Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
File: _OTzlnKb9HjmNlSYIfb2lw2JP1I.mft (raw, json)
Hash identifier: ggTXOQUAJBuDgvG7SpSZh5eVo7jJ6e5kpqtAlN/PVs8=
Subject key identifier: 35:DC:96:1D:A9:41:64:FD:9C:81:5A:9A:74:DA:D6:14:65:7E:BE:CD
Authority key identifier: FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
Certificate issuer: /CN=fce4f396729bf478e636549821f6f6970d893f52
Certificate serial: 01936A7D96F608D01C5F2B9764816A389936
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 22:00:35 +0000
Manifest this update: Tue 26 Nov 2024 22:00:35 +0000
Manifest next update: Wed 27 Nov 2024 22:00:35 +0000
Files and hashes: 1: _OTzlnKb9HjmNlSYIfb2lw2JP1I.crl (hash: WwZWUPCdcWKwY/nDMbZdsTh8mNHLqnxju61vjXPs+ZE=)
2: nrfRU41c1HJ_3px9syP-SKCxxS8.roa (hash: iGmF5sRlJj4OkJEFWlWXo8D5pbxAC9e9ayC3oxy+7K8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:7d:96:f6:08:d0:1c:5f:2b:97:64:81:6a:38:99:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce4f396729bf478e636549821f6f6970d893f52
Validity
Not Before: Nov 26 22:00:35 2024 GMT
Not After : Nov 27 22:00:35 2024 GMT
Subject: CN=35dc961da94164fd9c815a9a74dad614657ebecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2d:0e:68:de:74:ba:a5:37:cd:dd:ee:20:2d:
b7:d4:82:26:62:12:a6:d7:d1:5e:75:28:d9:d8:c1:
31:43:b7:a1:49:be:06:89:77:20:b7:06:14:15:5f:
ee:b9:9f:85:1a:14:78:44:06:6f:66:68:52:f4:6f:
0a:a6:8f:6c:39:a3:7c:df:40:2f:94:82:c1:fd:48:
9d:b5:3d:e0:d1:d5:9b:33:d5:0f:77:79:66:f5:66:
80:70:71:23:99:bb:d1:d4:97:b1:1b:8d:a7:44:b0:
92:0d:c7:dd:cf:d1:e7:7d:be:23:02:43:46:14:3d:
ca:f6:9a:da:ba:51:25:23:38:fa:93:14:b6:98:37:
34:a3:f6:f3:11:ad:99:80:80:bb:fb:f2:cb:fd:bd:
63:75:f3:11:5f:32:8f:cd:95:e5:88:2d:7d:00:3b:
6f:74:b3:32:51:39:ca:36:d8:07:69:a7:13:ec:2f:
ea:aa:ff:96:f4:fa:d0:9d:be:69:b4:5b:fe:1a:2e:
f3:e2:91:b8:2e:4d:6f:33:af:74:94:63:a5:0c:57:
b6:2a:25:be:d5:d5:eb:44:80:65:12:87:10:82:24:
68:7c:92:d6:c8:c9:10:f6:8e:08:1b:10:09:ab:72:
9c:29:51:04:89:68:72:c2:9b:9f:95:52:76:cd:c6:
03:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DC:96:1D:A9:41:64:FD:9C:81:5A:9A:74:DA:D6:14:65:7E:BE:CD
X509v3 Authority Key Identifier:
keyid:FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:59:0a:c5:cf:e5:61:7c:00:2a:e7:53:62:04:9d:f3:2b:3f:
aa:0d:d0:87:b9:28:f6:f3:a4:53:92:66:6a:e3:ef:49:67:24:
d2:67:6f:37:61:c3:7b:f0:1f:f5:85:db:d1:e1:e8:7e:c2:cb:
db:a0:8f:60:41:9a:54:27:37:4a:2e:c9:3a:e4:90:0d:ca:64:
87:df:23:7f:7d:8e:33:e2:f5:a2:dd:6c:7a:bf:51:33:fb:ff:
1c:15:56:a5:e4:d7:35:95:70:57:d5:d3:80:82:f0:b2:51:3d:
af:e2:d3:fb:a4:d2:20:ed:41:0c:dc:92:50:6a:25:49:82:ff:
66:a9:63:bb:4e:85:d9:e1:a2:20:30:50:3b:dc:17:7c:dd:59:
55:1b:dc:f9:36:90:af:99:a6:20:22:e4:71:21:ad:3f:9d:e6:
b7:0d:ac:25:a6:9e:43:12:5c:c7:98:6d:27:ab:73:1d:97:76:
31:08:9f:f2:3a:1c:97:54:8f:5f:3d:9f:34:9b:54:89:c3:08:
03:0d:29:40:1b:ca:b9:14:b3:07:03:2c:e3:d4:24:e4:d7:a7:
5c:74:eb:de:51:75:50:f9:d8:d9:71:22:c5:39:c6:bb:70:84:
2f:06:e6:0c:98:ae:c1:5f:b8:a1:07:48:66:a9:fc:fd:35:31:
79:10:ae:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:36 2024 by rpki-client on console-fra.rpki-client.org