Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: lMJtv9WWfvnYgmj1ZSFraSvVQBnrphG8za5xpVccO+A=
Subject key identifier: 7D:59:FD:AC:AB:43:43:6A:29:92:87:EE:1A:4F:73:66:E0:73:C9:B6
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 019357D23A08967C3BFD10A76285DAFBA325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 10C2
Signing time: Sat 23 Nov 2024 07:00:15 +0000
Manifest this update: Sat 23 Nov 2024 07:00:15 +0000
Manifest next update: Sun 24 Nov 2024 07:00:15 +0000
Files and hashes: 1: TZP1yZtVqdIMqofCfojzEK4dAVc.roa (hash: +otq2ibCXSqYtyMREu/dMTJHdUAtUTHEMaaaP49/drk=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: PhgQX8gRR4/V6AyRP9yTuTqqxBJDig4CilU8QqDmZg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:3a:08:96:7c:3b:fd:10:a7:62:85:da:fb:a3:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Nov 23 07:00:15 2024 GMT
Not After : Nov 24 07:00:15 2024 GMT
Subject: CN=7d59fdacab43436a299287ee1a4f7366e073c9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:78:78:b4:0f:56:75:98:97:d9:69:c3:32:b5:
cb:1b:61:5c:74:5f:6a:be:1f:ef:25:1f:1d:19:32:
f3:58:8f:9b:fb:8e:f2:50:08:da:51:06:c7:02:e6:
df:02:00:95:2e:b7:7b:8f:8f:3e:3f:40:4e:07:5c:
28:3c:b3:ca:7c:51:7a:d5:23:7b:29:ae:e1:d5:b4:
ee:d5:37:b6:56:c8:33:b1:c2:e9:3c:6f:48:c3:3f:
ef:f8:6e:3f:04:de:b5:1b:cb:c6:c8:bf:52:83:3f:
be:ec:bc:a1:dd:b3:16:b9:d4:3d:0d:43:1f:7c:d3:
ac:33:18:6a:df:c8:28:03:e7:ac:99:11:41:2c:e2:
e5:4c:7c:09:20:70:bd:46:79:36:86:57:b1:4e:71:
a7:a3:ef:b6:d1:8b:7f:04:5a:00:d4:91:11:b8:10:
66:c1:b6:c7:eb:25:37:9d:42:b3:35:e6:9f:71:85:
dc:75:9e:c2:56:36:22:9e:19:e0:c1:4f:5d:28:40:
dc:d6:cd:e4:f3:4e:30:b0:98:3e:4c:82:e0:f1:97:
fc:b3:be:74:63:4a:87:fc:c5:63:92:12:87:de:34:
59:af:cc:c4:bc:40:4f:2a:6c:01:f7:9a:53:54:bb:
ef:09:30:ad:01:d7:dc:1a:ef:66:af:f0:7c:cc:83:
ce:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:59:FD:AC:AB:43:43:6A:29:92:87:EE:1A:4F:73:66:E0:73:C9:B6
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:dc:1a:8b:42:5c:ed:41:f7:41:69:b2:55:23:b4:4d:e1:5a:
a0:49:52:0f:a4:93:e2:f8:34:98:b5:b4:77:c2:03:cd:b9:7a:
c9:09:e2:bc:3a:06:6e:67:bf:b1:e5:fe:c0:1e:e4:a5:06:1a:
52:9d:af:cd:cf:d5:4d:c0:57:52:67:6e:21:46:b2:fa:9b:71:
f8:f4:76:88:d4:9c:52:b7:cc:84:b2:09:bf:ae:1b:fc:cf:b5:
14:fa:32:49:dd:75:ca:97:9a:81:1d:3a:7d:2b:19:4a:b0:73:
83:a4:da:8c:8e:3d:3c:11:a8:46:fa:30:ff:71:12:8e:ef:8c:
84:c4:8c:42:66:8e:ae:6c:b2:47:8e:12:80:1e:7f:4e:a7:3e:
a6:05:27:78:62:0c:1c:18:48:34:04:42:e3:6a:1b:ea:5f:69:
78:83:1a:be:6a:3c:56:d3:39:a1:5d:81:49:b3:b7:7a:71:2b:
17:56:8d:87:af:7f:15:85:7a:b6:2f:cf:ac:99:b3:8a:46:c6:
27:c6:32:64:09:e3:22:6e:06:d9:b6:88:52:f2:88:31:d4:a3:
b0:6d:25:dd:ea:48:c2:d8:87:ef:09:d2:fa:3e:2d:f8:e8:38:
3e:16:52:82:f5:43:fe:bf:66:57:89:87:0e:15:02:60:02:98:
0f:da:51:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:59:49 2024 by rpki-client on console-fra.rpki-client.org