Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: vTUazIKCs3tjUDa1XyXswvSosJMMk7G209+Jex5pVlE=
Subject key identifier: 4F:5D:65:7C:98:2E:30:4D:FA:79:FF:6D:ED:10:B4:C9:47:5D:D6:69
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 0193572DB69CF31A3D10E93563136F659FDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 0B29
Signing time: Sat 23 Nov 2024 04:00:33 +0000
Manifest this update: Sat 23 Nov 2024 04:00:33 +0000
Manifest next update: Sun 24 Nov 2024 04:00:33 +0000
Files and hashes: 1: hwnbGe2Y2ssHLhMyvixKPEUBd1c.roa (hash: SpXZi1GNiPQuy9IdZaa9d0BaxgWjvFtVYAy5aJ0r/QA=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: q8axtRiRpgQrwJ/9YyISGP7NwDW10OO/twluYKSW3Gc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:b6:9c:f3:1a:3d:10:e9:35:63:13:6f:65:9f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Nov 23 04:00:33 2024 GMT
Not After : Nov 24 04:00:33 2024 GMT
Subject: CN=4f5d657c982e304dfa79ff6ded10b4c9475dd669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1e:f1:44:07:ae:e7:9d:14:33:6e:c2:3c:96:
87:72:5c:31:c8:40:18:8f:c6:01:4c:a1:ac:26:8b:
60:9e:38:ac:f1:cc:d7:c3:9b:d4:11:b3:3e:df:d0:
15:f2:7d:a7:48:44:2c:67:91:50:53:1b:30:a3:53:
a8:a9:62:45:73:64:85:50:72:9c:ef:3d:52:e3:09:
44:bd:47:21:d0:77:d3:05:1b:82:94:b9:31:10:0e:
b0:9a:6d:5e:5b:10:75:ac:eb:5a:da:0a:5f:84:cf:
53:e2:33:ef:32:8a:f4:60:4e:93:28:4b:ba:56:e5:
70:b8:8b:ff:29:d4:2c:34:56:e4:8a:c8:97:a7:5b:
c9:fa:7f:e7:c8:a9:a1:6d:93:a5:aa:24:9c:bf:4c:
81:6b:97:8a:b4:5a:db:9d:69:f2:c1:db:bb:a6:54:
fd:ae:7c:f3:44:a3:2a:fd:99:87:63:57:e2:59:63:
e6:2f:df:c2:19:9a:88:c0:32:0b:38:7e:f8:1a:cd:
42:5c:48:22:0e:d3:d0:cc:a2:da:f6:9c:f6:ab:cc:
38:0c:cb:2d:12:8c:aa:f3:39:f0:f1:0e:b4:5b:61:
fc:14:2d:ae:b4:20:8e:72:ef:8c:7c:2c:db:38:9a:
00:4b:1a:75:82:15:8a:21:59:5a:9e:db:9a:a1:93:
07:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5D:65:7C:98:2E:30:4D:FA:79:FF:6D:ED:10:B4:C9:47:5D:D6:69
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:99:45:12:5d:41:3d:2e:10:3d:ad:f0:6a:36:54:ef:6f:cc:
fe:7f:91:d7:e4:7d:81:35:af:07:ff:1c:0a:08:25:c3:44:7c:
4a:60:cd:1e:11:ff:97:c9:76:23:24:ba:6d:a1:76:ab:66:35:
2f:ad:3a:5d:38:36:03:d9:5b:f4:2a:95:98:f1:42:b4:eb:3e:
21:c2:2a:35:53:16:b7:cc:08:df:53:06:c7:67:f2:17:e1:e5:
ee:10:b6:f4:08:be:a2:ff:1b:9a:16:f9:49:04:f9:f7:ad:c2:
0d:6a:64:80:b8:bc:10:9d:ef:db:11:6a:b4:5c:3a:7b:b1:7e:
64:19:5f:2d:42:d2:59:fb:52:96:e3:ae:2d:f1:67:ea:51:ba:
7d:d7:74:98:fc:9b:51:04:76:ff:60:58:9d:dc:1f:23:6a:34:
eb:db:0b:22:d2:ee:07:c7:77:2a:b1:9a:0f:7b:1b:26:d9:ad:
e2:1e:57:ed:c4:a5:1d:2e:da:7b:42:bc:78:fe:5a:cf:6e:6c:
40:cd:88:bc:07:c4:56:c8:c9:4e:50:6e:0c:0a:b7:24:7e:c0:
5f:7b:7b:00:8a:58:ca:7e:3f:dd:b0:f5:62:95:6b:16:3b:bd:
15:3d:46:b0:9d:47:6d:9a:99:a5:77:dc:33:e2:8d:9d:9d:fb:
12:53:b1:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:57:50 2024 by rpki-client on console-fra.rpki-client.org