Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: 5Z7Ju7JoHIu7RSIl0lAufYgrX+IGh4rklFBvsWuwioY=
Subject key identifier: D2:83:8A:2D:9C:70:07:47:B7:D2:A7:08:E1:2C:89:78:52:38:CE:94
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 0193572D895DD52C16144C21602C8B79B681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 0DC3
Signing time: Sat 23 Nov 2024 04:00:22 +0000
Manifest this update: Sat 23 Nov 2024 04:00:22 +0000
Manifest next update: Sun 24 Nov 2024 04:00:22 +0000
Files and hashes: 1: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: iwEkeLt03jTbPCKFBfs/aq7IW9MnT1GiXx/N76wyYjg=)
2: ZzkgKBt8osL2jS6WqXWiWojvYXE.roa (hash: 13JNe9cdpc50MtnFe7Jo/SOXuaCf/OjrCfwP/kE4Flg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:89:5d:d5:2c:16:14:4c:21:60:2c:8b:79:b6:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Nov 23 04:00:22 2024 GMT
Not After : Nov 24 04:00:22 2024 GMT
Subject: CN=d2838a2d9c700747b7d2a708e12c89785238ce94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:03:4a:bf:f5:6f:61:c0:e1:eb:b0:54:6e:6b:
48:7e:4d:a7:9a:0f:a2:7d:63:56:69:32:47:40:4d:
43:25:e1:bb:de:d8:eb:d9:e8:ed:0a:96:f2:f3:62:
24:e3:ae:29:c7:c0:3c:2d:7b:0a:14:32:55:f5:d1:
a2:9f:e0:28:80:57:fe:c1:fd:e4:3b:3f:08:60:81:
42:6c:3e:2a:08:a9:6d:c3:11:82:bf:c9:6f:fc:32:
82:e4:01:3d:c1:33:8c:34:4f:e4:a6:be:06:7c:9e:
fb:f7:40:23:79:48:2b:0c:3d:bf:15:9d:58:30:ac:
89:d1:80:55:13:82:ec:1a:f5:fa:cb:bf:61:1b:da:
8d:d9:08:ec:0f:18:f6:37:cf:b8:3d:09:06:a1:77:
ff:e8:8f:7b:55:1c:8c:38:37:28:cd:b6:9c:68:d5:
9b:a0:2a:1b:a9:60:4b:cc:d5:1d:34:13:ac:16:59:
95:ec:44:76:62:3c:5c:52:3f:da:f2:1d:0d:92:5b:
42:de:46:bc:44:18:15:20:ab:a4:44:d4:b8:56:33:
41:6e:4c:8b:73:bf:9a:c6:d0:0d:26:9a:79:0a:f5:
e6:e0:63:bc:eb:27:99:1b:9d:fb:17:cb:51:2d:39:
ba:48:60:97:f8:81:28:78:53:09:4a:b9:69:19:94:
eb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:83:8A:2D:9C:70:07:47:B7:D2:A7:08:E1:2C:89:78:52:38:CE:94
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:80:58:a0:02:f6:83:3c:a1:2f:6e:bc:9f:43:fe:f8:f2:ab:
81:37:58:ec:86:70:22:9d:9e:a9:de:4b:8e:57:e3:6b:65:18:
c0:40:d1:32:de:74:30:e5:64:fe:c1:f8:01:d1:b4:10:50:8a:
41:b1:2c:dc:80:60:19:39:76:52:56:49:05:a8:4e:51:99:c0:
9e:66:12:b9:58:17:d4:87:f4:02:56:98:4d:8e:43:ae:c0:64:
86:d8:32:5a:6d:d5:cc:6f:30:45:03:e5:2d:bf:5e:b7:4d:21:
32:9f:27:86:f4:76:29:6b:7b:ed:72:1a:3a:37:9d:36:40:fd:
44:66:93:c7:9f:16:aa:39:3b:dc:39:b8:f2:5a:18:56:dc:a0:
0f:80:f1:e6:ff:35:c4:cc:2e:2f:09:86:43:c5:10:5a:3e:23:
e3:58:69:ec:ad:95:91:cd:63:5c:d5:56:d8:55:88:22:01:e8:
5a:ff:b1:4e:02:bb:d5:85:73:47:53:f6:ae:fd:a8:a4:ed:5c:
90:3c:28:25:c1:f1:26:81:d2:16:d5:09:05:71:ee:60:e9:95:
8b:2b:de:63:77:9b:66:50:e5:cf:ff:c4:91:82:09:2e:7f:37:
30:79:26:c9:87:bd:b7:ee:a3:8e:92:c9:e5:b9:c5:8c:32:15:
41:3c:93:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:39 2024 by rpki-client on console-ams.rpki-client.org