Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: KUdXIY2CCAzmEiFBTBDwymvuMa/mC4ucqZhu1Grq7jU=
Subject key identifier: BF:04:44:94:4E:2F:FA:6F:D3:A2:FE:BF:2C:01:E0:54:DE:A3:54:54
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 0193549A58EB2F69899CB308A52963E9F8EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 1302
Signing time: Fri 22 Nov 2024 16:00:21 +0000
Manifest this update: Fri 22 Nov 2024 16:00:21 +0000
Manifest next update: Sat 23 Nov 2024 16:00:21 +0000
Files and hashes: 1: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: 2xLjsFERG64ifv1Yx61Ipoio8vIh1mvRKFmfeCvgCN4=)
2: gKm7vDseh63AP9vWAvHQSyo9xW0.roa (hash: SNLKm/MMUzGxAauHrflUScArsN1mDoASex5cfaO+0hI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9a:58:eb:2f:69:89:9c:b3:08:a5:29:63:e9:f8:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Nov 22 16:00:21 2024 GMT
Not After : Nov 23 16:00:21 2024 GMT
Subject: CN=bf0444944e2ffa6fd3a2febf2c01e054dea35454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bb:8e:b5:ca:bc:dc:fb:bd:5b:13:02:30:8a:
fd:73:1f:d0:b7:f3:47:06:95:2b:b2:ab:bb:ff:3a:
1e:13:51:48:c8:a1:2e:6e:2f:7e:a3:27:08:20:51:
1b:a4:19:17:43:d8:09:3e:50:06:f3:25:1c:3a:c0:
71:23:fe:6e:23:4d:8b:10:a7:df:87:b9:f9:00:f0:
56:f2:1a:94:87:f9:23:89:95:6d:bf:ca:7c:88:bb:
d8:76:b4:16:8d:e3:b0:12:2c:fd:ef:53:2b:bd:7c:
32:f8:70:0b:54:26:99:49:22:46:ef:d9:53:20:b2:
f8:e2:10:dd:0b:05:9a:6d:53:a0:c1:b4:a0:5f:50:
1a:3c:c4:36:03:95:23:73:d3:35:13:bb:eb:cf:2f:
76:c8:6c:2a:55:d9:24:20:8e:9d:45:90:5a:b8:34:
80:67:50:75:d8:3d:48:9c:9a:3c:98:51:6a:58:cb:
82:a0:30:30:2f:46:75:df:d1:4c:02:ed:99:48:13:
56:8e:17:5d:7e:4a:9d:13:eb:ab:bd:d0:87:3f:08:
da:47:09:da:44:6a:0c:72:6b:82:bc:85:4b:a1:b4:
62:09:53:a4:e2:34:a1:71:78:d5:2c:c4:20:a6:38:
c9:32:1a:8d:f7:27:ba:8a:8f:fb:93:60:eb:60:95:
9b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:04:44:94:4E:2F:FA:6F:D3:A2:FE:BF:2C:01:E0:54:DE:A3:54:54
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:cd:8e:24:55:60:8a:e7:4f:20:f8:51:f3:f9:c7:5c:11:7a:
f4:9e:17:f6:ec:de:86:d2:9f:35:f0:a7:5a:1b:8d:21:b9:11:
53:67:82:b2:9f:32:f7:0b:ca:13:91:99:67:f5:80:8e:e0:f0:
70:c2:60:66:9e:ae:da:0d:bf:b3:e3:f4:40:99:07:18:d7:8b:
b2:cb:4e:df:63:a7:07:59:2c:23:08:e5:b7:60:7a:5b:b1:92:
cd:56:08:17:41:69:17:30:04:35:4d:4c:0b:13:7e:9d:33:e2:
a1:5d:56:cc:8e:c0:14:ed:d9:6c:87:3d:cc:2f:bc:bc:9f:8b:
98:be:f4:5a:19:2a:93:d3:5b:d3:12:ec:6e:2f:be:e7:c1:00:
94:f6:5e:4e:14:99:35:d1:32:37:cb:e2:35:c0:9e:5d:a5:d7:
f5:30:da:2d:8f:a4:0d:3f:1c:a4:7b:92:ad:b2:bb:fc:40:7e:
83:c8:fb:cd:53:63:e6:4e:3a:5b:c0:74:c6:30:54:25:d7:ff:
11:b9:d1:ca:a2:18:47:41:5a:a7:f6:57:86:1a:74:52:b1:f7:
9f:f5:43:fe:38:96:4c:52:49:c2:00:85:7b:c7:61:ae:29:a6:
90:85:2e:1c:85:2e:c6:ff:17:48:e4:42:33:2c:fc:72:2f:f9:
64:26:45:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:05:51 2024 by rpki-client on console-ams.rpki-client.org