Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json)
Hash identifier: e3mWNsDaAdooXKLXogGOFBv7O/uaw52pNX9llK1OvC0=
Subject key identifier: E9:12:DD:96:F6:46:95:18:66:6D:45:0A:8F:BB:7E:0E:D1:C4:C5:CE
Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Certificate serial: 01936AB4D237D931DA57A551C6F42E60C33A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
Manifest number: 131D
Signing time: Tue 26 Nov 2024 23:00:55 +0000
Manifest this update: Tue 26 Nov 2024 23:00:55 +0000
Manifest next update: Wed 27 Nov 2024 23:00:55 +0000
Files and hashes: 1: c1px2pkOzTIYBRhJdwY5ADyj50M.roa (hash: msJWWJzuD6uMhJVJMnJjkD9zkpxMNqa9+30wdc4H768=)
2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: Rtqowy2hzsqXME4HcgR/YUSyg28PJYHDEmFv9EUyL5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:d2:37:d9:31:da:57:a5:51:c6:f4:2e:60:c3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Validity
Not Before: Nov 26 23:00:55 2024 GMT
Not After : Nov 27 23:00:55 2024 GMT
Subject: CN=e912dd96f6469518666d450a8fbb7e0ed1c4c5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b6:7e:88:a5:26:64:bd:38:16:6d:a8:8a:fb:
ea:16:05:05:6d:a5:e6:3b:11:4d:71:ac:67:88:75:
0e:b8:dc:5a:36:2d:e8:5b:34:99:6d:56:59:20:66:
9a:fc:72:1a:a4:ae:b4:3d:8c:4d:4e:d1:96:9f:68:
3a:64:f8:f5:75:ad:b0:e8:ce:c2:14:a6:69:29:9c:
14:a9:4b:d0:99:4e:21:65:3a:2c:e8:7c:58:7a:7d:
67:77:c5:1f:e2:5a:5e:e7:32:4a:7a:a4:91:98:55:
6f:63:a1:19:e7:84:e3:0d:1a:2b:b5:43:e5:ca:65:
2c:2d:f3:48:29:b2:b9:9b:7b:2f:52:91:46:f6:e1:
01:c2:d0:ba:8c:99:63:4c:e4:91:7b:2d:b5:f7:dd:
6c:45:ed:a3:4d:d4:07:30:af:6c:cd:f3:41:f7:e8:
8f:0e:10:a1:ab:2f:23:42:29:e9:b0:63:49:28:0c:
12:00:df:62:29:93:de:8a:da:89:00:7d:4f:2e:1c:
3b:80:a8:ea:d4:e2:f8:54:74:b0:e8:7b:36:71:4d:
71:18:2c:aa:2d:6e:b2:77:26:ac:70:af:44:ed:e7:
eb:2d:14:84:cd:9b:55:59:6d:d3:a9:e1:7d:68:00:
35:95:1c:6e:97:8b:a0:df:ec:aa:d5:03:6f:7d:5a:
78:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:12:DD:96:F6:46:95:18:66:6D:45:0A:8F:BB:7E:0E:D1:C4:C5:CE
X509v3 Authority Key Identifier:
keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ea:96:ba:c1:2e:e8:5b:69:29:62:3a:0d:22:37:23:f7:f6:
3f:2d:b1:f1:75:06:b4:99:4d:2e:c4:cb:a7:75:dc:01:9a:b6:
5d:df:e5:3d:5c:1a:fe:db:35:d6:e8:a9:60:76:ef:83:3f:cb:
5e:99:35:0d:74:ea:86:e5:63:5d:ff:27:d1:fb:4e:40:db:8d:
04:6c:aa:7a:b4:50:a2:af:7b:17:8c:02:f5:39:de:86:4d:61:
ed:22:9e:9b:1c:b1:ee:9c:06:b4:50:16:a1:35:01:cd:d2:77:
f8:cc:50:d4:4d:fc:fa:30:a0:69:55:88:8d:e5:3c:b9:08:74:
ac:21:47:64:9d:3c:46:b4:96:25:52:2e:da:cd:76:9f:a3:b7:
66:82:31:83:24:68:4c:af:53:12:e3:f1:75:d0:aa:9d:fc:b1:
21:45:08:e2:30:6c:22:78:cc:ca:9b:78:05:d0:d3:7e:e1:92:
50:e6:e3:cb:f7:99:8d:5a:89:51:fc:68:7e:6b:34:14:ef:b1:
93:0a:99:bf:94:dc:40:6c:28:e2:c5:94:dd:eb:d6:d3:17:03:
6c:5c:3f:1b:e0:8e:33:88:97:74:94:cd:8c:de:ee:19:3d:fb:
b5:42:f6:1a:52:a5:5c:e0:31:a3:fa:a7:8d:76:d7:f4:a6:8c:
be:7b:a3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:13 2024 by rpki-client on console-fra.rpki-client.org