Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
File: AA0P7izVZpZcoI21UGY8sgtBI0M.mft (raw, json)
Hash identifier: MCIpnys0NuBU1uMOeanFCfZ1SGtMA4NvtE/1GiLfl9Q=
Subject key identifier: C2:39:C9:0B:A8:82:BA:AA:07:53:E5:B9:97:78:39:07:D6:49:B1:60
Authority key identifier: 00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
Certificate issuer: /CN=000d0fee2cd566965ca08db550663cb20b412343
Certificate serial: 0193572DABF0021D87F665808357F8CEEE94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
Manifest number: 093B
Signing time: Sat 23 Nov 2024 04:00:31 +0000
Manifest this update: Sat 23 Nov 2024 04:00:31 +0000
Manifest next update: Sun 24 Nov 2024 04:00:31 +0000
Files and hashes: 1: AA0P7izVZpZcoI21UGY8sgtBI0M.crl (hash: PbwSMeSR/jeLLOPqwyDBWDai6dpoHgzjGOq4oG6t+dw=)
2: f7zcH5KbMBNIi-GELxsjiKh2ntc.roa (hash: T2x+lX2vLACVZbrUGATthJVfavEFtJpPRj8efiKT2Qs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:ab:f0:02:1d:87:f6:65:80:83:57:f8:ce:ee:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000d0fee2cd566965ca08db550663cb20b412343
Validity
Not Before: Nov 23 04:00:31 2024 GMT
Not After : Nov 24 04:00:31 2024 GMT
Subject: CN=c239c90ba882baaa0753e5b997783907d649b160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:3e:cc:43:4b:43:b0:d7:fe:7e:a3:5e:f5:
1e:62:e9:6a:ec:55:c9:cd:e8:2a:f6:77:9a:31:02:
89:95:f8:b0:aa:ab:9f:2b:ae:0d:74:e8:42:72:c8:
6f:56:95:2c:dc:f5:6e:6e:03:d8:88:3e:ef:c5:90:
be:48:1a:d3:c4:06:df:05:db:b0:a7:93:2d:b9:a8:
af:56:b6:36:a9:46:07:44:90:d3:e0:42:63:d0:f7:
1b:8c:2b:87:81:01:fc:85:7a:fc:48:8f:24:68:63:
f8:25:26:92:05:51:89:a6:10:20:90:8a:6b:09:36:
59:4d:3a:9c:c6:19:16:c3:6b:79:51:37:96:d9:76:
de:2c:13:fe:66:f5:b9:2a:02:39:c7:b6:a6:9f:fa:
34:36:04:1e:ea:d2:50:ec:15:54:7f:98:ae:4f:98:
64:df:80:0e:31:f6:4d:66:b4:37:40:fe:db:65:6a:
03:c7:4c:5a:75:53:61:41:c4:67:90:bc:08:8c:0e:
b6:21:de:5c:28:d2:4a:01:45:77:70:7b:ce:d0:6c:
67:af:d5:5c:4d:1d:35:4f:31:ce:8a:ce:a0:ae:5d:
16:a5:c5:f2:b7:86:51:6e:7a:0b:af:11:25:53:b5:
3a:c7:cf:11:59:82:07:57:e3:14:99:3b:8a:80:2e:
29:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:39:C9:0B:A8:82:BA:AA:07:53:E5:B9:97:78:39:07:D6:49:B1:60
X509v3 Authority Key Identifier:
keyid:00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:0d:1d:62:4f:5b:f6:d8:99:7c:1a:9f:59:9c:8b:8c:35:68:
f8:2d:b4:43:03:2c:b7:0c:0b:b7:de:e6:87:59:e4:8c:bb:a3:
03:7f:c8:b5:d9:8d:24:30:c6:17:17:ea:1c:a7:52:21:33:fb:
ec:2e:95:12:f5:ba:da:1a:16:0f:27:43:c0:62:c7:80:9e:51:
61:10:94:7d:2f:c7:63:92:d5:20:78:9b:43:b0:48:71:ca:91:
d0:c6:03:cb:82:db:b5:40:67:29:60:a0:22:c3:18:32:92:76:
91:6a:24:c6:28:89:4c:a9:2c:9b:06:a9:0b:00:50:45:65:15:
32:2a:ef:6b:7d:73:83:ac:c0:67:5d:30:29:6b:08:6d:c0:bd:
01:b7:51:85:79:fc:1a:11:5e:71:8e:36:9b:cc:37:ec:85:66:
11:04:4c:13:72:11:fb:17:fb:4d:69:83:d1:a3:23:9c:5b:6f:
2e:91:02:4f:af:62:40:2f:9e:30:5d:f5:59:ab:62:bc:7e:77:
7e:0c:93:b4:3d:e2:17:c0:87:29:d9:d1:96:e5:ae:e0:b6:24:
bc:22:d5:69:e3:64:08:a2:40:1d:01:bc:5d:bd:61:27:49:3a:
1a:de:93:cf:a8:0a:fe:33:b5:30:0b:f3:36:41:99:f0:b9:be:
5d:15:d8:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:04 2024 by rpki-client on console-fra.rpki-client.org