Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: qAlTreNlG1ACKTLy11+vobsXFc+mBsuVi9CAcNXRgxI=
Subject key identifier: D3:84:DF:00:A4:7B:7B:0C:E0:B0:44:8E:D0:AF:6C:4E:15:5D:E7:8A
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 0193576501ABFAEBD7714614882ABCA088F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 0DCB
Signing time: Sat 23 Nov 2024 05:00:57 +0000
Manifest this update: Sat 23 Nov 2024 05:00:57 +0000
Manifest next update: Sun 24 Nov 2024 05:00:57 +0000
Files and hashes: 1: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: A3k4Cq6R0UevOuyXJHQJhvya0/C17RwhiHOjHcjHrlM=)
2: tKNUM5qYHnLmUR_Pemx-ThQw-tA.roa (hash: PvbyW/VbJHhyrOY57u29lJ/JOLB46v3gw1/XUwhCPkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:65:01:ab:fa:eb:d7:71:46:14:88:2a:bc:a0:88:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: Nov 23 05:00:57 2024 GMT
Not After : Nov 24 05:00:57 2024 GMT
Subject: CN=d384df00a47b7b0ce0b0448ed0af6c4e155de78a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fa:78:bd:73:b2:c4:30:35:6a:e0:bb:75:13:
a6:02:60:48:27:58:d5:3a:6b:8d:9a:3a:ac:23:ad:
ff:39:e8:33:25:d1:96:f6:60:1b:e9:6b:9c:99:9a:
13:5c:81:3f:fc:5c:de:ec:26:9b:dd:5a:dd:fe:ff:
00:32:85:7e:99:e9:9f:60:e0:86:4b:c2:a4:0b:7c:
b5:12:0f:05:e0:9e:20:a3:e4:a5:d4:3d:97:5d:bf:
a5:a7:3d:c0:2d:f2:dd:c1:8e:87:f9:6a:a0:ea:e6:
75:97:e1:13:a3:c5:a1:20:d9:41:39:47:47:fd:97:
d5:bf:2c:07:ec:65:e7:e4:a7:21:6f:d4:ae:81:54:
f4:91:34:16:21:65:f5:2b:56:1e:ce:f2:8a:31:80:
bf:04:d7:2f:30:88:32:c1:62:83:92:14:8d:f8:7e:
7f:a2:ec:b5:b6:53:3e:be:53:3b:a5:91:dd:a3:65:
29:79:eb:d8:ad:08:5c:1e:e0:a6:9e:a4:18:b6:d2:
8f:d9:d6:ca:e2:b3:13:fa:8c:04:bc:1d:31:f2:8f:
78:b6:6b:06:31:c3:58:3f:d5:96:69:7f:e6:e3:ad:
20:25:fc:f5:87:90:4d:40:9f:31:ce:24:97:fe:da:
49:7f:d2:60:0d:34:0a:4b:89:f5:08:87:39:ef:8e:
03:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:84:DF:00:A4:7B:7B:0C:E0:B0:44:8E:D0:AF:6C:4E:15:5D:E7:8A
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:48:98:8a:ff:a8:c6:cc:5b:e9:87:ce:fb:d3:94:7b:65:c3:
1b:5a:84:d4:9b:a5:df:9c:2e:6c:15:a1:98:ba:e1:05:9c:c1:
67:46:ef:6f:7a:00:ac:29:95:f3:3d:56:ba:a3:59:10:9a:0e:
03:3d:df:c2:e6:d3:9c:86:bb:25:4a:e0:1e:48:4b:88:c5:52:
cb:f1:24:1a:14:06:56:40:82:8f:82:09:e2:30:ff:fd:15:b4:
31:76:50:bc:7f:4c:8c:f9:a5:d5:8f:e4:91:c1:fd:5c:3a:d8:
29:73:68:e2:7a:67:80:f0:1b:c5:56:ba:32:3a:95:89:1a:d9:
4c:47:a2:62:94:cb:b7:80:28:0c:e3:e8:2a:72:d6:e8:83:78:
80:3e:63:d9:01:41:16:a3:ec:54:f1:d3:7f:ab:82:bd:05:4b:
8b:53:b0:71:86:36:d8:55:ae:b8:97:50:d4:da:db:d4:fb:b7:
82:34:a6:97:35:9a:6c:d4:b1:79:7a:6b:16:55:42:88:67:78:
4a:a4:9b:9f:cf:51:4a:44:2f:04:a8:ae:0c:a3:ea:b5:ab:a6:
92:43:db:71:36:d0:c5:61:07:80:21:43:b3:cd:e6:af:1b:f2:
01:35:4e:f9:f8:8d:d3:6f:c4:1e:39:27:69:ce:7a:7f:e0:73:
e1:d0:64:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:42:12 2024 by rpki-client on console-ams.rpki-client.org