Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: ztfelLIB48PpYNb+0SNZD+C0fZvLREtds+kb3gmscL8=
Subject key identifier: 36:BF:A6:F6:28:81:94:27:2B:B4:65:D7:93:BB:81:C9:AB:91:EA:5C
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 019358780EBCC8D356795F3DE47E2F77EC0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 0970
Signing time: Sat 23 Nov 2024 10:01:23 +0000
Manifest this update: Sat 23 Nov 2024 10:01:23 +0000
Manifest next update: Sun 24 Nov 2024 10:01:23 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: ZnCE5Uchv9fAGDU/SgOlG/wOSK4K5PV0Gkal80iSNs8=)
2: yRj0-JrqV79cPXjvp_I6Tk4-pHw.roa (hash: +okuCuz4VxqxarcqgEvJy71EQKLDG02VSGbx1vFCjnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:0e:bc:c8:d3:56:79:5f:3d:e4:7e:2f:77:ec:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: Nov 23 10:01:23 2024 GMT
Not After : Nov 24 10:01:23 2024 GMT
Subject: CN=36bfa6f6288194272bb465d793bb81c9ab91ea5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:77:3e:da:b7:c9:56:b9:5e:2c:07:92:04:51:
09:4c:c3:eb:79:e7:45:5b:bb:f8:b6:c9:31:b7:ad:
9c:15:4d:5c:26:0d:9a:77:0a:62:28:a9:97:bb:dc:
f4:33:85:58:d3:f7:71:8b:3a:6b:e6:86:ec:f6:26:
e2:d2:2d:a1:10:8c:44:8b:0a:f0:ca:d4:ff:5a:ca:
3b:c7:8c:83:7a:d0:bf:97:be:66:40:27:5c:3c:27:
7c:3e:1a:b9:b6:02:ec:46:4f:3a:7e:75:80:95:14:
8b:e8:3f:20:41:72:e3:0c:3c:f2:33:ea:16:56:f6:
c8:f1:78:60:e4:5b:36:5f:30:62:d3:6e:55:9d:2d:
9e:f2:19:5d:8f:f1:ce:12:be:2f:ed:88:f1:22:12:
ac:19:3c:23:9f:34:5b:40:6b:8c:76:07:25:f5:ce:
e3:34:2a:63:76:d0:13:81:df:74:21:50:78:d5:8b:
10:c3:7c:dc:2d:7a:02:f2:30:16:c0:c7:34:bd:dc:
0a:ba:7e:f0:86:f1:2c:58:80:bc:9b:f6:5c:9c:15:
20:fd:0a:09:ae:ee:17:ce:87:cf:bc:e9:e4:2d:69:
69:e2:89:20:29:06:49:c8:f3:28:eb:38:57:94:df:
35:00:70:d9:cc:e9:67:db:53:61:29:d2:85:2d:59:
75:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:BF:A6:F6:28:81:94:27:2B:B4:65:D7:93:BB:81:C9:AB:91:EA:5C
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:16:d6:2a:1d:82:fd:62:f2:2b:72:ec:e8:30:a9:33:89:82:
ca:d3:dc:2e:4a:f0:96:22:aa:93:0b:8f:8b:9a:6e:d1:60:76:
5b:4a:80:05:b6:87:fb:b8:ee:7d:7e:12:f5:61:23:f8:2d:5f:
79:47:47:ce:9e:7f:ce:04:ab:52:ec:96:c0:87:6f:62:41:f9:
0f:62:8a:ed:1b:0b:1a:72:7a:e9:78:f6:bb:53:8a:33:93:c5:
9b:d3:56:66:2c:55:fd:f2:db:10:e5:ce:8a:d4:e2:b8:64:c8:
01:41:be:1b:10:ab:03:07:59:b2:d4:0a:07:76:1a:9c:f1:99:
8e:a3:77:62:82:b2:ba:2c:b6:2f:6b:a8:de:9d:21:19:61:95:
40:c5:3f:59:6d:36:26:7a:a8:9e:02:94:cd:97:7b:93:0f:bd:
b7:54:8a:ac:f0:e9:c5:e4:cb:84:3c:da:25:03:b7:3c:31:f5:
be:a2:e0:9a:31:8b:d8:46:3a:87:57:a1:78:68:b6:a6:d1:25:
af:99:e1:dc:fe:99:39:96:23:df:dd:21:ca:d6:2a:76:dc:ea:
4f:66:a2:e0:c7:bf:c3:dc:6d:d3:1e:14:5c:95:81:bb:55:6f:
60:70:a0:29:88:db:6b:5f:b8:6f:09:8c:8c:44:40:43:2c:61:
0c:52:0a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:01:27 2024 by rpki-client on console-fra.rpki-client.org