Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
File: 2okNBdXIi33m9bqkwdCF_nMB9dU.mft (raw, json)
Hash identifier: PQhpKjEvNPkjap9ZjmKTed0SCFW7OoByZg/kb5oEiPA=
Subject key identifier: 5C:0C:6A:53:15:5A:2C:11:B9:AD:F5:FA:E9:BC:F9:11:95:0B:D0:89
Authority key identifier: DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
Certificate issuer: /CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Certificate serial: 0193576492D358EABC765DEE05AD2E0855F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
Manifest number: 07C8
Signing time: Sat 23 Nov 2024 05:00:29 +0000
Manifest this update: Sat 23 Nov 2024 05:00:29 +0000
Manifest next update: Sun 24 Nov 2024 05:00:29 +0000
Files and hashes: 1: 2okNBdXIi33m9bqkwdCF_nMB9dU.crl (hash: sUlA8qy70UNa/tptzqpkLGXg+Fqt/46ZHEuui/Rjs+0=)
2: vD0H6X3chERfPno0j5PdflSU_gc.roa (hash: dcY2W9Vyf68Gzt8Yw4qsFcK/yADPHS7kxzPqZIQbVkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:92:d3:58:ea:bc:76:5d:ee:05:ad:2e:08:55:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Validity
Not Before: Nov 23 05:00:29 2024 GMT
Not After : Nov 24 05:00:29 2024 GMT
Subject: CN=5c0c6a53155a2c11b9adf5fae9bcf911950bd089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8f:ef:fe:ba:d3:d4:c5:0d:90:16:35:f2:d5:
21:da:ee:30:ff:59:1f:b7:fe:26:ad:54:ec:2a:c5:
cd:76:45:43:58:a1:c9:b9:2a:72:33:d0:78:5d:9a:
91:e1:0f:c1:db:62:29:7a:a8:f2:37:d8:ec:24:ca:
20:87:4e:da:9d:2d:fd:ed:70:03:aa:cf:f7:6f:63:
0c:96:c1:fc:60:6e:7c:cb:b6:90:19:54:f5:ca:63:
4a:d0:36:1a:4d:28:b0:69:6c:b8:ac:ff:aa:9d:f7:
fb:7c:65:9a:0b:09:df:16:18:f3:69:03:bf:81:d4:
6c:92:c6:df:f3:c6:7b:61:50:80:3b:a4:d7:60:2d:
ea:74:1c:05:c8:7d:5f:e4:d3:76:19:1b:2e:5e:c7:
61:0a:1f:1c:6f:e4:b2:a9:5b:b6:23:7e:ec:64:08:
bc:85:c4:cb:f9:9e:45:c2:95:27:75:48:07:d9:d8:
39:d0:3a:8d:99:ac:97:c2:f3:a3:16:32:7d:ea:48:
a2:38:e4:86:a8:ac:9d:47:57:36:d0:35:54:4e:74:
ba:c2:dc:28:0a:e6:1c:e9:ea:cc:20:94:08:cc:1b:
10:d9:bf:cd:bd:45:bc:82:3b:cc:7e:ed:3a:4b:38:
32:e8:d9:09:ec:54:3b:89:e3:c8:a7:48:63:b5:ed:
df:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:0C:6A:53:15:5A:2C:11:B9:AD:F5:FA:E9:BC:F9:11:95:0B:D0:89
X509v3 Authority Key Identifier:
keyid:DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:a7:01:38:b4:26:4a:8f:3d:f9:15:4d:e1:99:ae:3d:06:cf:
2a:48:4a:59:98:df:62:da:32:ec:d5:12:0e:b5:19:51:14:40:
fb:d1:15:97:a2:d2:d2:0a:30:c2:1d:52:3b:b8:c4:71:a0:87:
29:ec:30:6d:c0:83:46:95:c9:45:ff:d5:22:cb:86:b0:43:a5:
35:37:9b:3b:ca:6b:17:c0:ea:67:ff:b8:a6:de:89:76:c2:d6:
2c:85:50:a9:30:5f:7a:05:df:fd:2c:e4:28:8b:3b:be:f1:4c:
d1:53:cb:ff:50:1c:51:9e:65:56:e8:8e:b5:37:f5:2f:78:7b:
f7:fe:0f:71:4d:19:44:4b:89:64:65:bd:82:a5:a0:66:f4:2e:
3c:d5:af:6b:4f:c0:24:ea:4a:25:37:02:98:fa:0d:ce:29:18:
a3:c4:9c:91:2b:44:f5:2c:6c:c5:18:c6:3e:43:e6:0c:50:fc:
4b:92:e7:6d:d0:75:9b:c4:8d:48:46:2e:ea:a5:63:71:fe:0f:
f4:8a:f8:61:c0:63:3d:44:7b:4c:1d:9f:f4:01:60:22:17:72:
cc:1a:7b:13:fb:32:07:58:5d:14:5d:f3:79:4a:ab:3a:e3:87:
90:68:1c:aa:bc:10:fe:4c:a7:6d:32:ae:b7:73:45:3a:dd:7e:
90:15:c1:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:16 2024 by rpki-client on console-fra.rpki-client.org