Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
File: XGGrSm35u5XP3orwdmaKWVs0HeE.mft (raw, json)
Hash identifier: MaVzaBjdA1F5riTtotOd8lzKv5xgHBXXUYJVhvjkW4E=
Subject key identifier: EE:1D:F5:B8:78:F3:F8:A4:1D:9F:CF:53:53:59:CA:50:B0:5E:B3:4D
Authority key identifier: 5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
Certificate issuer: /CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Certificate serial: 0193542C8CEAA011FAFA379179D1B713B1DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
Manifest number: 57
Signing time: Fri 22 Nov 2024 14:00:26 +0000
Manifest this update: Fri 22 Nov 2024 14:00:26 +0000
Manifest next update: Sat 23 Nov 2024 14:00:26 +0000
Files and hashes: 1: BJw2joVz3nbC0W6vPtVpsy9YBNw.roa (hash: twhxJEynK75YRhiA/t0kHdREwc9XodmuvYaSf/2XpSY=)
2: XGGrSm35u5XP3orwdmaKWVs0HeE.crl (hash: 7nFY6IYWlqVmvIKzq1QSUcw0mEv3Vl+ROPuR8TBceoA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:2c:8c:ea:a0:11:fa:fa:37:91:79:d1:b7:13:b1:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Validity
Not Before: Nov 22 14:00:26 2024 GMT
Not After : Nov 23 14:00:26 2024 GMT
Subject: CN=ee1df5b878f3f8a41d9fcf535359ca50b05eb34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f0:de:f6:e8:45:75:a1:c8:13:55:f8:a9:21:
74:86:21:f6:bc:66:f3:e8:41:d8:68:7a:90:fe:3c:
d5:fb:a9:b6:22:70:23:97:bd:db:d8:0f:ef:e1:b2:
e8:51:7b:5f:ac:1d:73:16:c7:8f:45:13:52:85:4d:
b4:78:b0:28:e7:92:bb:e2:9f:63:a3:3b:ac:1f:28:
b1:dd:2a:c1:49:60:cb:f5:73:04:32:ce:0b:b4:23:
30:f2:1d:7b:b5:5d:38:0e:38:be:c0:db:fa:dc:7b:
dc:8d:02:21:2a:05:e8:eb:92:d1:f7:fa:f4:07:c0:
65:15:67:9c:ba:1b:ce:61:67:e6:2a:10:26:d2:2a:
7b:4b:32:b9:ad:ff:4c:e8:70:0c:be:53:ac:f7:90:
57:6e:95:01:cd:3c:a4:78:ff:51:51:a9:46:5f:a8:
3f:d6:d1:06:22:3d:13:c8:4d:f6:f7:3a:3d:f6:a5:
2d:ca:ac:ab:5f:84:17:95:e9:8d:7f:c1:50:1e:76:
f3:4a:96:a7:e8:7c:df:8a:0f:cd:26:a3:d5:5b:e2:
0d:b5:e8:d8:74:c2:b1:17:9f:75:f4:e7:ea:21:73:
ad:d9:60:ab:d8:94:cf:30:00:82:cc:48:6a:c5:4b:
6a:41:66:34:b0:c0:b9:a9:da:d6:08:c2:5c:eb:52:
02:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:1D:F5:B8:78:F3:F8:A4:1D:9F:CF:53:53:59:CA:50:B0:5E:B3:4D
X509v3 Authority Key Identifier:
keyid:5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:71:f7:b6:0c:a0:fc:8e:3a:15:b5:e6:50:27:d5:95:61:d2:
7d:67:a2:76:83:18:cf:33:5f:2b:ca:20:14:47:6d:f3:49:65:
86:3d:aa:58:24:5f:a5:d5:cb:42:87:a7:d7:e1:20:d0:cd:72:
28:22:4f:7a:73:4c:cd:96:ae:4e:5e:98:d9:0a:49:b2:7e:80:
3c:12:72:47:ca:5b:68:86:7d:1a:21:54:8d:54:4e:41:4e:a9:
c9:c2:58:ae:6b:53:66:8c:37:d0:6e:eb:61:65:7d:bb:91:34:
47:2d:1a:a4:bb:66:87:6b:d4:56:b0:3c:cc:f0:f6:18:57:66:
67:91:ba:57:ee:25:c1:a7:6d:15:25:55:26:c9:b3:32:00:cb:
a3:41:8d:23:b1:11:6c:f1:c8:56:67:e4:c3:b7:59:3c:3a:f5:
95:32:b5:ee:ff:f5:fc:4b:43:cd:a1:69:c1:b6:ee:2e:ba:a0:
86:55:3c:8b:57:5e:08:bc:29:d0:bc:f3:d7:e6:53:57:48:38:
23:62:a7:ff:1b:7d:d4:58:3d:b0:ed:07:7e:1c:78:0f:9f:b2:
2e:b3:10:c8:0f:00:d1:f6:16:15:53:de:32:98:02:13:80:0c:
18:d0:85:12:10:99:37:86:77:1d:bf:6a:e6:5a:6e:c4:7d:df:
e4:83:fc:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:09:13 2024 by rpki-client on console-fra.rpki-client.org