Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json)
Hash identifier: dmmH4HyBYZlEbrQFbRw7G3l0osB2Px1OPFnSqm+mxdw=
Subject key identifier: 83:BC:C0:8D:B8:41:60:50:1D:96:AB:AC:82:4B:51:EA:E6:F6:6B:4F
Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Certificate serial: 019351625B4A297D250E2B27E447CEA00285
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
Manifest number: 89
Signing time: Fri 22 Nov 2024 01:00:20 +0000
Manifest this update: Fri 22 Nov 2024 01:00:20 +0000
Manifest next update: Sat 23 Nov 2024 01:00:20 +0000
Files and hashes: 1: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: i/nHOsagDApae4byscWIHSvJQdkmSEMQt0I0c157DZo=)
2: Ico9ckZQJg8kBwvmUUBWxEtuHmc.roa (hash: iPKoYCNGacJ8RQ+hh6G6M35brZHALWBrU2lcE3hTsrU=)
3: lI_CCFnP7l3Z3GQGDgECkXD826k.roa (hash: jO3tGClHJSmk5hbVIUopgIRMb4HGIomc2yADt/mJ/uc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 01:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:62:5b:4a:29:7d:25:0e:2b:27:e4:47:ce:a0:02:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Validity
Not Before: Nov 22 01:00:20 2024 GMT
Not After : Nov 23 01:00:20 2024 GMT
Subject: CN=83bcc08db84160501d96abac824b51eae6f66b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:0c:a9:5f:42:2c:08:02:e0:f0:4b:db:2b:56:
8a:da:e6:5b:9e:0b:c4:4c:63:c3:a0:cf:10:97:16:
94:95:d4:40:89:a9:0a:ad:da:d2:f7:51:ef:6e:8c:
92:be:f9:44:36:e4:78:61:5f:97:80:d9:b0:00:c0:
5f:ac:26:ad:22:a2:93:82:11:29:41:1e:57:df:7a:
32:43:dc:ae:77:25:d1:d3:1f:17:a0:b7:a9:30:66:
2b:3f:19:8d:ea:0b:33:a9:26:eb:09:69:0b:aa:c5:
51:28:4d:52:a6:61:a9:3a:cd:e2:87:ce:91:11:90:
9c:05:ee:a2:81:93:6b:68:4c:eb:bc:9a:7d:9d:06:
6d:3d:7b:06:f1:ed:97:e9:6d:ce:cb:74:82:88:7a:
06:67:8a:c7:5e:05:22:48:9d:04:53:07:fa:86:f5:
a9:96:dc:63:a6:63:be:76:94:63:32:b8:36:42:33:
64:b6:bb:ff:61:89:25:da:c2:e0:a1:d6:66:b3:12:
f0:d8:6c:f2:03:a8:9f:3f:6d:e5:81:42:6a:e2:ee:
b6:31:3b:7d:e7:71:2b:09:2c:cf:ec:b3:28:0d:7d:
6a:9a:30:a3:61:7e:3a:86:a5:10:2b:56:71:62:4b:
8b:1b:5a:e7:23:3e:4e:31:f9:0b:3b:0b:37:06:5c:
a7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:BC:C0:8D:B8:41:60:50:1D:96:AB:AC:82:4B:51:EA:E6:F6:6B:4F
X509v3 Authority Key Identifier:
keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:97:f2:79:32:87:0f:dd:e4:09:8b:40:16:93:fe:8c:56:9e:
e7:45:3c:e1:84:98:3f:04:75:e1:66:f3:be:9e:e4:42:64:40:
bf:3a:06:e5:7f:d3:e2:ee:52:30:8c:b5:5e:6d:36:4b:6f:91:
5f:f0:64:43:fd:42:19:18:92:d0:51:e2:d3:fd:ba:4e:a0:66:
20:69:f2:40:c7:69:11:14:f0:33:74:15:5c:bc:29:08:21:aa:
10:53:b2:24:7a:eb:6a:3d:d2:29:73:ae:81:c5:a8:a6:79:ff:
93:20:e3:7f:f8:a7:df:cf:df:a7:80:31:98:20:2f:ef:7a:58:
8b:06:26:e1:a0:5e:46:0b:58:e2:04:98:8d:3e:51:b9:67:cd:
73:fc:14:ce:47:36:2b:8c:d3:aa:0c:5f:56:9a:3a:9e:30:43:
81:66:e7:1e:9e:81:a7:76:6f:71:38:50:f9:75:1e:b6:9e:e0:
a9:44:9b:ff:a0:3a:fd:b5:bd:6a:1d:58:d2:7f:a6:44:64:1b:
05:f1:e0:28:4c:9a:8e:2b:5b:f5:53:8f:f6:00:c5:8b:5c:68:
c0:8e:29:75:a2:e0:50:27:7e:5e:6f:cf:53:3a:a1:e0:80:a3:
75:05:17:42:11:83:41:37:ab:e0:fc:48:e8:80:bc:3f:00:32:
ce:e1:51:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:41:58 2024 by rpki-client on console-fra.rpki-client.org