Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
File: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft (raw, json)
Hash identifier: 4aYsG3VolnMybTmLyfk4SYdsWGb8JJkYrt3Phk8d300=
Subject key identifier: B8:E4:A0:30:E0:FD:23:D2:48:91:B2:E1:BC:B2:44:36:E6:16:4C:5F
Authority key identifier: D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
Certificate issuer: /CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Certificate serial: 01935689426D14B6985E96C1923C04E5FC64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
Manifest number: 10B3
Signing time: Sat 23 Nov 2024 01:00:56 +0000
Manifest this update: Sat 23 Nov 2024 01:00:56 +0000
Manifest next update: Sun 24 Nov 2024 01:00:56 +0000
Files and hashes: 1: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl (hash: nji7PwCZZf+VAEE67K4UxEzeP6NfmpAGl/pQ+wFgU0I=)
2: FDDIx9KhLAsg6zHqxdAb7TxzVk4.roa (hash: wG0s0SWMxXHMZgZr1IdtwEydq3mvcNJrOezrPwllGqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:42:6d:14:b6:98:5e:96:c1:92:3c:04:e5:fc:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Validity
Not Before: Nov 23 01:00:56 2024 GMT
Not After : Nov 24 01:00:56 2024 GMT
Subject: CN=b8e4a030e0fd23d24891b2e1bcb24436e6164c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:02:9b:fc:d3:87:63:82:ba:6c:76:75:fd:16:
96:24:3b:83:a8:cc:22:d8:30:5c:3d:9d:2a:c9:e8:
06:1a:b1:e7:12:56:4c:c0:b3:2d:f8:b7:58:75:f3:
9f:07:69:65:62:50:39:46:09:49:dc:4f:92:46:a8:
ef:0b:a5:e0:ee:21:83:9f:6d:58:5f:7e:c5:a6:ee:
3c:17:33:35:7e:1d:e2:e3:8c:2a:aa:f2:31:51:61:
17:e5:96:be:3e:89:21:21:0b:04:89:48:fe:a6:f2:
59:d3:ef:ee:f1:e7:09:d4:fe:4b:36:63:f4:26:4d:
d1:2f:68:4f:fd:6c:e2:b4:0d:3b:63:c0:32:35:32:
ae:cf:eb:98:0b:cf:f8:c8:fe:14:c0:d4:cb:9e:7f:
61:45:a1:81:bb:d0:90:00:b4:73:86:83:d3:69:f8:
52:fd:21:f1:81:86:a1:e3:6e:1a:f0:69:16:03:f6:
a8:dd:58:b0:01:97:c1:3b:51:d1:27:39:1d:7c:f4:
2d:a3:73:29:61:35:d8:4a:10:11:89:3f:32:b7:64:
b6:f2:36:8c:35:80:78:b8:b5:e3:34:54:fb:1c:d4:
3b:3a:5a:b9:5a:16:12:6d:2e:cc:94:6e:4d:d6:d8:
0a:0d:b5:ad:d5:44:d2:89:83:9b:ca:8c:c1:0c:e3:
8c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E4:A0:30:E0:FD:23:D2:48:91:B2:E1:BC:B2:44:36:E6:16:4C:5F
X509v3 Authority Key Identifier:
keyid:D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:de:38:09:27:d0:da:f2:f5:38:0c:dd:79:78:2c:f4:a1:e2:
c9:57:2a:a0:42:f6:59:d8:db:7c:26:63:0e:a4:a5:ec:64:85:
b7:c3:38:70:b6:c0:6b:30:09:f1:c8:64:e3:7d:08:8d:2d:c2:
9f:46:2a:f8:40:8f:e5:c5:e5:ec:03:db:31:aa:94:ef:92:35:
1b:44:a5:39:96:c6:58:75:92:82:95:6b:a7:44:af:ac:27:94:
d6:32:1e:d3:83:a6:79:58:3c:58:e4:a5:39:09:f9:8b:0c:5d:
70:76:4f:61:75:8d:8b:10:48:4c:9b:4b:ee:cf:22:fd:6e:36:
19:61:40:80:21:ab:b8:3f:13:b9:67:48:af:30:a4:0f:c4:e5:
99:92:bb:4b:18:fd:20:50:5d:c8:fc:e7:c1:d0:5b:0d:39:4c:
59:51:29:50:78:c8:c9:d4:de:25:e6:e0:42:bc:ea:00:59:fa:
6f:98:e2:4a:d5:ba:83:ec:d0:77:34:d2:9a:e8:3f:4c:2b:29:
fb:a8:14:b0:6d:0a:8c:32:01:f1:0c:b3:ef:50:f8:df:44:19:
60:9b:48:f0:0c:7a:38:36:63:e9:c5:18:e2:87:8c:8c:0e:03:
b8:04:91:57:45:04:5b:41:e4:85:d0:0d:4e:0d:f2:2f:da:5e:
f0:50:e4:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:21:01 2024 by rpki-client on console-fra.rpki-client.org