Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
File: FAa0-f1RaOt3gegksUU-mfXmVTw.mft (raw, json)
Hash identifier: z7y9zIc+b4RB/PdRLGhfb2VLs0dtMhz/CiXh13qfJoY=
Subject key identifier: 9B:EE:22:6E:26:6D:4E:D6:31:7A:18:BE:86:49:E1:E9:9B:9D:E8:12
Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
Certificate issuer: /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Certificate serial: 019357D28EB66863AE2013CA3520C3063EA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 07:00:37 +0000
Manifest this update: Sat 23 Nov 2024 07:00:37 +0000
Manifest next update: Sun 24 Nov 2024 07:00:37 +0000
Files and hashes: 1: FAa0-f1RaOt3gegksUU-mfXmVTw.crl (hash: 4wpyXRfg2Pi7OsU7N2jHTse1az2U/XDbaAFlzZSQJVs=)
2: iQNUCKevLmFSnIQ14kaXvAbM9Ok.roa (hash: /uZqYZQMfVJ3A9U6rDqz+JwTLZgTjf2LX0X5CiC7rHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 00:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:8e:b6:68:63:ae:20:13:ca:35:20:c3:06:3e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Validity
Not Before: Nov 23 07:00:37 2024 GMT
Not After : Nov 24 07:00:37 2024 GMT
Subject: CN=9bee226e266d4ed6317a18be8649e1e99b9de812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:e7:cc:15:cc:48:75:42:49:d1:3d:42:89:be:
76:3c:68:bf:3e:8b:66:ab:32:cb:ea:ef:6c:53:d1:
1d:54:bf:61:9c:75:c6:cf:01:71:b5:2a:bd:0e:f8:
b8:b2:d2:8d:03:67:8d:53:eb:16:80:29:66:32:7c:
56:1e:b2:4f:85:15:0b:0e:15:3c:f8:85:22:b0:8c:
31:f0:9b:29:f7:71:92:be:e8:9f:9b:3e:4e:da:80:
55:7c:4b:e4:6d:94:12:75:fb:0e:eb:a3:06:b5:f5:
0c:0c:43:0f:ac:ce:d6:8d:eb:cb:40:a6:27:06:cb:
5e:16:9c:af:84:91:6f:61:4f:bc:d9:73:da:17:94:
d2:9d:e2:4d:b6:e8:66:c9:82:1d:d4:99:f6:9e:22:
50:3c:fd:9c:22:c4:63:13:b8:e3:3d:d5:24:32:47:
76:5e:0d:eb:75:4e:c5:ce:ba:db:5d:49:cf:8a:a1:
a7:e0:ac:d1:c3:d7:11:e6:4b:74:e6:cb:1f:68:f0:
75:71:83:91:07:95:fe:75:bd:aa:c3:2a:e8:c6:dc:
6e:41:78:a3:47:a6:c2:75:a7:56:eb:7a:14:b7:25:
02:74:0d:6b:b0:69:b7:a3:d0:ca:dc:0f:6b:b3:cd:
1e:47:c8:a8:b6:a5:f5:eb:80:2d:bc:94:31:9f:a5:
2c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:EE:22:6E:26:6D:4E:D6:31:7A:18:BE:86:49:E1:E9:9B:9D:E8:12
X509v3 Authority Key Identifier:
keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:2a:ab:52:0e:d6:d9:bb:00:c1:e1:2c:3b:6a:fa:36:26:5a:
2e:f1:ba:29:8b:3e:64:62:00:a4:fe:48:c4:07:5d:27:91:1e:
88:7c:f2:57:52:af:51:e4:63:6f:e1:d9:46:0d:42:0f:72:32:
ac:05:70:e1:c1:95:f5:2d:f1:27:82:30:aa:27:17:9f:48:2f:
58:1d:78:06:a2:d0:f8:4b:51:a4:38:b6:7f:1c:f7:ad:c9:b2:
27:0e:79:66:f8:e6:87:dc:17:f4:5a:2f:d9:1c:83:14:7b:34:
f2:e2:b8:04:19:0f:1c:d9:38:ee:c1:65:68:b6:1a:b5:c4:f6:
d3:e3:53:fd:bb:ae:f4:9d:0c:e1:b1:51:d9:25:0e:38:f3:21:
97:0d:72:1e:7b:b2:7e:1b:f9:de:82:30:8e:90:90:78:26:76:
f0:62:ce:a2:f4:30:b4:31:7b:4b:d2:27:cd:10:37:6b:64:6d:
f9:15:b7:9a:89:9e:90:4c:3f:59:7f:db:b9:16:a8:3e:ad:06:
91:14:6d:39:9a:ef:28:be:3b:87:62:e9:5c:1a:da:b1:e8:f8:
46:41:34:1a:a2:b2:6d:7f:f8:77:8b:ed:23:17:18:b2:17:47:
e2:cc:3d:ab:ec:2c:b2:08:67:e2:18:b6:6b:cd:af:a3:0a:3c:
21:22:71:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:11:18 2024 by rpki-client on console-ams.rpki-client.org