Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
File: UzYQcXlxVgncpCK8B6CYRoxSlFI.mft (raw, json)
Hash identifier: k6581erD3fKlwUpPAjK7Z19UFdSpllCNrc1PLRnKjMA=
Subject key identifier: F0:29:33:19:58:AB:DA:8A:33:1C:FF:A6:E1:DE:DF:BE:56:A9:E3:11
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 019351D0460CE5C96B8133AA76F55FD48EC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
Manifest number: 137C
Signing time: Fri 22 Nov 2024 03:00:24 +0000
Manifest this update: Fri 22 Nov 2024 03:00:24 +0000
Manifest next update: Sat 23 Nov 2024 03:00:24 +0000
Files and hashes: 1: UzYQcXlxVgncpCK8B6CYRoxSlFI.crl (hash: 0z5LmnxySq4RHbPavc3jKHBHUWPO47FhA1ujud/Wltc=)
2: pTSDznJUNSrcesZ2ShMKRwPMAak.roa (hash: hWzSDBugrrJwtt8qmT5eTRQ1no38gfFBR1r2uK8kaKY=)
3: rvOEa3YvvjraROvzr80W8cxp-Mg.roa (hash: HZRsWBsa53tKg1i232WZqhbPWy2xZRxcnPjNGMXuv0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:d0:46:0c:e5:c9:6b:81:33:aa:76:f5:5f:d4:8e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Nov 22 03:00:24 2024 GMT
Not After : Nov 23 03:00:24 2024 GMT
Subject: CN=f029331958abda8a331cffa6e1dedfbe56a9e311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cb:05:ea:20:e0:7f:18:70:36:67:6a:34:1c:
2e:6e:ce:de:c1:e4:5a:74:32:2a:da:42:21:cf:11:
a6:cd:0a:19:27:e3:90:c1:b1:5b:be:f0:28:89:16:
38:a6:a0:ea:2c:6e:61:16:11:31:44:2d:2d:12:90:
60:ba:55:4e:3d:92:d5:13:16:e6:b1:cc:40:3f:f7:
e5:5f:de:86:5b:c7:f9:8b:dc:51:f9:19:c6:f4:88:
b3:d4:81:93:b3:6b:a3:37:52:fc:76:d4:f2:84:03:
35:e7:51:a6:60:e1:a2:5d:1c:cf:78:b6:ff:7f:52:
a6:72:4a:18:31:d9:7d:e1:3f:c7:2c:ea:3c:7d:c4:
57:e2:e1:ed:b4:a9:47:f9:cd:2d:fa:af:36:f2:db:
3a:e6:e2:fa:1b:ec:58:5e:2a:99:2f:7a:d6:8c:8c:
7b:8b:5d:04:06:64:6c:06:ce:c3:56:49:5d:68:47:
54:65:fc:7e:6f:ae:37:b1:0c:31:0c:15:74:d8:e2:
44:df:16:ce:8b:71:48:36:7d:ef:5c:9d:3d:8c:b9:
b5:98:9d:62:1b:6f:11:0f:84:7a:60:90:11:7f:5a:
27:42:d0:aa:9a:4d:40:e0:e2:bc:62:ff:79:97:7f:
b8:cc:5f:84:57:23:db:04:65:6a:30:5f:c5:11:16:
b8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:29:33:19:58:AB:DA:8A:33:1C:FF:A6:E1:DE:DF:BE:56:A9:E3:11
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:c0:bf:06:3d:43:db:f9:75:1e:50:53:34:4f:14:e6:2c:88:
7d:22:34:9d:b5:3e:68:b0:69:58:85:74:db:12:f8:8c:65:c3:
ed:b8:ef:f9:2b:a3:2f:2c:1d:8e:ab:5b:42:fc:0a:b6:a3:6f:
1b:32:dc:95:50:80:cf:ec:6a:62:7b:0e:8e:99:ce:ea:32:e5:
88:d5:11:12:e7:fa:38:32:42:a9:37:b1:0e:2f:ff:ef:ff:05:
78:55:cc:b6:dc:d9:9c:a8:b4:1e:bd:00:f5:f6:dd:99:97:d7:
ac:43:34:c6:16:20:9e:be:21:a4:78:dd:dd:53:cc:0c:1e:e9:
65:c4:fc:e7:7c:96:da:e2:03:bb:34:5c:36:ed:bd:6c:59:a9:
36:7f:6f:02:80:2b:47:97:51:82:2c:80:65:0a:a4:e5:ed:ab:
71:1d:d6:b0:b9:a0:8f:4e:bd:22:e2:1a:95:cc:27:27:35:47:
8f:eb:f1:e3:24:6d:cf:20:ba:e7:b3:90:f7:4b:bf:0d:ac:6b:
d2:c1:d9:7d:45:aa:25:47:3e:aa:f8:98:e7:ca:08:54:94:3b:
52:47:40:b4:aa:9e:91:c0:56:fa:9b:6a:0b:fe:1c:b5:9a:33:
7f:7f:21:42:4d:ad:77:38:c8:08:44:01:54:9e:a4:a2:11:9f:
96:21:d3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:52:03 2024 by rpki-client on console-ams.rpki-client.org