Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: lfSiRWTGCLUvx1dSr1m3/pOfuCtQxeaelZfuzame1SE=
Subject key identifier: 6D:F4:02:DF:B0:17:0D:2F:2A:14:A0:93:BF:D2:BD:2E:C6:A2:CD:99
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 0193549C6E15200ABEC6684F838493072E98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 1370
Signing time: Fri 22 Nov 2024 16:02:38 +0000
Manifest this update: Fri 22 Nov 2024 16:02:38 +0000
Manifest next update: Sat 23 Nov 2024 16:02:38 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: 3d0iJwPF0TUG2ppK3CA82Fh/lyd3mwt/WGgbD//oUMk=)
2: F-cdflVdpJfULyMH3EO8CgxDpKE.roa (hash: N7fnV09mXN+/24PCpkRcRpvyTxSRkZ8qbtGYXDZgJaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9c:6e:15:20:0a:be:c6:68:4f:83:84:93:07:2e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Nov 22 16:02:38 2024 GMT
Not After : Nov 23 16:02:38 2024 GMT
Subject: CN=6df402dfb0170d2f2a14a093bfd2bd2ec6a2cd99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:21:dc:ff:48:d3:47:ac:f3:e2:9a:55:bc:66:
83:9d:c0:d5:c1:50:a7:0a:27:68:9e:b4:49:c0:4f:
76:83:76:e5:03:26:e6:bb:a6:a7:65:4f:ed:f4:0a:
91:43:ba:c2:bc:dc:3c:05:4f:10:8c:7a:4c:74:34:
d7:4b:fb:32:c6:ac:d2:db:81:41:83:0b:20:5e:5f:
f6:90:45:ce:b2:93:70:68:61:80:dd:5e:a7:72:41:
82:b9:98:3b:3a:35:31:08:42:91:b8:ee:fc:4f:3b:
04:1e:8c:2c:44:ca:4c:3d:f5:dd:7c:29:c8:63:aa:
a1:d8:9a:44:f6:9d:eb:b4:a3:75:a8:47:96:99:c7:
d6:c1:b9:95:12:af:5c:a2:4b:2e:15:14:06:e2:1a:
55:5c:26:ad:e7:97:b1:f3:95:b0:9f:bf:07:5e:b0:
ff:2b:c6:34:2f:54:c5:74:e2:bf:ac:fc:f6:d7:6d:
5a:17:de:16:f8:ff:a1:89:00:ff:e6:d3:43:f1:3f:
33:1a:93:ab:4f:a2:1b:d4:7a:ca:06:59:05:ce:e1:
a2:3c:47:8a:3e:f5:48:0f:a1:2c:ce:f4:18:9d:b5:
3b:d8:19:61:03:63:46:03:96:22:f3:f1:19:f4:b0:
71:a5:aa:e9:55:7d:f4:0d:c4:0a:e5:5a:af:ca:2a:
57:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F4:02:DF:B0:17:0D:2F:2A:14:A0:93:BF:D2:BD:2E:C6:A2:CD:99
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:10:ff:03:fa:29:4c:9d:c4:92:13:13:a9:82:80:4b:1e:a5:
57:65:2b:d6:88:fa:3d:cc:69:d8:7f:d3:ab:05:b9:6c:75:d8:
8d:1b:39:4e:8f:ab:95:3b:c2:04:13:ed:c2:5d:e9:4a:ec:d4:
ea:31:cd:b6:99:35:87:1f:61:c6:f0:1c:66:d2:34:80:00:97:
c8:54:20:58:30:92:31:db:00:da:45:29:e3:fb:7b:fe:21:b1:
44:12:04:dd:05:68:b7:7f:4d:ba:e4:29:91:46:fc:75:ec:57:
42:d4:45:b2:09:1f:66:86:82:dc:5f:a5:61:93:59:57:3a:e8:
5f:e5:fe:06:d0:7b:17:af:30:f3:aa:46:b3:35:ea:3d:24:15:
3a:be:31:41:21:8e:a9:86:31:ed:6b:93:91:b4:65:c4:e2:15:
22:fe:e8:48:5c:a2:73:ff:30:d4:ac:ca:04:08:73:be:72:b8:
28:d4:4a:3c:91:4c:49:25:c3:9c:6f:26:42:ee:62:90:ef:19:
28:c1:fb:a0:c4:83:cb:2c:82:bf:ae:7e:9f:d9:da:60:72:9c:
b5:37:64:a4:d5:cc:e7:5c:f2:d5:c1:a4:ba:e9:7c:bf:fd:21:
39:44:9f:b5:d7:bd:33:12:17:03:ac:c4:09:71:b6:88:31:af:
12:11:de:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:06:56 2024 by rpki-client on console-ams.rpki-client.org