Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: dnoT0JAVPbvEgSmsWIpXHk3iCnSoQz+yQKREtMpWjbU=
Subject key identifier: 9E:A5:8D:B4:4B:C8:CE:97:B2:3E:F8:35:F9:8E:33:C9:0D:7D:88:AD
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 0193579B7DEF47909E13875BFD6878EA24AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 0141
Signing time: Sat 23 Nov 2024 06:00:28 +0000
Manifest this update: Sat 23 Nov 2024 06:00:28 +0000
Manifest next update: Sun 24 Nov 2024 06:00:28 +0000
Files and hashes: 1: LyKXgKcHepWGD2iWiCWTulZdsI0.roa (hash: VPJgPcDlo7wgCKLRqb0udOUyngY4AE8YHu0/YgQzNwk=)
2: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: n1D3GYuGPiKej6kc9Vtnyv2uXuoqnBiadfpjukr0z+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:7d:ef:47:90:9e:13:87:5b:fd:68:78:ea:24:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Nov 23 06:00:28 2024 GMT
Not After : Nov 24 06:00:28 2024 GMT
Subject: CN=9ea58db44bc8ce97b23ef835f98e33c90d7d88ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:80:63:ce:55:b5:f2:92:27:44:ec:4e:67:76:
29:e1:9a:5b:ad:ad:79:c7:67:49:a0:27:45:eb:19:
4b:2d:d8:25:8e:6f:db:a0:b8:99:4a:ae:68:78:9c:
65:9a:a8:18:66:29:fb:fa:0a:55:5a:cf:eb:03:4a:
ae:93:02:16:ab:c3:54:9f:5f:ad:84:42:17:eb:86:
ea:4e:f8:27:b4:21:79:f9:69:53:a1:49:00:f7:08:
4c:8c:21:bf:86:40:d2:52:60:58:2d:14:f5:e7:c5:
03:cd:a8:d0:cc:6d:bd:c4:f3:70:86:a4:03:24:a6:
ec:9b:d4:65:9a:fb:b2:15:cc:f7:0b:c8:47:87:09:
58:85:43:35:2d:de:7c:f4:df:73:52:b5:53:97:dd:
23:ce:86:49:ec:4d:cb:24:44:28:39:9f:cc:18:19:
6c:60:19:ae:a2:74:e6:31:b5:71:2c:66:78:d8:56:
f7:b4:2e:12:a6:d3:1f:28:0c:79:03:25:1e:53:8e:
ca:4f:25:a2:08:c9:82:8b:bd:69:6d:ca:ae:e0:46:
96:ad:fa:41:af:6d:92:11:53:9f:b5:81:48:ee:71:
76:c2:61:03:21:28:a9:39:42:18:5d:c0:2f:a5:59:
7e:89:1f:8f:44:93:2f:7e:4b:06:ee:e0:e0:65:a9:
86:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A5:8D:B4:4B:C8:CE:97:B2:3E:F8:35:F9:8E:33:C9:0D:7D:88:AD
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ce:a7:c3:2f:3b:ae:e4:27:51:f7:6a:2f:08:d7:9a:a8:a7:
c0:8a:91:f3:52:26:74:0a:35:c3:45:c9:41:58:d8:fc:bd:7a:
65:ff:a9:62:3e:3f:6d:52:44:e4:40:73:c3:4c:da:a8:0d:3b:
0e:ea:83:e2:9f:ed:3b:bd:22:0b:bf:db:86:5d:6e:a9:f4:5f:
6f:8b:f1:63:ba:30:96:c3:e0:a9:37:76:2d:b7:7c:91:38:a1:
f9:7d:d1:22:a1:d5:4b:7d:e1:e2:89:85:22:28:7b:c9:ce:90:
ef:94:1b:3f:91:92:92:15:da:cc:aa:2a:69:2b:32:64:59:b2:
99:6e:4a:63:78:ee:bb:6d:46:ec:11:24:fb:88:78:b6:0c:15:
c5:fb:0d:79:1d:07:3b:70:1e:c5:5c:03:7a:70:19:e0:e7:0d:
91:a8:e3:7b:98:7b:dc:7c:e2:70:f3:6a:33:88:f2:11:b2:24:
b3:84:98:23:6c:c5:c8:00:3c:7a:97:ec:17:2e:0e:f7:68:12:
4e:fb:17:03:15:0e:3d:df:b3:8b:fc:3a:d8:fd:d7:08:5b:62:
c4:cf:05:30:85:1a:3c:c5:f4:3e:0b:9f:fb:08:64:85:0e:d4:
65:41:9a:4b:73:28:c4:c6:e7:dc:65:03:86:13:01:af:a2:24:
63:51:36:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:55 2024 by rpki-client on console-fra.rpki-client.org