Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
File: TnzINx7SS6z2esqLkCzucGr8Yks.mft (raw, json)
Hash identifier: jjqXsnz+ckmlQW3yUzrSB11eVQE6aVAkfBB8PA/foQE=
Subject key identifier: 9D:47:E1:8B:48:9C:07:06:C0:00:BF:D6:A0:9F:74:91:08:B8:07:19
Authority key identifier: 4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B
Certificate issuer: /CN=4e7cc8371ed24bacf67aca8b902cee706afc624b
Certificate serial: 019357D2D3E0BBE36BA2385B3A00C7F63A91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 07:00:54 +0000
Manifest this update: Sat 23 Nov 2024 07:00:54 +0000
Manifest next update: Sun 24 Nov 2024 07:00:54 +0000
Files and hashes: 1: TnzINx7SS6z2esqLkCzucGr8Yks.crl (hash: 8jtDOlVzljWBEG6j24+AE5ubZgQHRqUXkUyAM6zePJ4=)
2: f6XB5Ch2jADZVgESlSmgGS8dJTc.roa (hash: rTtT9BvV+RAH01aNnkTDs8kyIjj31Pd1YTHnEs6kqTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:d3:e0:bb:e3:6b:a2:38:5b:3a:00:c7:f6:3a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e7cc8371ed24bacf67aca8b902cee706afc624b
Validity
Not Before: Nov 23 07:00:54 2024 GMT
Not After : Nov 24 07:00:54 2024 GMT
Subject: CN=9d47e18b489c0706c000bfd6a09f749108b80719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4c:fa:34:a5:e5:cd:64:73:dc:a8:56:d0:e8:
69:ab:1b:27:e4:6a:98:ed:37:8b:c7:52:6a:9d:75:
e8:b9:a5:98:05:42:2d:97:2c:8c:84:ad:f6:03:50:
d0:6b:c1:33:65:16:a1:f8:4d:71:ae:f9:05:4f:9d:
fd:5c:b8:a3:c5:38:6c:38:9d:d3:17:23:36:dd:07:
59:60:09:d5:d4:b3:dd:e2:9d:d0:97:dd:2a:47:35:
b0:06:ac:4f:f4:69:84:a5:bd:1b:ba:ab:77:f1:c6:
76:75:ec:e5:02:eb:66:70:33:42:b0:eb:91:26:1e:
bd:0f:11:da:17:22:c4:65:10:d4:d1:5c:18:14:36:
ba:fd:95:54:ba:d0:a2:ea:0a:4f:4f:a5:a8:df:8e:
32:9d:03:09:29:47:c5:ff:e1:22:57:65:6b:d1:4d:
47:f7:fa:f3:e0:dd:95:80:1e:6a:b6:d4:38:05:38:
80:42:cf:ce:12:ae:04:c0:61:94:15:2b:e1:69:58:
62:04:a8:87:4f:2b:19:ce:2d:89:31:aa:a5:24:68:
bd:1b:22:13:e9:25:66:0c:cf:21:8a:da:c2:f5:4f:
55:06:f7:64:fe:1a:e2:10:e2:22:2c:78:b9:c0:82:
44:db:ee:68:ef:57:19:9f:22:89:f4:14:56:08:06:
72:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:47:E1:8B:48:9C:07:06:C0:00:BF:D6:A0:9F:74:91:08:B8:07:19
X509v3 Authority Key Identifier:
keyid:4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:c5:a6:e3:fd:1a:b3:94:41:5e:01:b8:81:11:1d:8d:f8:3d:
c9:9f:9b:d2:3c:ce:2d:e6:9e:a9:00:c8:40:84:e7:69:e3:83:
c6:02:8c:68:70:0f:22:a4:27:20:6f:d1:d7:ea:79:4d:d3:71:
df:2b:a5:dc:eb:f9:e3:21:9e:fa:01:0f:89:ec:e3:14:e3:25:
8c:1b:af:16:c5:78:99:b4:2e:9f:4f:f8:f2:2e:0b:cd:9f:52:
e2:df:0f:5e:fc:3b:f5:de:8d:95:d5:37:6e:dc:ea:8b:12:b3:
e4:a7:9d:da:f4:d0:b1:e8:f5:c7:a7:54:e2:0a:5b:a7:2e:c3:
9a:9a:c8:b1:ff:9a:47:d8:c0:1c:d5:e8:49:61:52:b4:30:18:
24:3a:9d:59:24:bb:dc:1a:3b:6e:6c:aa:20:ff:25:a8:98:7d:
3e:5a:2d:06:3e:ca:6c:1a:b3:26:7a:35:86:a1:26:7c:7a:81:
b6:30:ff:a4:ed:dc:c7:36:1f:ed:eb:5d:62:b9:d6:1f:8e:6e:
6a:ca:9e:bb:ea:28:e9:13:ea:bb:7c:fa:0c:a5:6a:72:35:58:
fe:46:d4:3f:c0:4c:ae:cd:2d:28:aa:a7:42:f6:48:ea:c8:26:
28:24:b2:06:f7:81:ed:07:35:ae:31:f0:45:fb:3d:03:18:6d:
13:3f:dd:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:32 2024 by rpki-client on console-ams.rpki-client.org