Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: u1ck/Ss3NF3BYNYsG0u9pExtOd/cAa1MRnm9TEbelH0=
Subject key identifier: AA:0F:23:01:FA:33:19:2D:C8:9E:86:91:47:2B:13:54:2A:61:13:F3
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019357650B73E7AE19A48215EBDBE87C4A91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 1376
Signing time: Sat 23 Nov 2024 05:00:59 +0000
Manifest this update: Sat 23 Nov 2024 05:00:59 +0000
Manifest next update: Sun 24 Nov 2024 05:00:59 +0000
Files and hashes: 1: 2Uvwbx1Pyl6sYDiOEIRXgKMRlvQ.roa (hash: +wHVs9PxB4+BColekiK4/WHWyRWZKfjekhdONlXqPJI=)
2: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: f127HR9mYvhdzeFORBSoPq9VXqMyaiqJvTN1pG+UlDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:65:0b:73:e7:ae:19:a4:82:15:eb:db:e8:7c:4a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Nov 23 05:00:59 2024 GMT
Not After : Nov 24 05:00:59 2024 GMT
Subject: CN=aa0f2301fa33192dc89e8691472b13542a6113f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:85:94:67:cd:aa:32:16:8e:01:e6:21:28:
26:7c:c3:10:37:56:cd:33:98:99:a6:f4:85:82:e0:
d4:c4:88:df:69:ea:c1:6b:57:86:40:ba:2c:47:52:
98:f0:6d:30:4b:d1:3c:bf:19:b3:ab:dc:a7:d5:a3:
df:2c:58:0d:b6:0e:22:ff:49:5b:79:ac:37:ff:cd:
ff:f1:b7:ed:e7:03:41:e9:cc:ee:85:0a:06:7b:c6:
86:51:9f:39:dc:87:83:00:aa:63:1b:84:3d:9a:8f:
c1:15:ec:23:ed:28:ef:be:af:79:b4:ff:ef:a6:e2:
ed:d2:51:58:88:54:6b:65:40:0a:5e:74:c3:21:9a:
34:5d:e0:9e:2d:7c:96:e7:3e:4e:c8:f4:fb:ab:60:
eb:bf:75:af:f0:68:70:65:f3:4d:1c:5e:12:27:c0:
14:c5:ab:fd:15:82:6f:50:1a:27:15:70:fd:c9:ce:
ee:2a:96:66:bb:7b:bd:3a:09:d9:0c:76:33:2c:01:
a7:6a:01:73:9d:77:7f:ef:41:e6:bb:15:2d:73:66:
91:1e:0c:bd:e4:d4:58:86:05:1e:9d:81:84:6b:fa:
53:b9:bd:ed:21:a7:4c:12:ee:76:41:f1:1f:26:af:
e3:48:6b:78:b3:65:a6:fd:1f:cc:26:75:33:e7:c9:
2d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0F:23:01:FA:33:19:2D:C8:9E:86:91:47:2B:13:54:2A:61:13:F3
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:6f:33:7f:7e:dc:30:d0:83:94:81:b6:c7:5c:7d:91:c4:6f:
88:14:d2:6f:81:f2:88:2a:48:61:57:20:03:75:70:ab:47:03:
f5:d9:a6:0f:2e:3b:17:89:23:a0:d4:bc:c7:29:8a:51:40:e4:
00:5a:44:7a:21:f1:66:ea:2e:86:c0:ac:20:86:29:db:76:02:
9f:0c:e5:9f:0b:1a:3e:24:72:ef:c6:c8:0e:ed:95:54:12:35:
51:75:c5:58:c1:ac:2a:b4:a3:ff:06:b0:1f:6a:03:bc:08:23:
59:f6:f5:bb:45:48:71:7f:fe:a9:22:b3:77:8a:fd:d9:91:a2:
87:93:f3:c8:38:11:55:1e:fc:2c:41:69:5d:9e:fa:10:d6:a6:
07:3a:b9:be:39:81:c4:1c:81:62:e4:72:4b:f4:5a:ef:39:3a:
88:86:55:d2:b3:74:af:05:84:f4:ee:eb:be:a0:05:58:59:fe:
8a:6d:b5:19:c6:f4:ac:ca:87:a5:c1:60:9b:82:80:a4:d8:a4:
e9:59:85:cd:fe:62:0a:62:99:20:32:aa:46:1c:5c:c8:64:a2:
03:01:f4:c9:82:d7:8d:a8:15:f9:e2:d2:ac:e9:ed:a4:11:4e:
54:16:ce:14:1b:d9:e3:1d:ef:40:7a:f7:fc:4d:af:4a:61:38:
07:f7:9d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:41:36 2024 by rpki-client on console-ams.rpki-client.org