Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: VsoDP240MN7OXcTzci0OoFJxK4sKIh21CgYGUsl7zio=
Subject key identifier: C8:50:59:D3:1B:03:09:EC:DA:74:BA:C1:B5:AF:B0:7A:C3:FB:EB:00
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 019353F618789B716D04179D31C9E1C204F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 136F
Signing time: Fri 22 Nov 2024 13:00:57 +0000
Manifest this update: Fri 22 Nov 2024 13:00:57 +0000
Manifest next update: Sat 23 Nov 2024 13:00:57 +0000
Files and hashes: 1: UhALU5G1019Iwm1CunvF5Nu8S44.roa (hash: 1NmtWhtV7LmcSgYQgmJNQMezGXmI78F3UzHhQ7IVKao=)
2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: UpHSMOSX6psAJJ5VfuzdD5xizitr5mawhCVQaSAPuu0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:f6:18:78:9b:71:6d:04:17:9d:31:c9:e1:c2:04:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Nov 22 13:00:57 2024 GMT
Not After : Nov 23 13:00:57 2024 GMT
Subject: CN=c85059d31b0309ecda74bac1b5afb07ac3fbeb00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a2:e8:00:9d:1f:78:99:4b:4a:dc:ef:7d:2f:
f1:dd:b4:6a:27:60:b8:b7:67:84:a3:d6:76:91:bd:
ae:b5:39:e1:fe:a5:78:48:28:59:db:97:51:9a:21:
7d:1d:12:2d:bf:39:a9:34:04:30:66:08:3f:55:1f:
b1:3c:7c:06:40:8e:f5:08:48:37:45:e2:a9:e2:be:
92:b4:f7:46:a6:4c:e8:8f:c9:b7:05:07:4a:6b:ff:
27:4e:42:7d:ab:d5:bc:24:59:f5:f2:35:fe:b1:dd:
49:a1:56:f3:90:67:bd:fe:69:e2:03:fe:a2:ac:1b:
39:29:e0:aa:3d:31:72:07:d3:0d:63:99:ef:42:a4:
6e:af:a8:ff:45:97:f7:05:ac:76:94:b6:88:d1:8a:
66:1a:78:70:65:c0:e1:28:c3:da:1c:db:71:10:d9:
f4:c2:e6:8f:58:b4:a4:af:ec:c3:89:70:ee:e0:9a:
40:99:4b:83:76:76:66:d4:dc:18:27:ee:7e:a7:3b:
cd:e4:8d:79:7e:3a:a0:97:77:eb:aa:54:d1:36:dc:
b9:13:65:77:18:41:4b:17:94:b6:e0:b3:ab:0c:5e:
26:9e:26:16:31:3b:37:3c:47:a1:bd:0f:46:39:ae:
cf:88:59:91:f5:63:94:db:e5:a2:c0:0b:ab:a7:76:
e9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:50:59:D3:1B:03:09:EC:DA:74:BA:C1:B5:AF:B0:7A:C3:FB:EB:00
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:d2:bc:7b:15:f0:76:56:69:bb:9d:bf:b9:1c:22:17:e4:ba:
de:85:9d:d8:d3:e8:06:c3:ae:28:40:22:0e:87:00:3d:8f:f2:
49:7a:0b:14:6c:2f:31:c7:eb:5d:45:63:f0:47:7c:10:d1:70:
99:e9:d9:3e:cf:61:23:44:e4:a3:1a:1c:86:48:c9:3e:61:e4:
4b:aa:e2:ef:f9:a7:c2:57:d7:16:b7:1e:67:a7:21:67:af:0a:
76:f7:d9:74:41:4d:27:16:52:ab:29:c8:82:1d:9e:0f:9c:71:
41:a7:dc:3c:a1:60:cc:7a:45:2f:bf:a4:dd:e6:5f:f0:75:56:
5a:6e:a0:71:ae:a0:09:15:9f:b5:98:a0:99:79:ac:22:ff:b9:
d6:6f:39:04:9e:8b:57:a8:ac:64:15:25:cc:e4:9e:82:6a:0d:
30:06:d0:28:96:65:48:6f:4c:d2:4e:70:4e:69:c9:e4:86:70:
3c:89:a6:ca:78:bd:6f:ec:76:26:dc:a3:2f:57:e6:da:0e:52:
c9:4a:69:29:41:1e:10:aa:35:ec:e1:92:66:f1:8b:82:04:6d:
9b:af:07:34:37:5b:df:72:04:e1:39:fa:45:08:a1:ac:1a:6a:
61:3e:98:b3:a7:d8:e8:70:5d:5f:79:98:cc:51:5a:ba:e0:03:
c9:29:48:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:08:46 2024 by rpki-client on console-fra.rpki-client.org