Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
File: IOagEH1ompNwtiKVGkSWRsw4tZA.mft (raw, json)
Hash identifier: pcGZ5g3OQyoiLZpo/Cr1eCRcnlHviFcZaCLbLqn+X/Q=
Subject key identifier: C0:38:F5:E9:68:FB:7F:83:19:E4:D1:7E:00:B4:2D:60:2F:56:6B:A0
Authority key identifier: 20:E6:A0:10:7D:68:9A:93:70:B6:22:95:1A:44:96:46:CC:38:B5:90
Certificate issuer: /CN=20e6a0107d689a9370b622951a449646cc38b590
Certificate serial: 019369D89F2F83693AA256D3C17D88539977
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
Manifest number: 0EFA
Signing time: Tue 26 Nov 2024 19:00:24 +0000
Manifest this update: Tue 26 Nov 2024 19:00:24 +0000
Manifest next update: Wed 27 Nov 2024 19:00:24 +0000
Files and hashes: 1: IOagEH1ompNwtiKVGkSWRsw4tZA.crl (hash: vQ4gsdJQDly6DFrzNf34UTncIu9BwLUEvyHfzpz9MHU=)
2: JOfthZq066qDLVrfs367kPMm9Xk.roa (hash: vFjM9t10yd/W/kA1FoYlqFqqbk/LSbuXSA6THvEE+Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d8:9f:2f:83:69:3a:a2:56:d3:c1:7d:88:53:99:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e6a0107d689a9370b622951a449646cc38b590
Validity
Not Before: Nov 26 19:00:24 2024 GMT
Not After : Nov 27 19:00:24 2024 GMT
Subject: CN=c038f5e968fb7f8319e4d17e00b42d602f566ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a6:f2:ed:26:9f:9d:7b:68:fc:9f:26:9e:25:
76:62:9c:fb:e9:22:b4:2b:c8:57:1d:75:28:17:6b:
d9:2c:ae:e6:03:dd:66:fb:50:dc:e7:af:18:67:16:
e1:d5:16:34:27:42:8b:e0:62:04:fb:2f:59:9a:02:
db:99:84:ee:f3:a1:81:f8:7f:e6:1e:33:45:63:d8:
c3:d0:0f:3c:33:02:fb:e4:f0:e1:e9:78:58:74:32:
13:79:09:72:91:9c:9c:9f:66:54:d8:51:5a:46:81:
60:9f:f3:8c:75:2b:2a:b5:ac:2c:25:ab:66:30:28:
17:ca:35:10:51:6d:4a:14:e9:fc:9d:d3:3f:48:09:
a7:fa:9d:14:d4:62:8f:d1:ed:2e:3f:5e:e8:fe:ba:
b5:7b:da:b0:70:7a:68:05:7a:6d:98:a7:87:19:f8:
07:c1:89:3c:40:db:b1:39:c9:0b:17:62:1b:1d:27:
88:d2:d3:03:c9:d2:94:da:d8:57:b2:fe:ff:1b:a8:
21:f6:48:44:dc:a4:85:f1:ad:24:6f:db:06:04:d4:
01:f7:ae:60:5c:1b:a8:29:34:39:5d:16:0c:8b:c0:
4b:5d:6b:1b:96:d4:6b:42:a7:b5:f7:1d:8e:68:45:
e6:1f:be:b4:9d:6e:fa:f8:93:cb:ea:6e:34:97:0c:
d8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:38:F5:E9:68:FB:7F:83:19:E4:D1:7E:00:B4:2D:60:2F:56:6B:A0
X509v3 Authority Key Identifier:
keyid:20:E6:A0:10:7D:68:9A:93:70:B6:22:95:1A:44:96:46:CC:38:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:79:95:b2:25:57:5d:58:61:93:d8:25:be:71:43:df:32:9a:
17:04:79:05:25:72:31:a0:81:59:2a:94:f2:02:ee:aa:1d:20:
26:1d:e7:f9:92:5b:d0:b2:a5:85:87:d7:5e:f9:cc:07:8a:e8:
e4:01:ab:af:e5:04:7e:78:20:0e:f4:e9:35:a7:29:91:7d:a3:
e6:de:2d:3f:20:5a:a1:43:d6:98:7d:5c:e7:f7:6c:d3:53:77:
9a:62:cd:3f:4b:8f:3d:17:47:ee:cb:be:ef:69:7b:67:27:4b:
7f:1e:aa:71:04:c7:3f:19:6d:18:7a:76:56:4b:2e:29:e1:34:
3d:5a:7b:46:1f:39:c5:a3:60:7d:d1:a5:8e:05:0a:aa:c2:d0:
d0:d0:76:c5:f9:d6:46:42:b3:03:2e:22:d3:d8:c8:80:6f:93:
14:f3:fe:27:b6:9d:06:f0:bf:d2:a8:38:e1:52:a3:f6:db:51:
88:5a:07:da:0f:45:00:f5:e3:7d:35:af:fe:f0:51:a1:bb:7d:
e7:bf:39:39:27:32:d2:06:cc:df:ea:ac:e1:f1:33:b4:62:fd:
c1:cb:01:84:cd:9f:a0:24:dc:1c:b1:66:53:95:25:d8:7c:e7:
f3:77:28:e7:ba:8c:c1:a3:03:fa:60:13:82:8e:8b:74:c1:b4:
9a:15:2d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:45:00 2024 by rpki-client on console-fra.rpki-client.org