Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft
File: 9kixVYLTS9UXCp3RO4EyW6uuXjo.mft (raw, json)
Hash identifier: U6I9enz018kKe2KzTnVS5N6/fsa5wEpOy6nzNiIl/CE=
Subject key identifier: E1:69:51:97:86:A5:6C:9F:3F:93:A5:5A:58:54:A2:A3:36:B2:02:A5
Authority key identifier: F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A
Certificate issuer: /CN=f648b15582d34bd5170a9dd13b81325babae5e3a
Certificate serial: 019355E400566333DCFFCA71B0DEFB7DA92E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft
Manifest number: 1370
Signing time: Fri 22 Nov 2024 22:00:25 +0000
Manifest this update: Fri 22 Nov 2024 22:00:25 +0000
Manifest next update: Sat 23 Nov 2024 22:00:25 +0000
Files and hashes: 1: 9kixVYLTS9UXCp3RO4EyW6uuXjo.crl (hash: 9tBYIQlCFi75vGVLtRTnI8KqVTR9oVgle/ZqU/zh9pg=)
2: ptBNIMLNqAlCqzDfFjBsH3iCrog.roa (hash: 4ruDzpAEWBEx5du+fJI3d8Mdnthq4YE0usrSZf5XXfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e4:00:56:63:33:dc:ff:ca:71:b0:de:fb:7d:a9:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f648b15582d34bd5170a9dd13b81325babae5e3a
Validity
Not Before: Nov 22 22:00:25 2024 GMT
Not After : Nov 23 22:00:25 2024 GMT
Subject: CN=e169519786a56c9f3f93a55a5854a2a336b202a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:62:3e:6f:a1:ba:0f:c7:4e:d7:43:3a:32:d7:
bb:94:cb:53:23:1f:6c:cd:3b:df:3f:54:f0:a1:d0:
00:81:ad:0d:6f:be:0a:4f:89:02:2f:2b:e4:07:81:
e4:56:31:d1:f5:df:f7:c5:b8:46:7e:ca:07:02:b5:
8b:7c:a0:17:1d:b0:82:ce:bb:e7:84:72:93:2d:89:
0d:51:56:fc:67:a2:be:f9:97:3b:2d:d1:06:4a:a0:
4e:e1:ec:bc:a9:3e:75:83:65:6f:31:9a:67:e3:76:
93:a9:c8:fb:ac:c0:af:6b:c3:90:62:43:28:bd:68:
da:cb:b2:b2:15:52:31:7a:ac:8c:f5:50:46:a4:64:
66:0e:4d:69:2f:de:44:4e:66:ca:a5:f8:78:e3:d7:
2c:c5:5c:1e:e8:39:6c:a6:ca:31:6f:6a:73:20:48:
aa:c8:7a:4d:e0:6b:3a:22:9c:fd:13:c6:67:b6:88:
c1:53:5c:67:dc:46:e7:41:a9:2c:ee:c0:cd:4d:33:
ea:f3:1f:8f:0b:31:fd:11:be:4a:ed:28:1a:08:30:
6f:95:93:18:cf:22:95:ea:70:69:03:ed:c3:49:be:
55:20:21:7a:c4:ca:9e:70:9b:5c:c3:c7:89:8d:d0:
c0:3d:4b:e4:5c:6c:00:e0:9b:df:ce:2a:cc:79:ea:
29:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:69:51:97:86:A5:6C:9F:3F:93:A5:5A:58:54:A2:A3:36:B2:02:A5
X509v3 Authority Key Identifier:
keyid:F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:c2:d8:a8:3b:ea:49:16:a0:42:2a:14:d9:db:d3:84:b1:df:
7c:c3:28:1e:62:22:af:74:13:20:ad:c4:55:80:48:db:3e:79:
56:f4:45:d2:7d:49:88:0f:ab:69:69:31:84:2d:25:57:9b:af:
6e:ba:66:7e:a7:b1:74:4e:09:99:9c:21:7e:61:b9:4e:cb:59:
12:85:0e:22:11:d0:d2:7a:ab:8f:ae:72:c5:6e:ea:e1:9f:bf:
e4:93:38:0a:e2:c1:1f:38:18:6a:0f:7f:ed:27:62:9b:d6:9a:
81:eb:c3:d4:02:08:87:63:29:cd:d0:48:7e:9a:da:73:33:1e:
4a:d4:bd:2d:ba:62:ce:ff:b5:d6:37:fb:38:83:b9:5b:d6:53:
51:1a:8d:f5:a1:5d:0f:2a:da:df:54:ac:0b:28:72:56:2d:17:
6c:a0:c6:89:75:d6:12:7d:88:c4:4d:6c:e1:7a:bf:a5:72:fe:
ea:e8:13:08:14:bb:a6:89:77:97:47:cd:95:64:66:09:6b:33:
65:91:53:2c:a7:01:ce:88:44:3a:95:f4:c7:f5:f0:35:0f:3d:
64:68:b4:2f:17:f4:dd:47:90:f3:96:99:a9:23:8f:8a:f6:5f:
62:0d:a9:df:7f:36:6f:4f:26:68:cc:90:47:48:40:16:de:50:
4e:39:0d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:21:02 2024 by rpki-client on console-fra.rpki-client.org