Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: zlR/VtVN0ykwF+UNdVhz2HBFo5tMLguoR8k9OpslEHc=
Subject key identifier: 22:E5:A7:5F:58:30:54:59:6C:6C:64:68:E3:EF:20:34:2E:0C:30:3D
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 01935274DB0E65FD37CEC3BD83D24E0BEE71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 13CE
Signing time: Fri 22 Nov 2024 06:00:10 +0000
Manifest this update: Fri 22 Nov 2024 06:00:10 +0000
Manifest next update: Sat 23 Nov 2024 06:00:10 +0000
Files and hashes: 1: 6zpmtJuJrYBDQpdmaXfAVO_HuUI.roa (hash: KvjkVvecYxvcegTmUoOXrMhne1yw2EkDNhk3nZFglKQ=)
2: 7OhUci0vQ1sjWT1-hzGZfa4FLZc.roa (hash: mHb5719HxzMAfthh7ftxqiifn0mtdakQx2d75gMP7PM=)
3: JOYNSYXKFtdaKQo8CgV-vTBkTpU.roa (hash: bBBFHAiApmDG6LbKlw1Kx7gJZdTKSfEfRMRpdgS/WY0=)
4: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: gvx0hss6d3uPDAT8KsFvGOenzTNyHsCZoOIlI8+SlFI=)
5: Zg176TuCln-UPNFBwvW11Nq1bDE.roa (hash: qLffc+KE1aJzb5E5iQeXS7PQvo/Rm5UKFPeJX7ELTek=)
6: jAYbOUEOrbaM6HFHiixsd5fXF4s.roa (hash: EhXesG5F94q9jfdbHKq3fzkY6/1YImokKZKWbC0sYXk=)
7: rzccHbOqxto9iOt93MvKjJnBb_o.roa (hash: /yaX9Av1La24175KrJL4cS7wNvFER3eq6ceNSzfVh9E=)
8: s2DgewY5WOk_wtj4K_BeJM-Laec.roa (hash: hUAPohOW+TNHEKBVoAktx2D0YcB28ezPFzRmbGsqOGo=)
9: sxPzTvbj5jZjOMhHkKK6m78zI1U.roa (hash: 5+5h8KxqsgbjuYX3coiecmehkY/ZvZog8iRBZVtSwlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:74:db:0e:65:fd:37:ce:c3:bd:83:d2:4e:0b:ee:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Nov 22 06:00:10 2024 GMT
Not After : Nov 23 06:00:10 2024 GMT
Subject: CN=22e5a75f583054596c6c6468e3ef20342e0c303d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:63:bb:b5:45:e3:18:17:1a:c0:32:68:6c:f1:
19:32:3f:49:23:1a:4b:63:af:5e:0c:68:9c:31:9f:
4c:81:8f:d7:d0:8a:59:e9:f8:f0:79:42:6d:aa:4b:
31:85:98:a1:c1:59:fc:cc:ae:c0:8f:a4:46:c6:a0:
72:fb:f5:2d:1b:f3:88:f9:b7:f4:34:ec:f1:99:9a:
6a:d5:05:00:4a:4b:49:e7:a2:b8:05:dc:75:e2:96:
c9:af:43:a8:d1:13:db:0f:e5:a5:27:9a:cb:d0:02:
02:87:97:e7:53:e3:87:42:53:d2:cc:fc:cf:e5:27:
ea:d3:d0:d5:f5:02:e5:c7:09:a4:b5:4d:49:18:bd:
be:d0:35:69:07:f9:51:c7:21:73:a0:f5:b4:13:a0:
77:2d:dd:a5:ec:af:97:57:e7:e2:23:b3:45:ef:e7:
40:b0:54:28:ca:d3:c6:e4:cb:75:ef:0f:6c:57:4a:
80:cb:d1:3b:7a:0c:0f:9c:cd:3b:2d:55:17:3d:e7:
ef:5f:9c:40:b0:8f:3d:81:a5:75:8c:bb:82:45:a0:
80:6b:07:ad:1c:fb:bf:62:8f:24:fe:92:f0:7a:ad:
10:d7:b3:6b:35:45:b7:43:73:13:0b:a3:40:70:ce:
10:1b:56:b6:d8:52:97:b5:b5:d3:a1:ba:a1:a0:82:
1b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E5:A7:5F:58:30:54:59:6C:6C:64:68:E3:EF:20:34:2E:0C:30:3D
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:15:85:f1:a8:7f:df:00:13:75:4f:f0:cb:87:c0:48:00:d3:
e7:59:6c:ff:5a:84:00:eb:1b:b7:31:bc:ba:ea:e6:60:76:9a:
c9:b4:45:e8:64:e2:35:aa:05:22:e7:d6:b5:18:01:a9:a4:9b:
1d:1b:59:46:dc:e7:af:61:34:57:45:ef:44:42:d0:7f:98:fa:
57:a7:80:4e:c9:36:0d:7d:ed:ed:ca:55:bc:e6:cc:50:ca:10:
2d:c2:39:3a:74:27:7b:4e:d2:bb:1a:51:53:14:f6:53:3f:82:
61:6c:02:3b:a6:a7:c9:37:64:b8:25:bd:3a:00:0f:cb:08:be:
b3:3e:dd:ec:71:fb:bf:9e:72:33:be:f3:e4:44:bd:a4:fc:55:
2a:0d:7b:c3:e1:88:36:63:e9:3f:18:1e:85:78:e3:aa:41:b7:
5a:a8:3e:75:67:f7:a7:53:38:98:42:0d:dd:cd:f9:9f:31:c0:
93:d5:a8:b0:11:a9:fa:d6:e4:d4:7a:5c:46:40:43:66:7e:f1:
38:fc:b5:35:14:05:34:5e:29:04:93:15:ee:3b:f2:1e:f0:1f:
3c:80:5f:dd:d0:24:f1:9a:b5:2c:0e:c1:38:27:3f:43:de:8f:
4a:2e:4b:82:98:f4:50:be:f2:db:4d:bc:a5:ac:a1:e6:ea:42:
16:8d:24:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:09:43 2024 by rpki-client on console-ams.rpki-client.org