Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json)
Hash identifier: Fd/xhOPdQlgT9ztdgte+nXS4XXszA6roq2qsAiajpKQ=
Subject key identifier: 92:D7:45:6B:A2:C0:CC:47:B4:ED:65:66:A6:03:E5:CD:56:5E:45:FF
Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090
Certificate serial: 01936A7D5E2DA79AA223BE5C4530BDA8F2F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
Manifest number: 0770
Signing time: Tue 26 Nov 2024 22:00:21 +0000
Manifest this update: Tue 26 Nov 2024 22:00:21 +0000
Manifest next update: Wed 27 Nov 2024 22:00:21 +0000
Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: dTxTur7xgOw8/C2fXSw1jQR9JNEe4K5fsd68rHurDqc=)
2: otoVcUDqll5tnl92NXJKAp2DKWM.roa (hash: XnKJsPFucKxHtw9U4ykYaZcRp9VLHLJ87UoP2vYZPS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:7d:5e:2d:a7:9a:a2:23:be:5c:45:30:bd:a8:f2:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d333f72d9e294543825be63729f8034a4517090
Validity
Not Before: Nov 26 22:00:21 2024 GMT
Not After : Nov 27 22:00:21 2024 GMT
Subject: CN=92d7456ba2c0cc47b4ed6566a603e5cd565e45ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b9:e2:98:e0:0e:74:2a:7c:db:31:02:7f:c7:
65:2d:0a:74:e2:17:e9:9f:f6:d6:d4:db:ce:ce:27:
92:22:5d:35:82:31:56:a3:c8:2c:a3:e5:14:66:3e:
2a:9b:36:67:bb:46:8e:66:3b:bf:d1:b2:ea:17:05:
de:b9:4b:80:b7:64:88:ef:b5:24:bc:59:88:4f:b2:
8a:aa:98:2b:bd:f2:a6:37:9b:a3:41:ff:e8:1c:d3:
47:2f:ed:bb:e7:fa:29:16:a2:96:82:00:33:82:d8:
e0:73:a1:c8:34:0b:a1:80:02:b8:ba:3c:6b:fa:0b:
1b:83:57:5b:e2:f6:69:4d:4f:28:1e:42:5a:90:d9:
c7:25:20:29:80:a4:ab:8c:50:18:9a:f9:ad:50:2e:
3c:99:ff:20:25:df:d8:27:12:c0:35:f4:26:49:a2:
ae:97:f2:e0:f2:51:43:c5:3a:a3:93:35:a6:2d:b2:
5c:80:91:51:65:47:0c:d7:8e:eb:d1:dc:01:76:6e:
7c:74:69:c9:ca:54:69:cb:3c:69:05:b7:23:0b:47:
5d:19:79:64:d8:dc:68:1a:96:14:11:9a:0f:d9:6e:
5c:70:70:74:4e:31:04:0d:32:58:57:29:48:ce:f2:
75:c7:44:1c:44:42:7f:e2:11:db:1d:c1:8d:56:77:
b4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D7:45:6B:A2:C0:CC:47:B4:ED:65:66:A6:03:E5:CD:56:5E:45:FF
X509v3 Authority Key Identifier:
keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:da:c3:f0:c8:5e:aa:46:8d:1f:b0:86:a4:0e:eb:c0:21:c0:
51:3b:8f:c3:70:53:db:3b:7a:e0:16:ce:64:cf:62:c8:cb:22:
2d:e5:1a:06:fb:6b:5c:62:ce:6c:4d:23:63:58:a9:e1:07:65:
92:60:93:7f:96:e1:6e:de:ba:7e:e4:51:b5:1d:85:0a:ae:75:
56:3e:9a:98:e9:28:46:38:37:d1:ce:0b:0d:dc:0a:b7:fe:d3:
92:b1:8f:af:05:80:05:ca:bd:79:ea:e5:ba:df:70:d1:97:f5:
97:00:9f:c0:bc:cb:7d:8b:ce:56:1f:95:3d:c6:d9:ed:a1:83:
81:34:5a:5b:d3:d7:6b:1a:2b:05:9b:3f:63:64:a2:9e:51:63:
08:9f:7c:db:65:bb:61:00:54:a6:18:4d:18:83:03:e4:e0:ec:
c4:ca:1a:3f:55:bd:66:c8:42:75:c6:a9:be:73:1c:c3:73:1d:
61:bb:05:86:c2:61:fd:eb:0c:c6:b3:ff:ad:d6:42:2d:23:b2:
31:ec:c2:34:49:f0:de:b6:b6:be:ec:fd:ca:a3:b7:38:31:e2:
bb:cb:80:ab:8f:12:3e:a5:09:ec:03:d1:5d:d4:b6:83:8e:1e:
c8:d0:2f:62:ca:0a:44:cc:70:4b:c0:fb:55:5c:c9:ac:99:2c:
d8:ed:35:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:41:54 2024 by rpki-client on console-fra.rpki-client.org