Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
File: o4SlYxesgXmFG1cPDjp6oEToCKY.mft (raw, json)
Hash identifier: +SXqdVlZhLH3/1+3fZImqg1Tgy7bqPeG8CegN6bANlo=
Subject key identifier: 23:B8:5C:40:50:C6:FA:CA:6F:42:E8:46:97:7E:77:5B:A1:71:6C:87
Authority key identifier: A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
Certificate issuer: /CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Certificate serial: 01935A657E2DCA054DD747769441A409F590
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
Manifest number: 0193
Signing time: Sat 23 Nov 2024 19:00:20 +0000
Manifest this update: Sat 23 Nov 2024 19:00:20 +0000
Manifest next update: Sun 24 Nov 2024 19:00:20 +0000
Files and hashes: 1: HZ3AVmfBOPXsG7V7loSqKR7gzuo.roa (hash: GtqiW8D4tozMV/X5ZTVBz7Elv4E4UzfMRn2xRw83qiQ=)
2: o4SlYxesgXmFG1cPDjp6oEToCKY.crl (hash: iwPKSd3gp2j7inHfB9n8yUBUx4oD53ptDdgAkSzbWio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5a:65:7e:2d:ca:05:4d:d7:47:76:94:41:a4:09:f5:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a384a56317ac8179851b570f0e3a7aa044e808a6
Validity
Not Before: Nov 23 19:00:20 2024 GMT
Not After : Nov 24 19:00:20 2024 GMT
Subject: CN=23b85c4050c6faca6f42e846977e775ba1716c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ac:1b:e8:7f:fe:36:d1:1f:30:57:d8:f5:a0:
a7:00:df:81:99:19:91:a9:6f:01:68:d6:b8:ff:02:
fd:f7:97:8f:f5:5b:9e:3a:cd:17:34:dc:a7:d2:9a:
c9:12:f0:26:a6:29:36:6d:d4:87:8e:c8:51:aa:0e:
a4:5b:8c:c9:53:01:e0:ab:22:f8:da:95:bc:38:0f:
9c:6a:4b:be:4c:c1:be:eb:66:17:1d:0c:b5:14:34:
22:d5:6b:40:4e:28:ea:a1:e1:76:75:1e:29:0a:43:
34:82:88:84:d0:9b:67:dd:22:91:06:cf:80:d3:cc:
18:63:a4:70:53:38:0a:cd:b7:f1:8a:50:30:cd:d2:
3f:58:29:e5:ad:f0:d7:8e:d7:13:5c:24:1b:f2:32:
72:ba:08:49:14:31:62:b4:8c:de:77:67:68:cc:55:
ad:69:72:46:16:6b:33:6b:65:5c:61:a1:a9:91:f7:
62:8b:7a:3c:d0:31:91:20:6c:b4:ca:98:01:e6:bc:
aa:00:4c:f8:18:06:a0:dd:aa:80:4d:1a:e3:6b:2f:
fb:05:4c:ed:76:3d:95:c9:58:3d:57:eb:ba:24:24:
0c:2a:f6:3b:57:39:4a:2c:f8:c3:eb:93:b8:6c:98:
6e:25:ba:72:85:d2:40:3c:b2:4a:62:99:b2:c6:f0:
76:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B8:5C:40:50:C6:FA:CA:6F:42:E8:46:97:7E:77:5B:A1:71:6C:87
X509v3 Authority Key Identifier:
keyid:A3:84:A5:63:17:AC:81:79:85:1B:57:0F:0E:3A:7A:A0:44:E8:08:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4SlYxesgXmFG1cPDjp6oEToCKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c2fbe1-dd9d-4204-9066-e225a249378e/1/o4SlYxesgXmFG1cPDjp6oEToCKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:66:d0:52:30:41:1c:ff:38:f3:ec:13:73:08:bb:ec:7c:bc:
5b:6f:55:51:2b:33:ea:89:ad:b2:14:5b:90:9b:ba:1b:32:cb:
59:78:34:7d:d9:e4:4b:5b:72:a4:39:7a:6a:11:ac:f8:af:23:
b9:a5:ee:7b:30:3d:58:c5:0d:b9:7d:fb:0c:36:33:1e:3e:6e:
8b:6f:53:93:23:fb:ed:01:62:76:d0:ac:33:55:a2:d4:9a:22:
98:61:89:b2:d0:24:a2:4d:ad:0e:b9:f6:31:f1:46:3d:55:0e:
82:b2:98:f5:d9:d4:1a:7a:a1:a2:74:69:30:a9:6d:c5:d6:93:
a4:03:86:9e:5b:e4:52:78:c2:25:fe:6b:9a:ce:3f:4e:7e:64:
5c:0e:0f:2f:0c:e1:32:4d:c1:d0:7e:db:10:d5:5d:26:aa:ee:
d6:af:55:19:13:9e:74:f0:ac:87:17:30:3a:72:ce:b2:77:32:
6c:50:7e:1b:b3:60:18:24:ab:94:56:5f:f4:ba:30:57:83:08:
c9:0b:4a:51:80:03:52:a0:ec:26:b1:b4:9c:f8:33:76:71:7f:
b1:bb:20:3c:68:3f:89:f5:44:e4:7d:d9:f4:73:46:21:cd:d3:
a5:41:55:00:09:8e:64:b1:17:91:e2:a0:3b:8b:73:f4:2e:3f:
b8:50:1f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:39:58 2024 by rpki-client on console-fra.rpki-client.org