Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
File: PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft (raw, json)
Hash identifier: diFdwCo/yJRrJPvwz7rLwUASOmK06+aKQMyWvCBNsvM=
Subject key identifier: 29:31:A4:BB:4D:2A:FE:5C:35:DB:A6:05:6D:7E:C3:E6:30:88:CB:74
Authority key identifier: 3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
Certificate issuer: /CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Certificate serial: 019354D157D942AE4CECA0CF6810DA377A0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
Manifest number: 0174
Signing time: Fri 22 Nov 2024 17:00:25 +0000
Manifest this update: Fri 22 Nov 2024 17:00:25 +0000
Manifest next update: Sat 23 Nov 2024 17:00:25 +0000
Files and hashes: 1: 4TmSKNsXZph-iEBsDVSXAsqfP64.roa (hash: loDpzpz540ok0krS9/p9yjD7Vhl3JqcJcv+qor9RgzA=)
2: PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl (hash: vRwzdu5ySt7lW0vjfjgfnaPDHpj3s0b/9vabZ+aciV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:d1:57:d9:42:ae:4c:ec:a0:cf:68:10:da:37:7a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Validity
Not Before: Nov 22 17:00:25 2024 GMT
Not After : Nov 23 17:00:25 2024 GMT
Subject: CN=2931a4bb4d2afe5c35dba6056d7ec3e63088cb74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b0:7b:b9:2b:36:fc:df:40:91:2a:49:64:a7:
4c:e3:83:9f:80:86:b9:67:fb:51:1a:9c:25:39:29:
dc:3c:0c:64:4b:82:09:4a:14:ac:8e:e9:d8:b0:89:
98:2c:7a:2f:8b:47:06:13:fc:a9:61:af:24:ac:e4:
14:c8:8e:ac:86:ae:78:0a:87:10:ce:12:7d:76:6f:
15:37:6c:47:62:ab:0c:1a:cb:b5:5d:7d:a0:92:3e:
03:1b:c8:41:aa:8f:74:c9:62:4e:44:e9:ab:01:88:
19:03:29:1d:87:3a:20:e1:cc:0c:cb:da:e8:c8:4e:
49:76:53:42:b5:0c:7c:0d:32:7d:ae:7d:61:a4:49:
96:c9:3c:bf:96:d8:c8:eb:71:83:2f:16:86:80:31:
11:32:90:51:75:d7:92:eb:45:cb:9c:71:54:a3:0e:
18:56:77:fe:97:b2:31:d5:33:a8:31:a0:0d:74:b2:
36:ea:80:8c:db:e4:88:77:03:02:dd:fe:f1:4a:c7:
8a:3b:02:a9:2a:6a:03:fb:34:da:5d:50:e2:52:9f:
cb:a0:23:00:b9:1e:2e:48:3c:9f:0c:ba:02:bb:89:
a9:67:ed:7d:a4:91:ac:ba:65:e4:f3:52:96:b1:1a:
53:eb:65:79:ea:ba:39:24:d2:a3:d5:20:03:61:51:
18:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:31:A4:BB:4D:2A:FE:5C:35:DB:A6:05:6D:7E:C3:E6:30:88:CB:74
X509v3 Authority Key Identifier:
keyid:3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ad:65:ae:6a:46:5b:71:03:28:5f:a6:ec:71:58:5f:dd:8c:
7e:37:bf:a5:5f:fc:90:b5:46:e6:27:aa:0c:82:6d:29:7c:89:
32:6e:c9:8f:1e:ef:33:6a:a8:d3:54:7f:cf:a0:fb:b3:2e:bf:
ce:85:10:3c:6c:30:c6:91:f7:b8:71:db:19:da:3b:32:1f:79:
ef:5b:09:76:d0:18:cc:7d:b1:ce:bd:ce:f3:a0:d0:da:b8:b5:
b4:43:ef:a3:ba:c7:4a:62:28:5a:a8:d4:cd:b3:98:01:20:34:
36:de:d0:b3:b8:72:e1:39:3f:8d:b4:df:b5:60:20:c3:4c:c8:
4b:e4:01:cd:25:e2:c3:56:8a:f0:c7:f2:e6:d0:0e:43:73:ee:
b1:7b:56:77:03:6c:5a:e1:cf:14:77:16:9e:46:26:ed:2f:4e:
ab:45:9f:5e:ba:3c:e4:0a:d4:11:d0:37:55:e0:28:87:bc:21:
87:36:43:b6:67:cb:f9:b4:81:cd:7a:bf:3d:5c:50:e3:07:b6:
c9:e3:a8:7a:92:82:62:c6:80:2f:db:4a:85:9f:65:47:c6:6e:
db:5e:52:4b:6b:29:42:01:b6:e1:b3:25:cc:32:cc:c3:97:f2:
77:85:04:07:1e:0b:a5:1a:5d:af:56:61:cf:1d:9c:59:56:95:
85:34:a1:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:19:38 2024 by rpki-client on console-fra.rpki-client.org