Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
File: ib1U59acFH1rVvjGognT3q6id90.mft (raw, json)
Hash identifier: cPjScPRrN9hxRkff0E78qaTItZZr3ucK/GzZB6r2pmg=
Subject key identifier: 1D:A8:FF:1C:5A:EC:C5:33:6C:6C:2E:3F:E4:73:B8:7F:6D:E3:DF:E1
Authority key identifier: 89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
Certificate issuer: /CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Certificate serial: 019352AE46D4883B25E911EA3712ED463CFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
Manifest number: 0E1C
Signing time: Fri 22 Nov 2024 07:02:53 +0000
Manifest this update: Fri 22 Nov 2024 07:02:53 +0000
Manifest next update: Sat 23 Nov 2024 07:02:53 +0000
Files and hashes: 1: IO35Muv-BryoM0I1ZKBw4gQAssI.roa (hash: /HIdjuk2TTG+JsiNcy4Oe8mhBPP53nj2Gqq6oeor96M=)
2: ib1U59acFH1rVvjGognT3q6id90.crl (hash: 2m0Q5YES8AbLI8hTE8t6IRiH5RG9f80ftH1Bg881ViQ=)
3: pKI3eBEQp68WDIQEUJhwqRWPYsc.roa (hash: IpOvW8QzxMOVNRrSBlsgKqV3tRaohypVBi9YY6Hpvqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ae:46:d4:88:3b:25:e9:11:ea:37:12:ed:46:3c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Validity
Not Before: Nov 22 07:02:53 2024 GMT
Not After : Nov 23 07:02:53 2024 GMT
Subject: CN=1da8ff1c5aecc5336c6c2e3fe473b87f6de3dfe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ea:29:f7:d7:9a:8b:91:29:56:2f:50:24:1b:
c3:13:14:f8:d7:83:b2:8b:b1:f2:9e:7d:2e:7f:da:
47:68:fa:d2:2f:aa:a1:9b:ba:a1:16:28:55:36:53:
4f:0a:fd:34:89:15:ed:f9:b6:38:b6:26:f4:16:0f:
da:b5:f7:5c:6e:c8:a2:11:9c:60:f6:e3:3c:9b:94:
d6:de:23:01:d1:7f:59:da:de:52:ef:6f:2d:3a:37:
e4:0e:20:99:74:ef:d1:74:d7:19:6e:4b:10:2e:dd:
d9:e1:0e:51:74:b0:d6:af:7c:fc:37:74:8d:38:c9:
ab:d4:55:7e:a0:59:bb:41:03:55:21:70:bf:59:2d:
c5:51:1d:42:49:70:64:43:67:e2:82:ac:c6:86:fe:
7b:d5:3f:60:58:81:0b:3c:2b:8b:1c:a7:28:ad:95:
21:d6:99:b6:45:fc:a4:34:3e:58:d9:9e:39:e8:f3:
92:a9:30:29:38:97:ad:57:25:28:46:97:7e:64:fb:
be:89:03:ae:fa:da:54:66:3f:4b:64:72:ab:06:93:
cf:42:e5:de:d3:8c:29:ee:37:b4:34:71:08:93:24:
17:0c:83:66:32:2b:73:55:01:36:ef:d6:f8:a6:04:
c6:39:c2:45:b1:54:76:4b:9f:79:28:07:d4:02:c4:
77:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A8:FF:1C:5A:EC:C5:33:6C:6C:2E:3F:E4:73:B8:7F:6D:E3:DF:E1
X509v3 Authority Key Identifier:
keyid:89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:71:eb:f5:9a:9c:d0:28:82:a1:50:68:56:dd:69:d6:b8:2b:
d3:b7:e0:fe:01:8c:8e:f2:74:d3:3e:31:39:be:5d:af:b5:10:
43:6e:1e:e9:b0:75:e7:99:3d:17:fa:1c:65:fc:67:f1:47:94:
e3:ba:b2:7b:fd:5d:06:0d:37:98:60:07:15:4c:58:4e:dd:0c:
47:1d:42:5b:b4:67:f6:2c:21:5e:c9:67:99:86:b4:3f:a4:3a:
15:21:3e:b0:45:ee:c6:64:95:35:81:c1:d2:46:ab:a0:8d:9f:
87:24:61:97:ce:e3:9b:09:1a:69:c4:4d:a2:58:1e:6c:f0:94:
3c:28:9a:3b:de:99:a2:ee:80:c4:c7:77:39:b0:13:34:b0:5a:
d6:e2:e4:63:29:ca:d9:41:c3:29:71:5f:0e:ef:ce:ca:bc:e4:
32:7b:fa:c3:b7:5d:db:5b:14:0b:ac:c5:bd:d4:36:4e:47:ad:
04:09:f1:ac:bd:70:cc:99:24:95:34:c9:1d:df:67:df:7c:72:
b6:38:0c:9e:e5:85:53:b1:72:37:03:ca:8e:a4:2c:4f:4b:ec:
0b:32:8e:5f:44:3d:ab:9d:6a:9c:8d:b2:0e:84:e3:a8:72:65:
5e:9e:64:e0:73:89:50:82:95:f1:bf:35:08:fe:de:b7:85:0e:
b3:fa:59:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:10:33 2024 by rpki-client on console-ams.rpki-client.org