Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
File: yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft (raw, json)
Hash identifier: xHtPevQN49PgBx46xeqrODvw9efBPlrDTau+Gab4hr8=
Subject key identifier: 68:8E:8A:09:0C:EC:4F:78:81:BB:C8:BC:C6:AD:69:C6:4D:F6:A1:B2
Authority key identifier: C8:DF:33:7C:EA:56:A0:83:F4:6B:79:90:72:E7:0D:A3:45:CC:23:64
Certificate issuer: /CN=c8df337cea56a083f46b799072e70da345cc2364
Certificate serial: 0193579B8D2CE86D00B818A73EFFE1122D1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 06:00:32 +0000
Manifest this update: Sat 23 Nov 2024 06:00:32 +0000
Manifest next update: Sun 24 Nov 2024 06:00:32 +0000
Files and hashes: 1: 9Bu2KukT9oO2T-HhxjmWRL486Ro.roa (hash: falnHaE56jrNRZSXKez4heF7csC0OWl83vsJR+pPlMA=)
2: yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl (hash: uSAb2IVo2velgkOiIJa1vO7R4IMLq9bgYq2TwzlbBPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:8d:2c:e8:6d:00:b8:18:a7:3e:ff:e1:12:2d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8df337cea56a083f46b799072e70da345cc2364
Validity
Not Before: Nov 23 06:00:32 2024 GMT
Not After : Nov 24 06:00:32 2024 GMT
Subject: CN=688e8a090cec4f7881bbc8bcc6ad69c64df6a1b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b8:3e:63:3b:63:dd:e0:9e:25:3b:72:62:bb:
dd:44:8c:cb:c7:d9:4a:5f:2b:94:0d:53:b7:f4:28:
7d:89:a9:01:46:50:2e:e5:32:5f:bf:c2:a2:be:fe:
47:f8:25:6e:bc:0a:80:79:02:b4:24:ce:37:2f:06:
06:18:f5:d3:5e:9d:d3:87:e5:2f:4c:06:b1:0d:c9:
1c:1e:f5:74:78:76:e8:fa:e4:70:6b:3b:ab:73:38:
4f:65:56:a9:6c:99:05:36:67:e7:2a:af:ac:07:00:
52:a8:06:ac:53:6b:d7:10:6d:b1:b0:4a:6c:e9:65:
5e:09:7c:4e:31:4c:46:2d:7e:40:d3:cc:a9:f4:64:
79:92:b9:43:1b:27:52:71:45:b4:f0:73:20:d1:05:
ad:bf:05:4d:00:98:bd:6f:db:2b:ff:9f:a8:6a:9f:
36:a7:72:5f:25:14:e6:e8:b4:e7:f5:05:83:be:33:
32:41:9d:a5:09:af:97:a0:a4:18:97:37:1c:21:44:
80:ad:29:10:2f:7d:b2:04:25:5c:c9:47:a3:ed:81:
fe:c2:bc:26:23:69:f7:7c:ed:03:b2:a5:86:22:77:
00:fe:dd:a1:3b:90:b4:d7:b5:04:1d:cd:dd:b7:7f:
b4:ad:02:9c:96:c7:51:bb:91:ce:da:a6:6e:b4:fd:
ef:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8E:8A:09:0C:EC:4F:78:81:BB:C8:BC:C6:AD:69:C6:4D:F6:A1:B2
X509v3 Authority Key Identifier:
keyid:C8:DF:33:7C:EA:56:A0:83:F4:6B:79:90:72:E7:0D:A3:45:CC:23:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:23:5e:5c:5a:55:3c:98:90:a9:9e:72:01:d5:23:bd:ce:70:
f6:37:a4:9b:99:22:70:63:78:b1:a4:6a:c7:49:55:cf:37:ff:
17:6f:b9:9c:e2:9a:b6:13:dd:34:f2:12:35:b9:58:05:89:2c:
be:6e:8d:77:a6:26:48:fd:f2:7e:7f:f4:6b:63:21:b7:43:ee:
43:77:ea:4f:2b:2e:50:62:ed:3b:52:54:0c:7a:cc:d4:54:98:
43:cc:cc:31:c3:d3:7f:60:24:4f:01:67:54:6c:64:34:91:86:
4c:b1:ae:09:b3:ac:00:18:ad:c1:be:d9:04:68:e2:7b:f6:f8:
02:30:d5:6e:de:a5:54:a4:52:dc:db:6d:5f:59:21:4a:a4:ca:
dd:d5:d1:6d:43:1c:1a:c1:57:ed:b6:d5:f2:27:ee:b5:12:af:
cd:5a:ee:4c:a7:c8:cf:5a:23:42:af:d9:46:98:fc:51:51:2e:
80:da:20:ee:06:8e:eb:94:be:d8:e2:55:91:e3:d8:72:3b:f0:
da:11:91:6e:6b:44:22:d1:1b:1f:c3:bd:8e:f9:31:3f:31:8c:
b0:af:9d:9d:df:eb:0b:53:5e:1e:95:2a:7f:c9:8d:9f:de:f1:
a2:7e:cd:7c:4f:51:22:02:7d:33:86:e8:69:4f:61:40:8b:b3:
59:29:04:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:11 2024 by rpki-client on console-ams.rpki-client.org