Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: hwFjR2EuD59qXQBjZ3A2+ues9B25033KRTZwJ1A6ekE=
Subject key identifier: 71:E1:24:89:3E:6E:CD:37:D8:CD:BE:53:1D:F5:5C:72:B3:C7:02:32
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 01935764CFC28D3DEE11EB62F1119FB5AF1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 1370
Signing time: Sat 23 Nov 2024 05:00:44 +0000
Manifest this update: Sat 23 Nov 2024 05:00:44 +0000
Manifest next update: Sun 24 Nov 2024 05:00:44 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: TbLM4mg6+wJFxm3LtX9kK/bUXesBgH2uM3wh7lRR1GE=)
2: _VVt4OfdWGBs-jce3dtU-jGfKTY.roa (hash: fEnri8C9TJ4wmIOHMUbqYdb4TUqJNQunbXCa8VppDek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:cf:c2:8d:3d:ee:11:eb:62:f1:11:9f:b5:af:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: Nov 23 05:00:44 2024 GMT
Not After : Nov 24 05:00:44 2024 GMT
Subject: CN=71e124893e6ecd37d8cdbe531df55c72b3c70232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d4:f0:58:2b:4a:be:68:18:ef:dd:69:d8:d2:
38:22:2b:e9:b1:dc:e9:05:05:9c:aa:fc:52:db:f0:
9a:f5:b0:d0:44:16:d6:d4:85:e3:17:4a:68:e4:78:
bb:7f:a5:8e:bb:da:f5:5a:36:e3:a6:30:a4:38:10:
07:82:ad:76:8d:3b:86:a6:2d:bc:68:57:3b:07:8c:
75:07:a3:53:07:54:4f:5d:12:8f:1b:29:e4:07:43:
ba:bc:e4:9d:7e:10:55:19:86:fe:1b:87:ac:f7:1f:
cf:57:07:a4:87:e7:e1:26:b4:2f:7f:f4:c2:1d:5c:
6d:2d:b8:0e:40:39:fe:3f:bb:c5:97:71:ec:db:1a:
1e:5b:16:3f:1c:54:e9:c4:6a:c8:1d:43:51:8a:49:
02:9d:6b:cb:e5:8e:53:3b:b6:b4:a2:0b:12:6f:89:
33:67:06:fa:e3:c3:4e:a4:6e:eb:5f:eb:5b:1e:6a:
69:b1:01:ca:e0:e9:1c:04:4d:65:75:fd:14:2d:63:
56:e8:c4:5a:bf:2c:59:c4:18:90:72:5a:63:22:30:
44:b6:85:ec:3f:46:14:d8:b5:2d:0e:af:ec:2a:22:
11:1d:4d:54:43:5a:ce:15:f7:8f:7f:bc:c0:ce:16:
06:0a:9b:28:2a:a3:1e:5d:d4:a0:e5:ee:41:34:a2:
16:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E1:24:89:3E:6E:CD:37:D8:CD:BE:53:1D:F5:5C:72:B3:C7:02:32
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:94:c8:7a:35:9e:0e:fb:10:91:49:33:03:13:41:11:a3:97:
ca:64:95:7b:e4:ba:83:eb:9b:6e:7a:db:75:52:d6:a4:88:c2:
d2:18:45:60:c9:09:d4:96:65:b2:ed:38:d4:79:2f:ee:09:74:
65:14:9f:be:da:be:3c:f8:7b:af:f2:7c:8a:09:97:f4:26:3f:
ad:0b:56:0b:24:63:2d:2c:67:77:16:d6:4a:79:a5:0a:15:a8:
a7:6f:af:73:15:01:59:b1:5b:02:04:b2:0a:b7:e0:da:59:26:
42:db:06:b9:67:b5:64:17:5f:fe:49:e6:1b:37:24:6c:5b:73:
5f:a5:c6:95:a6:0e:f0:0a:70:81:da:2c:48:a9:2d:de:cb:f1:
ac:23:46:a9:2b:18:c9:97:d2:d7:30:a6:e7:da:57:b9:0e:49:
b1:b7:fa:36:60:17:16:69:58:1a:df:39:83:2c:2b:33:5f:83:
b1:7f:ef:10:4f:14:d7:01:2c:af:90:4f:49:48:33:6e:cb:31:
a4:35:ae:8f:9d:85:86:6c:63:21:b0:c9:fc:d8:5b:36:50:cd:
4b:bc:5a:4d:8e:98:ed:d2:b8:f7:f6:cb:e5:77:7e:0d:fa:04:
85:11:cf:a3:59:fd:5f:9e:97:c2:d4:d6:7c:b7:1b:b7:01:54:
9e:1e:dd:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:54 2024 by rpki-client on console-ams.rpki-client.org