Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
File: b14CML55nkSCnIcgyjg0cEVJTiA.mft (raw, json)
Hash identifier: 25Qdv9z5qJcUO9D6FBrR5MRjYlnxU0a1cRqvO+HhkM0=
Subject key identifier: AC:3F:59:DD:CE:9F:F3:EB:03:3B:7B:C1:4E:EC:31:5C:B3:79:AA:35
Authority key identifier: 6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
Certificate issuer: /CN=6f5e0230be799e44829c8720ca38347045494e20
Certificate serial: 019358AE182C70FEEC137B754FE4976DE3CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
Manifest number: 139E
Signing time: Sat 23 Nov 2024 11:00:24 +0000
Manifest this update: Sat 23 Nov 2024 11:00:24 +0000
Manifest next update: Sun 24 Nov 2024 11:00:24 +0000
Files and hashes: 1: O2nsO_zBTWwDn-2vm4XK9sP4KCE.roa (hash: nLg4kyNKM+4Qshfky2sOfNYg5aLUHgU0usxtk9d/KzM=)
2: b14CML55nkSCnIcgyjg0cEVJTiA.crl (hash: ufjZ+Ycd5reD62mTs5a9xOcqZd7lxI7uaiFMjLusaAs=)
3: drGycoCjFZpiaBETqqTsTvtNmYU.roa (hash: ilnWuFckkCZOi6nFIQVcfv/JK8c2CTYUbcPx1fzLY94=)
4: eDd9SqgElFtOWHbQUFFgXN2mM8M.roa (hash: A4+aRVBhb8ovUfhm/RQlAi/l9uHJ2xyytcwmI7wJQ10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:ae:18:2c:70:fe:ec:13:7b:75:4f:e4:97:6d:e3:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5e0230be799e44829c8720ca38347045494e20
Validity
Not Before: Nov 23 11:00:24 2024 GMT
Not After : Nov 24 11:00:24 2024 GMT
Subject: CN=ac3f59ddce9ff3eb033b7bc14eec315cb379aa35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ca:16:f2:36:7c:1d:30:e4:48:6b:ac:82:58:
42:74:bc:36:39:16:e3:c6:56:bb:26:f2:73:a9:11:
48:5f:03:bc:dd:e1:26:46:02:e1:93:30:05:12:22:
29:fd:9a:99:c8:77:72:c9:fb:9a:3d:fc:24:af:e5:
4c:33:dc:f6:c0:62:4c:ca:76:60:e3:a9:a1:94:e5:
5b:fb:26:06:3e:63:72:4d:91:74:14:2f:cf:98:91:
f6:ed:d8:39:1e:9a:45:20:6a:f6:f5:c3:30:a6:e2:
c9:5a:69:26:7a:9d:09:c4:4f:c8:12:1c:14:3a:1d:
68:2d:3e:a7:f4:fa:3c:1a:f9:b8:4e:a7:95:fc:44:
a7:1f:51:e2:cf:95:50:b2:b9:b4:cd:b8:65:1a:d7:
20:1a:c2:63:be:a6:51:72:47:25:5f:88:87:7a:e8:
37:d9:47:e9:4d:91:e0:20:d9:48:26:54:0b:bc:7f:
3c:48:b6:2a:ef:8d:34:dd:ed:b7:fa:aa:bb:36:e2:
a1:19:ba:95:a8:5c:2d:25:10:11:be:e2:72:e0:fe:
c4:10:f3:3d:f2:fd:0a:f5:78:b4:e2:92:83:67:9f:
59:bf:df:71:94:6d:9f:6e:69:b5:49:41:0b:0f:31:
14:8d:d4:5a:5c:4b:5d:81:fa:5d:8c:62:04:2c:94:
cf:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:3F:59:DD:CE:9F:F3:EB:03:3B:7B:C1:4E:EC:31:5C:B3:79:AA:35
X509v3 Authority Key Identifier:
keyid:6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:12:d9:68:ba:02:02:4f:69:16:4b:bf:b3:0c:8b:9c:b5:e0:
e9:17:89:2a:62:f8:1d:88:af:f2:f1:b5:f2:94:42:4e:76:b4:
cc:28:63:a2:53:1f:9d:3b:b8:07:4c:1e:a3:be:72:08:cf:75:
29:2f:dc:ac:1e:64:d8:ad:d3:ff:80:78:b7:08:09:94:ce:56:
bb:d8:c5:2f:c1:48:c2:c8:89:6a:1f:31:ad:68:81:3d:05:be:
ca:d3:34:ec:57:18:ec:c1:fb:ad:29:cc:95:fd:f5:44:b7:74:
2d:c4:c0:71:1a:1c:8d:13:3f:fd:c5:9b:26:21:38:86:f3:d0:
69:c4:6e:fd:a5:c9:89:f4:e9:ed:96:d1:24:0e:72:b1:de:11:
fc:7b:1c:ac:d8:7e:bd:00:d6:91:5d:15:1c:ba:54:31:31:dd:
80:eb:25:c0:62:90:db:05:1b:70:34:4e:14:a9:82:a2:7e:5b:
e0:4d:43:49:1d:95:6a:20:02:b1:ba:bc:64:c1:99:d0:bd:1c:
db:e8:29:55:04:07:8f:b4:c4:59:c8:62:99:61:92:ae:a9:2e:
74:c5:bf:fa:62:dd:fd:e1:13:c9:b7:8b:7f:02:69:fb:cd:68:
00:6d:72:9d:5a:39:56:fd:82:2a:d1:ce:8f:8f:44:0a:42:ab:
38:9d:01:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:15:46 2024 by rpki-client on console-fra.rpki-client.org