Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
File: lBZrcEhD09l1QJXIOpG0k4KCAKI.mft (raw, json)
Hash identifier: 689HAZm8xFsSBJ2jKX7M3vBsLHR1/XnslAs4Cp+KjtE=
Subject key identifier: 20:DC:4D:1C:50:AB:1E:24:04:C5:19:BA:B7:F1:78:D4:17:03:68:3F
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0193520748C4B88A15C17671EDBF560D45D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
Manifest number: 141A
Signing time: Fri 22 Nov 2024 04:00:29 +0000
Manifest this update: Fri 22 Nov 2024 04:00:29 +0000
Manifest next update: Sat 23 Nov 2024 04:00:29 +0000
Files and hashes: 1: 8RkRMd95MxHf6IUpx-XoWz_giT4.roa (hash: wkrMCXRKacHwWqyzZfSfeccZwLJrTRKZ24Dp5ukt8Po=)
2: A_jBf3zR3PhpDyITi2xveNZUkCk.roa (hash: IZbsZrlKGCtqRlG2/J7t4wd+63Tmo4sA8s6ZEKnXRSw=)
3: EaYj1OkMggpVWmKzP3EtYuJz8oI.roa (hash: y0OqTeNYwpzKn+LGuYcn575smiEGrnvGIhqUNmH82lw=)
4: _AXWezBs9vjBwIqxl2n6HkCgPvI.roa (hash: wYHCsNvvwxV1ZuOCMghAu+XGWZSmBrUriITwP4FZJ9g=)
5: lBZrcEhD09l1QJXIOpG0k4KCAKI.crl (hash: YJFYD7ryth04CsfAxkK9D/OJazfuGpaA/Cp4fiyfRIk=)
6: t8U_TQSH9rMbMr9tdF-FNDElb5Q.roa (hash: SERe9eZCoiYDVhyZf52IBB+DxhtZRHtWTLkr4YOBX5w=)
7: xYWUygTHRqNFV4RDaCXX5KPcR4Y.roa (hash: pJlI2bLeR3GkV04H5fL3g6hK8NexsOU+oHvnmva6ntw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:07:48:c4:b8:8a:15:c1:76:71:ed:bf:56:0d:45:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Nov 22 04:00:29 2024 GMT
Not After : Nov 23 04:00:29 2024 GMT
Subject: CN=20dc4d1c50ab1e2404c519bab7f178d41703683f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:20:4f:23:d1:74:80:62:c1:0b:7d:70:19:ac:
2f:9d:fd:b6:25:76:c3:d4:51:a4:7e:55:97:cd:6f:
c5:bc:8a:d0:d0:69:1f:11:23:d5:df:6f:d7:aa:fa:
97:fd:93:0f:79:76:2c:16:68:de:ec:c5:8b:a4:40:
87:2f:85:dd:1f:0f:11:6e:ad:99:f3:22:37:ae:69:
1d:3c:72:dc:9c:0d:72:cb:74:ad:12:15:fc:f7:45:
eb:2d:54:bb:30:ec:ae:90:cb:48:59:99:d3:76:53:
40:5f:bd:89:d8:01:c9:f1:6e:47:e2:bc:ad:a6:07:
04:e7:4a:95:e3:d5:e5:c0:e7:92:bf:e3:48:e1:9e:
78:50:64:74:4b:d9:2d:e9:42:c1:24:04:f3:e9:57:
6e:72:67:ef:4f:5e:b6:76:32:5e:00:8f:81:ed:34:
6a:f2:c7:17:32:18:df:f3:ce:1f:c6:26:e4:41:dc:
04:a9:b4:8b:c3:a8:be:aa:40:15:ba:00:3a:82:29:
5b:e8:9e:38:70:58:b9:cf:13:53:d9:37:a4:38:fb:
44:0b:a5:b4:51:00:d9:c6:2b:4b:94:f9:3e:3a:1c:
e6:d2:3c:ee:64:02:cd:b8:a7:48:fa:38:9e:74:9b:
65:bb:2b:60:05:95:ce:9c:63:ac:f2:26:30:8a:f3:
d8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DC:4D:1C:50:AB:1E:24:04:C5:19:BA:B7:F1:78:D4:17:03:68:3F
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:66:6a:a1:ec:4a:41:7e:11:7a:8b:ee:4a:7e:ea:51:b1:fd:
38:6d:96:0f:a5:5c:46:d1:48:12:66:78:78:68:e8:f1:1f:56:
79:56:53:c7:7c:e2:c4:1b:79:f9:01:49:45:b9:cd:f6:11:5d:
c4:60:6b:8b:14:05:a7:85:a5:9b:bc:c0:45:8b:2c:aa:e2:1d:
94:d5:ce:b4:4d:78:10:05:2c:ac:00:fa:1f:7f:ff:d4:51:9d:
06:dc:57:84:81:50:ac:53:39:6d:39:d5:31:d0:71:3f:45:a0:
2d:b9:cc:be:84:f0:02:b4:01:2e:d4:ff:b8:5d:7d:ad:0a:26:
8b:e5:bd:bc:b1:da:6b:b2:fd:ed:94:a8:2d:b3:3d:5b:ea:55:
b0:48:75:a0:3d:5a:1f:4e:78:09:23:7b:73:45:4a:a9:54:2a:
54:7b:0a:7b:bf:d9:0f:bc:d3:df:7a:47:66:3e:6b:de:f3:26:
1f:88:12:86:1c:bf:87:3d:d9:3a:d5:04:25:c9:33:92:31:75:
bf:d2:ab:17:cb:22:62:66:58:04:67:9b:95:a1:94:d5:20:56:
09:07:19:f2:24:9b:73:8f:0c:ee:2a:db:a3:a4:46:b0:3e:b5:
64:eb:6d:ec:50:17:85:96:42:6b:bb:1e:3a:ee:2d:7b:a3:11:
db:d2:05:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:51:51 2024 by rpki-client on console-fra.rpki-client.org