Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
File: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft (raw, json)
Hash identifier: rpnSlVhvWaOAe1Fmv2YnHfwkakhvmfzVjT/6CFXj414=
Subject key identifier: 19:24:AE:FA:2B:E7:17:17:E8:23:5D:EC:61:C8:F6:7E:40:31:59:23
Authority key identifier: A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
Certificate issuer: /CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Certificate serial: 0193572DBC6D8C6B15A21EA4D571D2754038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
Manifest number: 107E
Signing time: Sat 23 Nov 2024 04:00:35 +0000
Manifest this update: Sat 23 Nov 2024 04:00:35 +0000
Manifest next update: Sun 24 Nov 2024 04:00:35 +0000
Files and hashes: 1: 8AJlVcAE2xjz_r9Z4Qb8xBWccjQ.roa (hash: YZS6YFKIRd7n7yVG1iqrkvs6kxOLSQ0Z/2fVA+kDv/Q=)
2: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl (hash: JNRL3ZqD9POGkaHKUJFuDBEunShmtylkiCuli3CQ4tU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:bc:6d:8c:6b:15:a2:1e:a4:d5:71:d2:75:40:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Validity
Not Before: Nov 23 04:00:35 2024 GMT
Not After : Nov 24 04:00:35 2024 GMT
Subject: CN=1924aefa2be71717e8235dec61c8f67e40315923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2a:04:cb:ee:e0:e2:87:80:aa:7b:01:2b:f8:
ac:71:ca:56:80:71:0d:b2:f2:b1:8a:67:99:d6:c8:
e0:d8:b9:2f:c0:9b:b8:37:46:b9:c9:15:59:6e:b7:
ab:92:67:5e:19:0a:16:f6:68:7a:71:fb:55:59:c4:
10:15:00:db:ef:b9:a6:93:85:f9:0b:b4:c3:86:00:
9f:7c:ee:ae:ee:0a:42:17:2e:16:2f:21:97:d3:b7:
7e:79:0a:89:44:cb:3c:1c:0d:e7:48:72:c8:d1:73:
39:1d:8e:35:6c:44:29:ab:fb:75:5d:6d:c9:19:ce:
4f:2b:8e:cd:75:2e:56:d3:5f:f5:54:d5:05:98:02:
ff:44:cf:de:9e:96:10:f8:ae:87:df:19:d3:d7:d7:
74:74:48:92:f3:d8:26:b7:4b:60:5e:fa:52:fa:53:
12:c3:15:5c:82:64:04:b8:1b:64:47:96:27:26:2d:
91:e4:fe:e7:87:1e:7e:e8:9e:fd:0c:7f:8b:50:f1:
de:31:f7:06:51:67:30:4d:6b:12:f3:41:16:7b:8a:
23:77:fa:3e:b9:e8:c5:5d:8f:b0:a0:ce:02:9e:5d:
64:1f:cf:79:69:2d:98:7e:49:85:8d:8c:2b:63:00:
1b:e8:6d:ef:8c:a3:91:99:a6:df:33:a7:58:59:62:
66:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:24:AE:FA:2B:E7:17:17:E8:23:5D:EC:61:C8:F6:7E:40:31:59:23
X509v3 Authority Key Identifier:
keyid:A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ef:02:44:4a:59:f4:83:d2:9b:32:03:6b:04:ee:ce:ac:f4:
59:dd:32:8f:3a:06:ed:1f:f0:8c:da:df:c0:2a:78:0f:c7:55:
da:d8:3e:a7:93:c1:f7:7d:85:ba:5c:f7:b7:f5:c6:6a:ad:2f:
58:47:9c:1f:1c:8a:fd:6d:1b:91:6c:52:a1:14:55:50:9c:74:
30:2a:43:6c:af:dd:b0:4e:34:bf:88:64:77:0f:6e:49:80:fc:
82:c3:d4:32:aa:04:f5:9d:57:d0:c9:77:77:21:9f:db:13:91:
54:1c:cc:2f:68:4d:4c:4c:2c:3f:85:03:f4:f1:4c:a2:af:2f:
41:a7:1e:04:c6:b9:2a:d4:c4:8e:a3:a1:0e:63:84:60:fe:e5:
80:78:80:82:6a:07:d9:10:61:2d:19:db:f0:47:1f:78:eb:09:
df:85:19:88:47:50:8e:5c:5b:b9:73:a2:b3:2f:45:39:1c:b4:
ad:dc:c3:57:92:f3:80:5e:e8:cc:81:e6:d3:d5:4b:8f:83:28:
f1:2f:2b:91:0c:16:33:a1:3c:b4:39:7d:48:52:00:b1:71:a3:
cb:ba:1b:f3:ae:1e:aa:12:e6:84:b2:9c:d0:d7:d5:b5:99:a4:
a3:88:7e:46:42:1a:b8:f8:27:8d:55:d0:4b:78:dc:2c:f4:a8:
20:fc:e0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:14 2024 by rpki-client on console-fra.rpki-client.org