Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: Wf/S3PLDcv4MdYvfrJks0UviOJdOTv2qKlndcHFyNZM=
Subject key identifier: B5:C5:AA:47:62:23:64:D5:94:F6:08:7E:24:8D:65:CB:0D:B7:3A:C5
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 019356F6747A1EC1CDD12364726D32959C35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 096D
Signing time: Sat 23 Nov 2024 03:00:12 +0000
Manifest this update: Sat 23 Nov 2024 03:00:12 +0000
Manifest next update: Sun 24 Nov 2024 03:00:12 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: mjSCDYZaOWHeHs9XYAKvHm2Ncq8b1p80+zpRZU2qEeI=)
2: hmmyl03UKDWRE76S01tPKWrS7PE.roa (hash: WHEwRnvQQvkVCS2Ywio6GZ45rLY68/Jb8HQhlja1xeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:74:7a:1e:c1:cd:d1:23:64:72:6d:32:95:9c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Nov 23 03:00:12 2024 GMT
Not After : Nov 24 03:00:12 2024 GMT
Subject: CN=b5c5aa47622364d594f6087e248d65cb0db73ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:85:d3:ba:b9:5f:5e:68:0c:81:91:3e:6a:02:
1c:2c:96:6d:af:23:61:cc:c1:c8:87:ae:30:35:7b:
9c:55:82:10:d9:c9:2c:12:e3:ab:cc:f9:7a:1c:00:
23:00:b4:18:41:2b:94:91:a9:e5:4f:af:7c:cd:7f:
fd:c1:8c:f5:48:01:c2:db:2c:56:f8:c4:58:4f:14:
c6:e3:a8:76:0f:42:bd:5e:df:54:c8:0a:58:53:aa:
4e:6e:30:c0:9f:5a:e2:dc:2e:0d:3e:2c:ea:52:d0:
0d:94:f1:33:3a:eb:33:5b:8f:dd:08:e8:4e:36:f0:
ef:89:60:84:fe:04:16:39:7a:45:02:95:ee:c2:f0:
b2:2f:3d:f5:91:57:17:62:a1:78:76:21:bf:81:e2:
bb:d1:27:67:a2:48:4a:75:30:ec:25:b0:82:e3:df:
4e:3e:dd:be:a5:49:f2:95:2a:fa:1b:86:38:22:6d:
2d:dd:c0:20:93:ec:1d:25:41:ea:43:1b:8a:fe:e1:
59:b0:97:25:5a:3f:63:55:b2:ef:26:8c:5c:36:fc:
a7:5f:82:af:7e:da:d6:b9:ff:14:e3:c3:81:9e:96:
d3:55:33:da:ae:bf:27:89:29:07:19:74:af:82:ff:
ba:da:fe:f7:bf:11:ec:d0:dc:ae:5d:5d:b5:5a:be:
14:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C5:AA:47:62:23:64:D5:94:F6:08:7E:24:8D:65:CB:0D:B7:3A:C5
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:54:65:6c:f8:21:d8:93:f0:d1:ba:b3:36:eb:91:9b:38:bb:
ae:8c:b1:73:8e:62:0c:cc:d3:04:a5:71:86:fa:ce:46:06:21:
c5:bb:2b:f7:98:33:f5:5b:da:7f:fc:c4:44:9c:3a:d7:2e:62:
0c:7a:30:d8:82:01:ec:a8:24:39:fd:ed:5d:36:e1:ca:0f:c9:
b5:9e:d4:78:31:16:3d:b7:27:9a:c4:12:10:d0:ac:14:14:ca:
72:12:df:d0:01:e8:1e:82:a6:3a:7e:91:be:a4:59:bd:e0:c3:
56:b5:a2:e6:78:24:ad:e8:3d:2f:b0:17:7d:d4:cf:ef:ca:09:
96:2b:43:ab:3a:e1:b4:a0:aa:0f:0a:2e:1c:60:f7:dd:eb:ad:
28:16:15:38:ac:96:98:9b:b8:b9:e1:78:8a:70:9d:fa:42:45:
12:7b:f5:53:d8:3b:df:d8:ff:02:03:1b:e9:20:28:aa:9d:3a:
4c:79:59:a4:5f:d5:ff:b4:e0:0a:50:55:58:35:2a:08:a2:b0:
33:ff:72:50:57:46:b0:8b:c0:c6:e2:92:44:ca:34:02:38:c7:
5b:d1:9d:26:32:50:08:ad:5d:a3:d0:fb:5e:c7:71:9e:c6:b2:
8b:f0:aa:17:2c:92:7a:d7:3f:47:10:ab:64:af:99:04:d2:5b:
3c:91:46:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:57 2024 by rpki-client on console-fra.rpki-client.org