Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
File: 25ebiYwPWDTLyDimmgXjq-jAKQM.mft (raw, json)
Hash identifier: vmOyuxMruWIJYzJJHAaGV8MhTTqKAyFtXC/tNTukVFw=
Subject key identifier: 8A:75:92:B0:6C:1C:4C:B4:77:85:01:73:12:E5:E0:8E:A4:2F:7F:7C
Authority key identifier: DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03
Certificate issuer: /CN=db979b898c0f5834cbc838a69a05e3abe8c02903
Certificate serial: 019365FD99F46381EFAA1B94B5872E44F15B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
Manifest number: 070B
Signing time: Tue 26 Nov 2024 01:02:18 +0000
Manifest this update: Tue 26 Nov 2024 01:02:18 +0000
Manifest next update: Wed 27 Nov 2024 01:02:18 +0000
Files and hashes: 1: 25ebiYwPWDTLyDimmgXjq-jAKQM.crl (hash: hHL5xFtXikeqQvylxR2H2fKXXKTioSfYF8JGU+fJ/q0=)
2: u406CW2w3jbufjzRUUsk5Wqo4Oc.roa (hash: rFG+sOoq+Op+IwC1Bp+7XSncJQdDz/BU4CSP6wu6sGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:65:fd:99:f4:63:81:ef:aa:1b:94:b5:87:2e:44:f1:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db979b898c0f5834cbc838a69a05e3abe8c02903
Validity
Not Before: Nov 26 01:02:18 2024 GMT
Not After : Nov 27 01:02:18 2024 GMT
Subject: CN=8a7592b06c1c4cb47785017312e5e08ea42f7f7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a5:df:55:5d:f8:1e:a8:58:04:93:76:c2:92:
30:38:c0:f0:38:40:a0:0a:43:c1:d3:a1:89:6e:20:
c1:4e:63:40:21:b8:2d:5b:35:65:35:db:95:85:0a:
ad:5c:a9:b3:95:b0:bd:df:a8:16:44:d1:c0:ca:30:
71:19:5d:17:51:bb:4a:61:72:81:37:d4:b7:56:18:
e8:92:8c:7a:79:66:6e:7e:e1:1c:e6:1b:1d:53:6b:
35:8d:ab:0f:91:71:d6:1f:f8:2e:32:ee:fb:bc:30:
98:5d:dd:87:db:ce:62:76:b8:18:ef:b5:ee:c2:32:
02:0b:fb:57:b6:96:3e:e6:4d:18:f6:40:30:ad:6b:
83:b8:c8:7b:f1:95:81:63:47:88:6b:f1:93:d7:9e:
6b:a1:62:0d:09:f8:e3:80:f1:78:3e:fa:d1:08:33:
13:bc:c9:3e:83:96:a5:49:f1:a2:57:a0:75:73:7b:
4c:07:fd:e5:09:52:6e:0f:69:81:c1:bb:fa:b6:f7:
ef:d6:77:54:84:39:61:fd:72:a2:45:d0:4e:e9:26:
55:c1:fc:e6:d3:08:dc:1e:39:0a:85:0f:1f:71:3e:
39:a9:c3:94:b8:03:d8:a4:46:b0:7d:d2:32:62:9d:
1d:75:fb:e9:d3:9a:f8:82:42:fa:93:3a:24:87:9b:
79:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:75:92:B0:6C:1C:4C:B4:77:85:01:73:12:E5:E0:8E:A4:2F:7F:7C
X509v3 Authority Key Identifier:
keyid:DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:85:e5:4c:ce:d6:df:98:af:07:99:36:5f:47:dc:09:4d:3a:
db:83:ad:40:ee:ef:9f:ef:81:27:d5:d4:eb:08:eb:d4:45:b8:
73:eb:0b:97:e3:39:e9:1c:89:e5:fb:ba:8e:78:f5:a1:dc:f4:
93:8d:26:eb:d0:c3:8e:7f:45:be:fb:19:e8:da:24:d4:b8:c8:
db:02:44:0d:0e:a6:60:06:19:5d:df:f5:1a:a2:82:67:e5:27:
92:8c:d8:35:e9:95:2a:9a:fe:5e:8e:49:ba:97:f9:b3:04:96:
25:78:a5:3e:3f:c4:b6:86:20:92:94:e0:ce:15:a3:43:83:b7:
cb:72:ae:b2:65:9c:5a:c5:d1:65:83:2f:5d:d2:e7:ca:b0:ea:
24:d7:c8:c4:2f:6d:73:5c:86:21:cc:d3:88:fb:44:d6:d2:6a:
9f:af:45:df:be:60:fe:86:c5:5a:cb:67:f5:7d:4b:59:52:fe:
08:4a:e0:b1:54:fd:0e:49:3f:7a:c8:36:1e:eb:cb:2e:0e:70:
23:6a:db:c8:a7:86:b9:77:95:88:67:ee:f6:24:59:9e:d5:99:
0d:08:f1:00:02:08:b2:1c:6f:f0:0d:c7:f9:b5:ae:dd:51:45:
0f:77:49:84:5c:32:67:28:e3:df:e1:2e:39:3c:0e:f5:f3:8d:
fd:eb:64:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:10:33 2024 by rpki-client on console-ams.rpki-client.org