Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
File: zQwDKJL2la9ME_sKyoBD0Xsbl78.mft (raw, json)
Hash identifier: AN+rROacVZ+KOliKCXuTegOWNXr5GNBQ/ZBcUr1Ezco=
Subject key identifier: BF:FB:FA:5C:8B:D9:A1:BA:71:B9:2D:ED:FF:B0:F7:F6:72:C3:8A:F5
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 0193568A21FEF903A04F8C607185A38C3042
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
Manifest number: 0712
Signing time: Sat 23 Nov 2024 01:01:53 +0000
Manifest this update: Sat 23 Nov 2024 01:01:53 +0000
Manifest next update: Sun 24 Nov 2024 01:01:53 +0000
Files and hashes: 1: A9BGwkXtVPEBmJCVvkqyvJJSAyg.roa (hash: bZJi3U6/hzzZXT6yMeIDnGzyhQSFxE97fOq/T8DZFyA=)
2: zQwDKJL2la9ME_sKyoBD0Xsbl78.crl (hash: DpaDJ37moB5AQt9QwUCLId/hFJIXjM7BVgrQ4G/8fwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:21:fe:f9:03:a0:4f:8c:60:71:85:a3:8c:30:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Nov 23 01:01:53 2024 GMT
Not After : Nov 24 01:01:53 2024 GMT
Subject: CN=bffbfa5c8bd9a1ba71b92dedffb0f7f672c38af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c8:83:be:a1:2f:a7:bd:f0:8d:ae:88:20:d5:
ff:fb:f9:81:2c:16:68:89:f0:b4:6a:9a:7c:07:70:
8a:59:2a:97:09:0e:68:b4:2b:af:b1:2d:df:ef:4d:
b7:eb:d3:60:b5:3d:7a:fb:fe:a5:53:88:fb:7d:48:
2a:9c:64:13:70:88:1a:29:0e:e0:91:8f:9d:a5:6f:
6a:d6:ea:f3:3a:1a:29:5e:04:b4:fa:30:9b:47:41:
21:f0:8d:d9:34:63:d1:a3:01:4a:f6:e5:2e:c2:78:
59:5f:66:f9:0d:c5:2f:ff:a4:d7:42:e2:c8:4e:b3:
0a:55:09:7e:0e:fd:ed:22:57:4a:1a:58:ac:fb:40:
4e:15:47:0a:f4:95:5d:c1:26:23:75:39:65:e8:06:
51:47:cc:d9:26:a4:f5:29:87:70:b0:c5:76:6e:bc:
f0:8a:1f:30:11:99:33:ad:e2:c3:e9:74:48:0f:19:
9d:e6:f0:e1:56:e8:31:86:9e:ad:b5:bd:88:3b:f6:
fe:97:67:c2:2f:01:4e:44:2b:a4:35:5a:d8:cd:96:
21:3f:21:fd:4f:59:df:0e:08:fa:61:2c:26:3b:5a:
01:2f:90:fb:4a:1f:3c:0a:88:3b:be:09:18:34:0a:
a4:08:e5:12:fb:bd:f9:4b:63:38:e6:f8:d6:51:7c:
09:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FB:FA:5C:8B:D9:A1:BA:71:B9:2D:ED:FF:B0:F7:F6:72:C3:8A:F5
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:44:6c:8f:5a:fe:15:19:01:6b:6f:1b:82:67:d6:d0:af:a0:
57:6f:cc:e1:bd:84:53:c0:3c:50:33:6d:d0:6f:51:cd:4a:f3:
8c:56:43:51:8e:a7:e6:e0:d2:d7:18:5a:c6:a7:6d:82:da:3d:
ed:12:c8:ad:42:04:5d:6a:c6:3a:87:2d:5c:05:3b:10:9b:4f:
d6:6b:01:7c:45:a1:12:b0:b0:83:57:33:e3:01:30:c5:d9:fc:
85:54:f1:e9:98:32:77:ba:d0:7f:69:a7:f6:b9:35:22:ef:5f:
24:d4:ae:f3:94:3c:cd:2b:6d:89:0b:cd:59:6c:68:eb:a2:e0:
a8:7e:b9:53:a5:4f:b9:2b:78:8c:d4:5d:08:b0:29:9a:e9:67:
60:28:0f:6d:8a:4c:3f:b7:04:ea:28:d2:f8:68:25:3a:2d:c8:
25:14:4b:8b:a7:69:1e:2d:7b:22:de:2d:74:04:16:6c:38:f1:
4e:4f:5a:da:14:0c:6b:10:97:e7:2e:f2:3c:a8:6d:1d:08:ba:
4a:5b:a2:e5:32:ca:08:5e:6b:57:e8:08:19:9e:a9:81:7b:ca:
f1:b2:7b:56:6f:5d:55:a8:59:fd:a7:6c:f5:69:e6:d5:b1:69:
5a:34:16:c1:01:27:47:ec:d5:0e:fa:e0:4d:e4:0a:72:a7:24:
04:5d:24:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:20:01 2024 by rpki-client on console-fra.rpki-client.org