Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: rucb3bEkeTIBOK8fdXaZJu++s9VFTfJ5Yw9+IYi04no=
Subject key identifier: AC:67:39:87:8B:26:85:E1:71:EE:78:32:63:7A:14:A2:63:67:FE:B8
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 0193568A20E3113A46085B6FD7FAB6C930D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 0390
Signing time: Sat 23 Nov 2024 01:01:53 +0000
Manifest this update: Sat 23 Nov 2024 01:01:53 +0000
Manifest next update: Sun 24 Nov 2024 01:01:53 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: 7X19zUi2+LBPspJePJ6se/fVuS8GfkTr+T/Njdju308=)
2: _dH19zImq_RmxPIaJd2mmxFYT-A.roa (hash: TAGeIHNDtZC0wsoHN/bsp+yuip5nvz47VUKnVZq8znY=)
3: nVso3KBi7914XkOOZlnaoRiA91g.roa (hash: oJbolvXUZdiPWK4b1U3LV4m8BEiBZV8biiRqAcJ10hg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:20:e3:11:3a:46:08:5b:6f:d7:fa:b6:c9:30:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: Nov 23 01:01:53 2024 GMT
Not After : Nov 24 01:01:53 2024 GMT
Subject: CN=ac6739878b2685e171ee7832637a14a26367feb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a8:1b:59:9f:79:65:76:9f:19:01:46:5e:96:
2d:5d:d2:89:d3:ee:a5:9a:a0:f0:29:e7:e2:75:92:
9f:89:d6:88:5c:7d:6e:c2:af:bb:6f:74:f2:ee:8f:
13:f4:72:ed:f6:2d:07:a3:28:1c:ce:b5:b0:2d:1d:
89:59:fd:5d:01:25:20:3a:d0:1c:1a:5c:a5:e9:a3:
7d:95:87:fc:d5:4e:80:d2:0a:3f:89:e2:52:68:57:
ad:b7:81:c3:4a:14:02:d1:ec:55:83:0b:ac:39:a2:
42:8e:7d:69:4f:b0:9a:9f:e1:c7:cd:4a:d2:cd:83:
e6:19:70:b1:60:27:24:9e:c0:81:3a:f0:bd:da:00:
ec:80:97:2d:ff:ca:17:e2:58:70:70:b7:0b:a2:0f:
40:f9:4f:2f:4a:d4:36:0b:28:6b:fd:a6:88:0b:bd:
07:cc:32:47:fa:8e:41:b0:14:14:51:83:78:be:a8:
74:b7:1c:ec:cc:06:bd:a2:f8:41:21:d9:7d:40:a4:
8f:b6:f0:1b:08:f1:5d:4e:36:0b:aa:b8:e3:20:80:
d5:75:52:5c:11:37:1b:08:be:87:e9:06:d5:d0:dd:
a3:db:18:d9:af:5c:bc:19:11:07:27:99:11:83:31:
9f:f0:23:bc:e8:c0:d6:cb:69:04:94:d9:71:c6:45:
c5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:67:39:87:8B:26:85:E1:71:EE:78:32:63:7A:14:A2:63:67:FE:B8
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:81:05:f8:66:44:22:66:79:93:08:13:a4:5c:e0:49:6b:a9:
9e:56:e6:81:aa:70:a8:f5:a2:51:37:f4:ef:ac:15:59:13:e3:
cf:96:0d:3b:13:f8:36:37:b2:e6:04:d0:8f:a4:be:7c:be:6d:
5f:43:e9:83:25:b0:53:00:0d:cd:7c:3a:ec:e6:f5:67:dd:9f:
42:b3:a8:61:77:21:ab:b0:a1:1c:28:4c:cd:ee:93:5f:b2:06:
86:4b:48:f9:b0:74:f4:6c:a2:51:82:ce:b5:13:8e:5d:19:4d:
16:f9:98:45:69:88:59:7a:c2:da:ee:53:fa:ce:52:1d:5e:49:
50:54:bb:f7:e5:1c:22:65:09:cc:79:7f:89:af:05:1c:e3:eb:
c2:a3:e5:86:0f:bd:da:94:cf:e3:27:e8:f9:b4:39:a0:db:a0:
db:fa:5c:37:bb:49:41:38:fa:22:bc:e7:f8:2f:cf:65:60:be:
3b:7a:df:3a:89:45:16:87:ea:47:07:5f:67:a4:85:3e:cb:df:
a4:15:aa:a4:fe:ed:e2:2d:e8:6d:3e:54:fb:37:e9:1c:66:64:
f3:49:d4:7d:96:b6:ac:fc:78:68:02:a6:96:bf:20:26:6a:3f:
1e:57:df:2a:30:26:76:e9:fe:9a:49:58:fc:7e:96:ca:e7:3c:
4a:0b:4b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:42:57 2024 by rpki-client on console-ams.rpki-client.org