Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: vaziPLia2wcSTDGCiuQLOnOks6u6A7kgt7O0WrStm1U=
Subject key identifier: 36:AA:A6:77:C0:A4:72:3C:51:CC:4B:E8:1F:C9:51:15:87:F1:EF:C3
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 019358770D057F3D54372EFE0C47A00A9CD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 10:00:17 +0000
Manifest this update: Sat 23 Nov 2024 10:00:17 +0000
Manifest next update: Sun 24 Nov 2024 10:00:17 +0000
Files and hashes: 1: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: Ymgw+VGQsfD94USdBM+WrRwJsk/cCZWlSfAOfiwG6ns=)
2: jimYl-y2nUcHGZx440TRGeUv6KA.roa (hash: 2UWHTOh5Q15HlVZ7S0xzfqQOG98YgtpBHNU8lDgke0M=)
3: kKAFQr0lqBMD8HlYZRHVnch9ge4.roa (hash: US2ajpoOokHwIiJAHpFU2VhH4QnCdgcFzRAfbUasG4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:0d:05:7f:3d:54:37:2e:fe:0c:47:a0:0a:9c:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: Nov 23 10:00:17 2024 GMT
Not After : Nov 24 10:00:17 2024 GMT
Subject: CN=36aaa677c0a4723c51cc4be81fc9511587f1efc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2f:79:c6:6f:b1:84:93:4d:03:74:20:33:ec:
f5:d1:fb:f7:44:b4:d3:93:e7:fe:85:61:50:2a:45:
ea:7f:31:9a:78:9b:3d:bf:90:11:3f:ad:be:93:4a:
d3:50:76:d1:9c:03:a9:87:0f:83:01:13:ea:bb:5a:
1b:51:9b:8a:cf:f4:0c:ea:b9:a0:26:bb:f7:13:c9:
b9:a3:cc:e1:6a:a2:65:d2:77:4c:ed:ec:7e:6a:27:
ea:eb:d4:74:fa:b6:c1:7d:17:23:c5:54:48:7a:fc:
34:6e:e7:08:29:65:a6:6d:42:33:50:2d:93:75:9a:
dc:22:03:49:1c:59:10:9f:df:d0:ad:d4:56:a3:31:
97:45:4b:04:1d:57:c9:58:29:23:3d:ca:36:56:00:
36:5c:ac:bf:fa:94:9d:5c:1e:e0:c6:55:bd:a2:f5:
a4:d6:52:e0:a1:91:ed:ab:2e:66:d2:5c:77:96:7e:
61:ba:8f:1b:1f:8e:ce:6a:74:4b:79:7b:07:26:10:
c0:11:7c:e3:7f:f7:bb:c3:32:f0:68:cb:53:df:ae:
0b:3a:27:1b:f1:09:36:d6:0d:7b:4b:44:de:c7:28:
2d:8a:3f:6d:28:a2:f6:73:3c:c2:00:89:2a:58:44:
95:e8:7e:91:e4:da:62:bd:62:b6:61:93:2c:23:10:
4f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:AA:A6:77:C0:A4:72:3C:51:CC:4B:E8:1F:C9:51:15:87:F1:EF:C3
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:18:0e:99:57:0f:bf:81:2c:b7:a6:e5:45:33:66:dd:9b:de:
a7:02:be:a2:9e:49:4a:f2:83:e4:3a:1d:01:d6:a7:a6:15:39:
88:f6:ba:d4:c5:d5:13:f3:73:6d:d3:58:39:22:79:c4:e5:be:
ef:e1:d5:17:7d:69:94:87:d6:cd:ec:71:ca:54:62:dd:ce:7f:
66:72:a4:20:6d:2e:24:74:b4:1d:fa:0b:cc:14:46:90:5f:d2:
dc:48:8d:54:e5:6b:8e:c2:be:bf:4d:86:b1:71:ea:a4:a0:f1:
27:94:ee:a8:ad:1d:7d:c1:0a:4b:d9:05:43:5c:d9:2f:45:0c:
a7:2a:bc:58:26:d3:9a:52:fc:fb:9b:31:57:da:f1:6e:1d:d9:
46:a9:32:05:4e:bc:b2:a5:50:db:f4:1a:15:48:7e:82:e7:47:
d7:80:d7:d1:8a:ae:4d:ef:01:88:93:97:bf:09:91:8a:8f:a1:
54:4a:08:7e:af:51:ce:cd:77:14:61:c0:77:a9:44:33:e4:44:
a6:fe:c9:ad:af:be:09:9f:df:17:61:e3:6e:2f:00:c0:fa:5f:
e4:5a:e9:11:c2:2f:ff:fb:36:a2:a8:c8:b7:64:fe:91:fc:4d:
33:f4:be:aa:c5:b6:3d:fc:82:9f:13:7a:2f:17:10:93:28:4c:
6f:d2:83:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:08:45 2024 by rpki-client on console-ams.rpki-client.org