Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier: ozqiJnJXpY0tykcINnSKiA+DJ1CyUwCmCNH4h/czLt4=
Subject key identifier: BC:91:64:DB:BD:4D:71:66:DA:2A:88:81:92:AF:7D:88:62:20:0F:75
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 0193579B5867F3E7A0FC2BA621AF690120BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number: 1006
Signing time: Sat 23 Nov 2024 06:00:18 +0000
Manifest this update: Sat 23 Nov 2024 06:00:18 +0000
Manifest next update: Sun 24 Nov 2024 06:00:18 +0000
Files and hashes: 1: NgIqyBbr9FZQ87TP7arvQKj9pMc.roa (hash: EJaRajFsQL9HVbiGxqudLiOhYfZ72YBjmZRATIp9f64=)
2: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: wQeSAANMoekc3QWXQz3UBKmTMWlhq/uHF8Hh3CGuVu0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:58:67:f3:e7:a0:fc:2b:a6:21:af:69:01:20:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Nov 23 06:00:18 2024 GMT
Not After : Nov 24 06:00:18 2024 GMT
Subject: CN=bc9164dbbd4d7166da2a888192af7d8862200f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:82:ff:c0:6a:2b:6a:01:76:f9:a3:2e:e7:98:
51:64:19:00:40:6d:cd:57:53:60:b8:fe:28:e4:9e:
c1:88:c8:a1:7d:84:69:a4:28:b3:b1:3d:56:5b:84:
c1:14:b2:1e:8d:ba:27:14:e2:70:1f:02:1d:d4:09:
fb:52:32:47:4c:2a:4b:9f:78:4b:c4:ec:f3:67:3d:
84:d2:1e:05:05:a0:b3:e9:be:8f:5a:a5:ef:95:17:
39:43:a8:47:44:18:a6:13:60:73:ff:2b:23:84:c3:
80:57:d0:98:66:fd:35:7f:24:7c:27:8d:dc:0b:35:
51:f3:7f:6f:3d:ea:5b:a3:b6:72:f1:88:10:be:e5:
62:a0:2a:b1:44:5e:44:37:3a:38:94:e9:7f:bc:84:
f4:d8:82:41:3f:1f:e6:00:91:af:ad:7b:4d:e6:d1:
8f:75:a9:90:89:a9:41:59:fc:bf:94:1f:68:80:a9:
e4:b4:0c:3f:45:29:b7:fd:35:cb:c7:63:80:b7:ab:
c3:74:e9:f3:db:6a:b5:27:e5:dc:d3:17:fe:78:1b:
1e:f1:4c:e9:8e:6a:4a:60:12:31:53:ff:8b:f0:90:
2e:a1:23:54:72:67:d9:7d:2f:03:07:77:27:fa:5d:
93:3d:14:03:a9:ea:00:7f:a0:75:b1:28:87:ec:4b:
70:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:91:64:DB:BD:4D:71:66:DA:2A:88:81:92:AF:7D:88:62:20:0F:75
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:5f:3d:ae:82:c8:af:fb:60:f8:27:73:44:c0:6b:47:e3:2b:
21:2f:6f:74:f9:76:c1:73:cf:b1:c0:4f:82:fe:1b:26:a2:9c:
b5:af:f1:ac:03:b3:bd:b1:c9:53:5c:23:57:aa:49:96:af:5f:
a1:c7:26:3e:a9:09:3c:79:15:4a:5c:31:37:37:01:9c:9f:54:
84:3f:0b:ae:ea:5c:af:1b:3d:cb:a8:4b:0d:8e:6c:8c:da:c2:
f8:e1:66:9d:d6:b1:19:0c:97:13:46:83:41:1c:13:11:c5:2f:
fb:19:1c:48:9c:09:ca:53:f6:ad:2b:e2:b8:b2:78:dd:ca:9d:
d6:f1:ba:da:83:e1:16:bc:22:77:83:0f:e1:67:4e:4a:0a:3a:
49:20:06:82:61:76:cd:b1:61:de:17:be:ca:fc:7d:66:88:9a:
03:8c:0b:db:1f:07:f3:8a:3c:25:bb:88:78:aa:73:4a:36:97:
2a:71:79:c6:d6:ba:80:d4:30:56:a7:93:9e:eb:d8:60:33:03:
e4:54:27:45:0e:ba:d5:25:51:72:8b:71:85:5b:62:d0:0d:9d:
86:a0:3d:a9:a0:f4:34:bf:fb:db:67:75:66:90:3f:43:0a:18:
33:89:71:6a:a4:fd:b0:c2:6c:6b:3b:13:ad:df:ff:c4:0b:2a:
44:13:84:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:41:39 2024 by rpki-client on console-ams.rpki-client.org