Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: wEn2rPhv0mCy8ExQsoERZ3nOkUa6H0JW04bwK0NTVUU=
Subject key identifier: 59:B7:DC:69:37:48:F0:0B:9C:63:C6:0D:EB:5B:7A:A2:C9:13:C4:BB
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 019356F6FA7CEF42495D2CBA14B27488F4DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 1304
Signing time: Sat 23 Nov 2024 03:00:46 +0000
Manifest this update: Sat 23 Nov 2024 03:00:46 +0000
Manifest next update: Sun 24 Nov 2024 03:00:46 +0000
Files and hashes: 1: L24ujMjlzwh62P1HorUr0cSvZCw.roa (hash: rEHUy78ob0si32eupL+l62gKyQ5EwyiZ0gV3gxgro9I=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: Ha8uuZwRfjVKv3XVGEtZ5B0HdtNqlZzLIOia/CYffPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:fa:7c:ef:42:49:5d:2c:ba:14:b2:74:88:f4:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Nov 23 03:00:46 2024 GMT
Not After : Nov 24 03:00:46 2024 GMT
Subject: CN=59b7dc693748f00b9c63c60deb5b7aa2c913c4bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ca:a8:83:15:ba:21:fb:ff:97:c8:c2:ea:b5:
c4:73:c6:22:ac:0d:8e:11:dd:51:95:39:22:f3:ac:
f8:3e:d2:e0:df:83:88:0d:5c:53:f8:83:05:65:0c:
74:9d:b1:3e:7c:ba:51:e9:62:25:79:92:27:79:51:
52:a3:c2:44:a2:df:ae:8a:83:61:0b:a6:d1:67:89:
95:f4:89:08:21:aa:3e:b5:18:4f:4a:d7:63:a8:3b:
58:49:d7:44:4e:a9:71:52:ef:63:16:3d:c2:be:40:
23:6c:ff:39:c9:07:dc:f7:db:92:b7:20:a7:25:14:
68:a6:10:b4:9e:a1:b3:0f:9f:a1:aa:c3:64:5e:a7:
ac:3f:f6:64:58:bd:11:1c:59:fd:54:4c:0b:07:6d:
82:7c:d9:46:87:8d:26:b5:2d:5b:96:66:4a:29:42:
f7:8f:c9:d7:31:ed:62:c2:66:ab:35:de:e4:1c:0f:
a9:7a:ec:76:a9:74:30:f3:20:15:84:4b:0e:cd:27:
f6:01:2a:87:61:3a:02:a8:6d:93:34:0f:e9:1e:e0:
f6:07:b6:60:e9:d1:5e:d1:f4:bc:33:e2:7b:42:2e:
d7:2d:14:ea:ee:f9:c4:6f:f1:26:14:de:7a:fa:87:
2a:f8:d6:e3:a2:b5:9c:c4:70:a6:a0:16:8b:fb:96:
e8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B7:DC:69:37:48:F0:0B:9C:63:C6:0D:EB:5B:7A:A2:C9:13:C4:BB
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:b0:21:ad:00:cd:3a:e4:e2:c9:e7:65:51:3a:16:b6:95:aa:
2d:0d:56:ca:68:52:5d:2e:91:9f:0d:61:65:93:85:9c:2b:49:
23:df:89:ae:71:0a:43:bd:c1:de:5a:67:2f:d8:a4:95:e6:52:
9d:17:6e:ba:93:4a:20:b0:16:82:29:fb:e8:51:38:61:71:7c:
05:19:6b:76:a1:54:ee:e1:a5:2e:7a:f8:a5:0b:0f:b9:c5:94:
08:75:77:34:06:a5:03:fc:ab:49:af:0e:c7:ce:dd:52:4a:aa:
d0:29:05:e5:46:5a:1b:c5:83:63:d1:b7:47:82:a7:6d:3e:34:
6d:67:f6:69:1e:9f:12:b1:fb:23:71:d5:c8:b4:88:cf:48:9d:
de:26:23:3c:7b:68:08:bb:64:54:4b:f5:51:7d:4a:fd:24:fe:
59:46:9f:5c:9f:99:3b:ed:04:ec:d1:7b:5f:8a:8d:67:c5:35:
30:a5:b2:6f:61:c1:e4:ed:f1:2b:bc:33:f6:7c:81:c9:53:d1:
09:a6:c9:2f:66:21:59:4c:fc:3f:4a:35:90:b8:6d:d2:00:d1:
e2:31:86:e2:99:f5:8e:f3:a1:bb:ac:2a:1c:11:e8:dc:52:64:
ef:d7:34:5d:55:43:90:4e:c3:05:b9:f5:bc:4f:99:bd:95:8d:
36:a9:84:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:55 2024 by rpki-client on console-fra.rpki-client.org