier: DF:91:EB:C0:B0:18:DF:13:B6:AB:1A:F9:1F:43:E3:2A:9B:77:EB:00
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 01938C9C1179E9A151DC038A6EE6FBCD9FD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
Manifest number: 0AB4
Signing time: Tue 03 Dec 2024 13:00:58 +0000
Manifest this update: Tue 03 Dec 2024 13:00:58 +0000
Manifest next update: Wed 04 Dec 2024 13:00:58 +0000
Files and hashes: 1: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: piQRS66GDKWxKQX89v3BZQby8Ngai67M0yDSn2qYByM=)
2: vplB9QaXvZdBAvKS4MjnxTvwJ6E.roa (hash: yvPMTSR+Uv3uCLLaIRx+dNAU1tFdHiYBwr8qbnFc8aQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 13:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:9c:11:79:e9:a1:51:dc:03:8a:6e:e6:fb:cd:9f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Dec 3 13:00:58 2024 GMT
Not After : Dec 4 13:00:58 2024 GMT
Subject: CN=df91ebc0b018df13b6ab1af91f43e32a9b77eb00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3b:4a:fc:8f:99:c3:c2:9c:d3:e3:b5:d0:8a:
c8:e7:9a:38:73:48:e8:16:9f:e4:94:8a:6a:b0:48:
f5:60:60:6b:35:bb:e9:72:b4:e1:96:95:81:ac:ed:
70:39:fb:36:fd:53:6b:95:f3:8e:dd:f6:18:e9:41:
7a:2a:90:f3:9e:04:0a:a2:9b:84:dc:12:53:fd:bd:
96:4a:16:ef:50:bc:e8:99:60:b2:e0:ec:09:d4:35:
6b:00:76:7e:95:91:1f:7b:11:97:45:23:59:ec:65:
bb:e3:84:99:4e:ac:5b:ec:42:90:83:b4:6d:c6:5d:
01:4c:40:0c:b9:56:92:97:72:5e:2b:ef:02:83:84:
b3:57:32:dd:89:e6:31:5d:c9:38:0e:0b:2e:14:af:
27:11:9e:7e:aa:13:10:19:a8:a1:57:a8:58:71:2e:
34:3f:c6:7c:0b:cd:a7:3c:a1:a0:94:19:76:cf:48:
62:3f:d5:13:9a:13:a6:1d:68:29:91:2f:89:8c:eb:
23:a2:a8:e6:65:59:20:ce:bd:ff:37:9c:0d:93:7b:
6c:1d:7b:4e:38:71:e9:d7:f1:2e:bd:b7:cc:8f:a7:
2c:5a:ee:c7:55:69:19:e1:2b:84:63:df:98:ad:09:
78:27:9f:23:09:c2:84:80:77:d0:bb:f2:2a:be:a7:
1e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:91:EB:C0:B0:18:DF:13:B6:AB:1A:F9:1F:43:E3:2A:9B:77:EB:00
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:62:8b:dd:f4:6f:77:de:77:18:c6:00:e0:2f:cb:c5:56:79:
21:92:db:a6:b0:41:6b:b8:10:91:7f:d6:2b:08:56:d9:ce:c5:
d5:02:41:6f:b7:65:ac:26:66:f1:3a:19:9d:c2:4c:33:19:41:
8d:c0:75:e2:e1:93:f9:50:e2:e7:2a:38:ca:aa:6c:d3:24:cb:
6a:26:87:5f:9e:c1:57:65:76:c0:f8:f1:8c:12:5c:42:ea:8c:
d1:18:59:50:a7:05:32:52:61:81:15:7e:41:25:ae:38:0f:68:
a8:ec:02:df:33:fb:75:8b:47:6e:f5:2d:ac:8e:a1:bf:69:06:
44:e2:bd:6b:33:e8:dd:e8:cc:38:5b:56:57:8c:07:7a:7f:00:
48:fd:63:28:26:ba:88:e4:93:58:6f:e4:28:1b:43:39:a1:d2:
79:c7:76:07:a7:78:02:4d:33:fa:a6:42:7b:56:5c:6f:99:49:
c0:fd:cf:01:18:af:9d:69:ec:14:69:c8:0b:27:41:14:0c:72:
6e:2e:bd:d0:53:ae:7d:ad:f9:4b:fb:e2:09:81:e3:f0:f0:fa:
b4:b1:c7:0e:76:6f:8f:1d:b3:05:ed:c7:53:2d:a2:a7:ea:ad:
8a:04:36:1f:28:c4:d6:fb:09:ad:60:cb:ed:73:a1:98:20:86:
56:ba:18:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 17:32:44 2024 by rpki-client on console-ams.rpki-client.org