Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
File: 4tNxxKeqqFX4zDsa6oAilCCoDyA.mft (raw, json)
Hash identifier: GCyZB9ZUpdcYdNe5x/qwd/TdWziIOP9n9+jITz/bIW0=
Subject key identifier: D9:A8:C9:C0:53:CD:85:22:08:72:14:4D:95:C8:23:CF:A8:24:57:90
Authority key identifier: E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
Certificate issuer: /CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Certificate serial: 019356F69563025FA7BFA69B8F440C6F32B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 03:00:20 +0000
Manifest this update: Sat 23 Nov 2024 03:00:20 +0000
Manifest next update: Sun 24 Nov 2024 03:00:20 +0000
Files and hashes: 1: 4tNxxKeqqFX4zDsa6oAilCCoDyA.crl (hash: gISgWfot7lQgGbs6ntH/fK/bj9bT/VQkZUciF5Q0YWM=)
2: xywUy-j1hDs4WdVtiz4vZdriHlw.roa (hash: srJM4D0xoaoHeJWC1iKVMbBfIKClDiI9mjsfqm3Rl00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:95:63:02:5f:a7:bf:a6:9b:8f:44:0c:6f:32:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Validity
Not Before: Nov 23 03:00:20 2024 GMT
Not After : Nov 24 03:00:20 2024 GMT
Subject: CN=d9a8c9c053cd85220872144d95c823cfa8245790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:89:4d:30:7c:9c:92:1d:e4:1a:d1:57:b5:87:
0d:81:b0:95:a9:1e:7a:ef:6c:19:39:0f:0f:a1:2f:
d7:e4:83:72:a6:93:32:b9:e8:6b:03:08:9d:36:3f:
4f:17:16:fd:53:46:5d:44:3d:b4:22:d0:dd:f8:65:
c4:ba:19:8e:bd:a9:75:d4:c5:cc:fd:78:b7:e4:f5:
63:6f:ef:9e:c5:70:53:24:b8:db:54:c8:28:f5:70:
98:45:a4:8f:6f:de:b0:5d:bc:49:28:92:0d:b3:76:
8f:25:d4:d7:f1:39:52:c6:bb:4e:c1:72:7a:55:ee:
62:82:00:ec:fb:6b:8b:c3:71:43:0a:da:4b:b2:c0:
50:bd:44:61:34:c3:51:fb:01:73:00:0f:81:2b:41:
6a:d9:79:9d:09:a9:e1:04:4a:d1:be:6c:3e:31:db:
16:7a:52:e7:d5:1c:ed:0d:91:cd:37:40:ef:47:1d:
f5:66:8c:07:4a:f3:d9:f1:8b:63:9b:d0:d3:5e:8f:
2e:e5:b6:dd:e3:4f:4d:b2:76:87:f4:f2:8b:19:ec:
72:6d:e3:05:dc:cf:4c:5f:9f:6f:96:d7:df:2c:e4:
12:b3:98:80:6e:79:4d:3b:ab:f8:e1:af:c9:70:bb:
b9:27:21:cd:ca:4b:f4:5f:31:c7:98:eb:dd:c5:f7:
bd:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A8:C9:C0:53:CD:85:22:08:72:14:4D:95:C8:23:CF:A8:24:57:90
X509v3 Authority Key Identifier:
keyid:E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:66:13:79:9f:86:5b:1d:b5:58:c7:b2:87:2c:94:ed:0a:2c:
3f:26:e0:58:49:5d:d4:6b:6c:6d:6c:ed:96:a5:8f:12:69:66:
99:4d:dd:ca:cf:eb:13:18:f0:27:e8:f3:26:dd:dc:6c:17:f6:
c1:f3:f4:5e:40:af:0d:c1:de:8d:15:68:5c:d6:2e:3c:64:68:
ce:57:1c:7c:81:29:f6:1a:c4:9a:fc:30:02:62:7a:f0:23:d5:
fc:e9:0b:5a:9d:fd:c6:f3:69:3e:99:36:20:9a:4a:0e:80:4e:
97:4f:3e:bf:cc:85:20:4c:4e:66:c9:09:54:f5:4b:e1:d2:2c:
b9:af:6c:47:b2:4a:e7:2d:d3:e8:eb:48:fd:2e:c4:28:de:c0:
2b:46:17:59:ad:48:92:3c:36:b5:bc:67:3c:17:e4:83:3b:de:
de:a3:0e:fe:c7:3a:1d:ab:4b:f8:21:73:50:71:8e:14:41:b8:
24:f4:66:23:27:4b:c7:21:99:5f:00:46:3d:30:86:e1:d8:5a:
fb:55:d1:1e:2a:d1:67:e7:9d:56:18:73:dd:8b:c4:b6:37:f7:
ac:07:95:86:d4:c3:3f:29:b0:29:bc:67:dc:22:0a:4d:0b:00:
d4:61:be:c0:16:0f:f8:29:fa:72:8f:64:b4:31:2a:f5:3b:bb:
d3:02:d0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:08 2024 by rpki-client on console-fra.rpki-client.org