Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: j+Zg7HRqPvk7jnJDrDPTFjG2NefCYOGOAqzQjIsi8qg=
Subject key identifier: F9:70:1F:93:E0:91:D5:C2:AF:90:B7:91:58:C5:49:56:AF:F9:40:AD
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019369DAB1957546F2D3C6258DC0EBE67FA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 0D25
Signing time: Tue 26 Nov 2024 19:02:40 +0000
Manifest this update: Tue 26 Nov 2024 19:02:40 +0000
Manifest next update: Wed 27 Nov 2024 19:02:40 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: M47tOU6c3V+C+eOuqDL8RuK/+gx6vn+wTr0d8kz5eLQ=)
2: CMZjGcXgzb5XfN7a3tikJxjVQQc.roa (hash: T008GEva0pu8+91tVEhSOGj6h0vPJ7ksXJwX0XNOWkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:b1:95:75:46:f2:d3:c6:25:8d:c0:eb:e6:7f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Nov 26 19:02:40 2024 GMT
Not After : Nov 27 19:02:40 2024 GMT
Subject: CN=f9701f93e091d5c2af90b79158c54956aff940ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:39:67:46:83:ea:3b:a1:21:33:ff:87:3a:d9:
c1:f7:c8:cb:fa:56:5f:de:bd:ed:ab:1e:fa:e8:1b:
af:56:4b:b1:95:72:d3:4b:da:7d:37:4e:bd:03:6d:
48:4e:09:1f:fd:5f:db:21:87:0c:d4:6b:67:46:95:
05:76:1c:94:69:51:b7:b7:3c:f4:59:f3:80:cd:6f:
3b:14:7c:57:56:11:8b:f5:b6:af:3f:72:5b:0d:9c:
42:35:ca:38:ae:91:d7:57:61:0c:21:86:c7:d2:a1:
fb:74:1c:f3:62:fd:b8:b6:8d:dd:1c:5a:87:09:5f:
bb:c9:29:b5:3f:2f:9f:de:b8:5c:93:c4:90:36:4d:
aa:2c:65:78:0d:61:a2:9c:04:08:1e:4e:cf:b4:c3:
a6:f0:51:d1:ac:8f:9e:56:2a:ca:67:08:b2:4f:7d:
ad:f0:e0:b2:3d:31:ff:00:bb:20:66:06:ec:19:7f:
5c:51:dc:a3:75:94:b7:44:73:44:9e:e6:b1:55:2b:
23:f3:37:86:4e:b1:70:c0:14:bd:91:23:81:37:d7:
96:6b:6c:22:9b:0c:92:04:b3:5c:3f:35:c9:b9:ac:
3a:4b:f2:76:8d:89:34:35:05:e6:d5:3b:66:e1:2d:
41:a6:eb:c3:6e:eb:88:2c:08:02:6d:3b:12:a4:b6:
c8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:70:1F:93:E0:91:D5:C2:AF:90:B7:91:58:C5:49:56:AF:F9:40:AD
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:ec:29:dc:49:06:92:8a:7e:e8:b2:98:0e:ab:8f:4e:7c:4e:
3f:7f:a1:19:56:70:fb:c4:8c:16:3f:b9:2b:0d:c4:55:b3:a6:
b9:1a:08:93:91:29:90:12:a5:d4:ba:0e:9b:b1:ac:c7:d9:d2:
29:a7:1f:c6:46:16:4a:0f:74:2a:80:f9:16:18:3f:da:0b:27:
57:66:30:51:b8:7b:d3:15:46:19:cc:06:0f:91:f6:d7:0e:5a:
79:72:45:54:4a:b9:70:a4:ca:29:48:f3:6b:11:85:0f:96:ef:
36:40:02:47:21:f6:d8:f6:f2:33:44:d8:3f:d8:98:fd:ef:d4:
f8:f3:d7:3a:31:9d:88:79:41:e8:89:d5:d3:db:92:4b:d4:a4:
fb:37:2e:0f:be:a7:24:75:d5:01:b8:c9:23:30:06:60:cc:a0:
13:df:b5:e8:b7:30:a8:70:d9:dc:a0:4c:93:d6:c0:4f:8b:b2:
4a:fa:f3:10:8e:13:9d:de:2c:62:28:bd:67:36:ce:04:6f:97:
c4:2b:19:a5:0d:83:3a:05:4e:c5:14:c0:16:93:aa:d1:39:fc:
cf:d1:26:2a:fb:35:9b:d7:d2:f9:1d:b5:b0:6f:f1:16:d5:40:
ad:b7:af:69:71:41:76:88:ab:49:63:e2:b5:6e:7b:37:a8:be:
4b:00:e9:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:19:07 2024 by rpki-client on console-ams.rpki-client.org