Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
File: FyKJy7gXn9846fUyyc1ykbT1xC0.mft (raw, json)
Hash identifier: pDKx8eM0hVZkJe3pI5aXTVjVJWd6dgClSv3KEf9yASo=
Subject key identifier: 23:B9:AD:03:F5:D8:67:BC:4B:20:1C:E7:59:C1:E2:76:DB:EF:53:79
Authority key identifier: 17:22:89:CB:B8:17:9F:DF:38:E9:F5:32:C9:CD:72:91:B4:F5:C4:2D
Certificate issuer: /CN=172289cbb8179fdf38e9f532c9cd7291b4f5c42d
Certificate serial: 0193523E1D51B4FB0329938E5984EEA89439
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
Manifest number: 095D
Signing time: Fri 22 Nov 2024 05:00:22 +0000
Manifest this update: Fri 22 Nov 2024 05:00:22 +0000
Manifest next update: Sat 23 Nov 2024 05:00:22 +0000
Files and hashes: 1: 5Zl5VdNkReeiijutw2HWIQgghX8.roa (hash: qfAJ3SdJqxoOJalouWEqu4zHBV0ZbtsGQj+0fHm1v9I=)
2: FhogoCENu0T-5svsCluSq5_Mmhw.roa (hash: Ek13DWQxesR3cOF2awdraqbrc37df7AfuosFB4F2rRQ=)
3: FyKJy7gXn9846fUyyc1ykbT1xC0.crl (hash: 3zbKT71VR2seflDZOydSrlrp+9u3OeH6wAeuVIcZArU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:3e:1d:51:b4:fb:03:29:93:8e:59:84:ee:a8:94:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172289cbb8179fdf38e9f532c9cd7291b4f5c42d
Validity
Not Before: Nov 22 05:00:22 2024 GMT
Not After : Nov 23 05:00:22 2024 GMT
Subject: CN=23b9ad03f5d867bc4b201ce759c1e276dbef5379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9d:50:32:93:dd:ed:d9:5e:61:2e:b8:3b:d5:
a5:57:8e:b3:10:78:86:13:a0:81:79:d0:a2:2f:d2:
c0:6b:4e:82:2a:5d:6b:b5:55:4f:29:cd:ac:e6:47:
de:ee:67:59:9d:c4:06:26:4e:66:dd:0c:09:54:e4:
1c:83:a3:27:ef:15:5c:81:90:24:d3:71:8e:11:fd:
34:8a:58:7d:44:75:78:29:41:7a:d6:5e:9a:6f:04:
10:15:0f:8b:67:c2:af:3f:31:70:d6:0b:09:7b:ed:
9c:87:04:7e:53:ad:34:f5:99:8d:c4:16:53:9b:21:
b2:21:7b:dd:c8:1b:7e:b6:6d:f4:4e:f6:e8:45:56:
6e:e3:6f:b9:a3:36:75:3a:be:e2:22:ab:ef:c1:4c:
fb:13:bf:e6:92:72:a4:34:46:fa:db:e0:c5:7b:05:
61:a0:c8:26:ce:5a:a5:90:6d:56:a7:0b:6d:1b:7d:
7d:e2:2a:c4:e7:24:c9:b1:67:68:96:46:cc:91:cd:
d6:74:b6:ff:90:a6:e1:0d:d5:67:2e:4f:4d:9f:23:
22:30:46:70:b6:e4:43:50:d4:cc:d2:37:7b:99:04:
6f:fa:5c:25:28:94:58:af:16:ce:11:70:cf:6e:be:
78:92:64:a0:50:17:00:c5:fe:11:61:4b:fe:5b:6c:
00:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B9:AD:03:F5:D8:67:BC:4B:20:1C:E7:59:C1:E2:76:DB:EF:53:79
X509v3 Authority Key Identifier:
keyid:17:22:89:CB:B8:17:9F:DF:38:E9:F5:32:C9:CD:72:91:B4:F5:C4:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:45:38:ac:e6:43:47:19:d1:79:8d:af:23:d5:8f:8e:2f:8f:
41:a4:41:d0:bb:0e:30:ed:0d:d6:87:f3:ad:4b:f8:bd:4d:7b:
66:73:18:6b:a6:8f:b0:6c:bb:1f:7a:95:32:6f:08:83:94:fc:
51:0e:89:4d:f8:4b:18:b3:6d:42:63:9d:35:f1:55:d7:94:5a:
99:3e:8b:e4:14:b2:b1:d4:fc:c5:01:58:a0:04:c4:e3:31:5c:
ca:fb:cd:a7:ce:21:64:e1:2d:7f:c5:d2:9a:c8:7f:9a:19:c1:
24:39:40:56:a6:8e:43:27:84:a4:ee:37:a5:5c:9b:8a:05:56:
5b:08:63:d3:42:27:be:00:72:90:c1:d1:e5:58:d6:e2:37:e8:
72:27:72:03:b7:54:7b:c2:7a:6d:b9:24:7c:0a:b5:fc:c1:03:
4a:74:8a:97:8b:14:65:92:24:f4:58:02:df:c8:ac:30:70:ae:
f1:bc:0a:d7:f1:4b:6a:41:03:be:a9:0f:de:b1:e4:09:dc:81:
21:d3:23:83:44:b5:76:d2:95:b0:9c:86:48:94:2f:d1:b8:e8:
e9:4b:25:53:f1:52:13:9f:9f:20:e5:36:bc:ab:a5:93:28:5b:
54:1a:62:95:1f:9a:a3:12:51:8a:7d:6b:3a:bc:4c:22:d4:d2:
91:f2:5e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:51:43 2024 by rpki-client on console-fra.rpki-client.org