Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: rV/wMPS3m5CCuAP71C/Yqcj1EPA6h0K/90/AImy27F4=
Subject key identifier: EB:86:CA:0F:AF:AD:C3:32:48:4A:90:E7:54:A2:A4:FA:57:07:9B:11
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 01938BC03EB9446AF6525618453E2CB1F5FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 12E4
Signing time: Tue 03 Dec 2024 09:00:52 +0000
Manifest this update: Tue 03 Dec 2024 09:00:52 +0000
Manifest next update: Wed 04 Dec 2024 09:00:52 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: T7TUB3FoLWv8S/cFAvNDzpl5LDt16qxfLtwN7/sUsUk=)
2: 9XXSi1AaOrZaaFfz8klRgpfX6kk.roa (hash: k5jYaQ9bDeH5z/+VWAZtIsbYPDwo4a+kNMroELCHYPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8b:c0:3e:b9:44:6a:f6:52:56:18:45:3e:2c:b1:f5:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Dec 3 09:00:52 2024 GMT
Not After : Dec 4 09:00:52 2024 GMT
Subject: CN=eb86ca0fafadc332484a90e754a2a4fa57079b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9c:e8:59:cb:85:be:a0:b1:8b:a1:b3:86:18:
71:e8:9e:aa:4f:44:23:22:3d:d0:07:7b:59:13:c2:
ca:08:0d:5d:96:7d:7d:b4:5b:4c:18:c4:67:e4:23:
4e:0c:07:15:b7:8a:6d:be:ff:e3:f7:06:c8:99:59:
b8:33:6d:ed:69:6d:d7:28:f7:4b:d2:3e:3f:0a:41:
eb:29:ad:c1:b6:b8:f4:72:2f:60:5b:1a:28:70:18:
dd:e9:73:2d:a5:d4:ef:84:c7:2f:79:9c:14:1d:44:
63:9f:d5:e3:5a:c2:d2:6f:b8:e4:94:f3:4f:e1:ff:
16:2d:40:49:12:bf:a4:24:6f:4d:f4:82:37:b1:5e:
a7:fb:d2:d4:8e:5d:16:a4:ba:34:58:ed:78:b2:e7:
7d:2e:9b:09:c9:37:88:57:af:4d:1c:9b:df:63:5f:
85:74:22:45:45:93:28:d0:e5:9a:ed:07:a8:d9:3e:
0a:b9:df:89:ce:19:92:02:56:f8:61:4f:47:84:9c:
ee:9d:41:c4:86:1b:5e:1d:4b:d6:9d:9e:69:c1:8c:
6a:94:8c:13:76:81:dd:a0:00:d0:25:d6:e4:35:50:
fd:f6:45:f9:b9:33:e0:be:57:c2:a5:b2:f8:91:94:
5c:98:d6:06:e6:4f:51:52:d4:88:33:86:21:08:33:
07:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:86:CA:0F:AF:AD:C3:32:48:4A:90:E7:54:A2:A4:FA:57:07:9B:11
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:ea:e8:69:2e:b4:72:07:ba:c0:28:ce:b4:f4:84:a4:05:ce:
73:a8:73:93:d8:03:46:f2:81:3c:ab:ed:35:eb:8e:a8:42:8b:
3a:e8:be:e7:6f:30:14:24:d3:6d:c2:a5:1f:d6:28:5b:b8:62:
9b:0a:d2:0c:a0:0b:22:3c:92:6d:80:04:70:2b:9f:1d:bc:5e:
3e:4f:43:9c:fc:fc:f8:f4:f9:5e:94:f8:01:74:df:b2:80:9a:
c4:93:ef:a1:da:dc:02:a8:91:ba:c2:a3:79:f0:fe:80:39:05:
88:4a:3b:bb:c1:da:3b:21:d0:ef:36:6b:3d:94:7a:7e:f0:0c:
63:02:2c:cc:3b:ac:51:e2:d0:7b:18:41:bb:26:17:7a:96:e7:
57:69:0b:01:2e:b2:33:c3:a4:a9:29:8c:4b:46:9b:d6:35:69:
b7:b6:3c:2f:91:08:b3:89:bb:39:f8:0b:79:9e:a1:02:e5:86:
31:ed:f8:fa:64:46:38:9e:48:7c:f3:f9:69:b5:ca:e9:ef:21:
b2:71:10:71:4f:43:4e:56:1e:49:ab:64:8e:4f:22:01:23:c9:
d5:04:35:41:66:0b:7d:ef:99:13:97:2d:44:d9:65:a7:0c:9f:
37:6e:46:2f:cc:3a:2d:84:32:2e:97:fd:7d:53:60:d5:b6:45:
a0:9c:7e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 14:40:55 2024 by rpki-client on console-fra.rpki-client.org