Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: By63nDB/IL5WNqIxDDigiemMVioVkCeRi4ImVeSiG4Q=
Subject key identifier: 94:48:BA:72:4F:2A:2D:7A:85:80:F6:55:DF:6B:95:D3:18:6E:48:B8
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 019357D26D59781F638BEA77D7A049B81648
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 102E
Signing time: Sat 23 Nov 2024 07:00:28 +0000
Manifest this update: Sat 23 Nov 2024 07:00:28 +0000
Manifest next update: Sun 24 Nov 2024 07:00:28 +0000
Files and hashes: 1: CoDL1rMPxfdpffPEynRQx35TTeE.roa (hash: avC24JYivQmLLY5PTdyHs5JB4u57qa8JMZhWXR86DI4=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: +J6E2QnT0ZNyF+dPIqO/Zpv00Adj658IN7pOKFb4y0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:6d:59:78:1f:63:8b:ea:77:d7:a0:49:b8:16:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: Nov 23 07:00:28 2024 GMT
Not After : Nov 24 07:00:28 2024 GMT
Subject: CN=9448ba724f2a2d7a8580f655df6b95d3186e48b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0b:26:de:fb:38:6f:38:fb:22:c7:0a:e5:40:
0c:09:99:9d:6f:c6:41:5b:ed:50:46:22:58:b0:29:
dc:7a:7f:35:2d:98:7c:d7:6d:fe:14:d8:cc:95:71:
f3:95:b3:41:49:ec:90:08:8e:2b:c7:46:9d:37:b8:
f6:c2:c2:9d:70:fc:90:b3:0a:f9:87:d1:51:01:17:
33:0a:86:52:d0:56:67:c9:ec:0b:db:30:6d:68:69:
24:8a:d8:e9:e5:98:0f:04:45:53:e0:6f:4a:43:a0:
bf:ed:79:20:29:a6:51:c4:14:91:77:30:96:fc:0c:
42:3b:34:90:54:9e:d2:2e:f0:e1:6f:71:5e:72:6c:
e2:26:e6:de:a2:91:f8:c7:b4:4b:b9:1f:45:68:28:
7e:dc:3a:ee:1e:61:42:0a:ca:06:b8:0d:4e:95:3c:
a4:24:a2:53:6e:0b:81:f1:be:09:f8:56:41:3a:a2:
60:05:83:17:f2:75:4b:64:6c:95:a1:35:05:81:5f:
58:90:05:9a:a4:c7:50:7e:b3:26:c4:2d:5e:eb:56:
c4:9c:2b:bb:37:3a:f6:17:f0:1f:bf:5b:ec:c9:23:
e4:b1:be:14:eb:1f:59:85:c2:97:01:b2:91:9b:ee:
f9:5f:d4:df:73:18:5f:5c:51:f5:0d:0d:a1:b2:1d:
f5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:48:BA:72:4F:2A:2D:7A:85:80:F6:55:DF:6B:95:D3:18:6E:48:B8
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:42:2b:11:69:a0:4a:7c:32:ae:cb:67:55:1b:3a:d9:2c:bb:
79:ae:9a:2b:5e:33:9d:02:e2:55:04:81:bd:65:43:cc:94:50:
7b:9d:88:89:d2:7b:cd:19:16:9a:0b:99:52:d2:65:fb:9b:5b:
1a:79:f4:94:43:86:1c:07:78:24:15:4a:7c:07:a1:54:ad:ab:
85:10:c5:7b:b9:07:23:a3:c7:3d:ed:6a:33:e1:81:49:c9:09:
96:59:90:61:9c:75:52:e3:3c:22:cb:8c:a1:67:8f:01:09:11:
b1:a2:56:81:87:85:4a:9d:77:b1:dc:7c:51:d3:e7:64:a0:5c:
ae:67:28:d9:87:0c:c6:9a:df:b4:67:96:b8:7b:fc:0d:27:04:
df:0c:76:b8:bd:5a:57:de:ff:fb:50:0b:9e:f0:94:7c:66:fb:
e8:f9:9c:96:15:c9:d3:e1:b4:bc:24:36:99:1b:66:33:9e:6a:
ba:69:2d:0a:53:ce:6a:b7:df:46:34:c1:cd:3f:65:ef:10:06:
e9:fa:98:df:cf:1f:e2:e8:11:7f:c4:31:31:e2:ca:ad:47:5a:
08:ca:cf:e8:b4:60:54:e6:75:db:8a:49:16:06:63:5a:1c:94:
75:91:08:8a:c0:00:b5:7d:60:01:c7:58:16:1c:06:fe:e8:35:
49:84:98:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:41:43 2024 by rpki-client on console-ams.rpki-client.org