Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.mft
File: 2KocemiyIEQatfGzdbIj3oxhTnk.mft (raw, json)
Hash identifier: KoJ949rOYceFcZxkl88iTNQl2AoZpeQPfyWZgbVUK1I=
Subject key identifier: 1A:A5:CA:71:93:F8:3B:B4:7E:41:78:EC:A8:72:DF:DC:8A:21:7C:8E
Authority key identifier: D8:AA:1C:7A:68:B2:20:44:1A:B5:F1:B3:75:B2:23:DE:8C:61:4E:79
Certificate issuer: /CN=d8aa1c7a68b220441ab5f1b375b223de8c614e79
Certificate serial: 0193549B49465100150C0947D205EA21E25A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KocemiyIEQatfGzdbIj3oxhTnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.mft
Manifest number: 0756
Signing time: Fri 22 Nov 2024 16:01:23 +0000
Manifest this update: Fri 22 Nov 2024 16:01:23 +0000
Manifest next update: Sat 23 Nov 2024 16:01:23 +0000
Files and hashes: 1: 2KocemiyIEQatfGzdbIj3oxhTnk.crl (hash: 5FwMVMXIY/IIkg7oJzc8XbgeFIhP8eH0NVPy6YbTTps=)
2: sKqvvhIgjBdH7zAxzGApDEeA6sU.roa (hash: PslWwCWeFcvgbFy+ZeEApW6KRGwtPx8kFUMi2LW1IFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KocemiyIEQatfGzdbIj3oxhTnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:49:46:51:00:15:0c:09:47:d2:05:ea:21:e2:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8aa1c7a68b220441ab5f1b375b223de8c614e79
Validity
Not Before: Nov 22 16:01:23 2024 GMT
Not After : Nov 23 16:01:23 2024 GMT
Subject: CN=1aa5ca7193f83bb47e4178eca872dfdc8a217c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d0:2e:ce:1e:66:1d:7e:ff:29:64:c6:ea:4b:
3e:97:b7:6d:55:89:63:aa:eb:29:cd:7d:45:2c:16:
60:da:a9:22:3b:b4:dc:a6:db:45:0a:dd:a5:7d:9d:
5c:ee:5c:6f:0d:22:f9:d2:a3:7b:af:17:5d:7c:f6:
7d:1d:81:de:10:d8:d5:e4:22:3a:46:df:10:41:af:
b7:8a:47:87:06:9f:02:d7:d8:99:c9:c0:7c:c1:62:
36:cb:e5:a3:f9:90:ed:fb:90:98:7d:da:5d:76:5f:
39:9f:94:60:38:c8:d5:4a:f3:19:36:ed:99:2a:64:
df:84:11:2b:62:41:d4:4d:cc:30:17:3c:60:6b:1a:
6c:52:c1:3a:7b:61:bd:5e:71:22:e3:a0:d0:ba:14:
42:93:93:5c:68:40:64:58:95:24:97:42:84:10:fa:
91:00:74:c5:cd:e1:68:80:49:35:f7:12:bd:5a:53:
de:ce:f2:d6:fa:b4:e5:98:1c:dc:f3:a7:95:e6:7d:
61:9a:a0:55:09:e4:46:ba:b9:fb:13:9f:d8:d2:7e:
06:96:7a:4e:64:c5:d9:36:a9:eb:88:8d:3f:67:29:
91:7f:e9:02:c2:14:81:f7:df:18:73:0a:15:2b:02:
74:03:74:8c:bf:af:a4:26:01:40:8f:0a:3d:af:56:
bb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A5:CA:71:93:F8:3B:B4:7E:41:78:EC:A8:72:DF:DC:8A:21:7C:8E
X509v3 Authority Key Identifier:
keyid:D8:AA:1C:7A:68:B2:20:44:1A:B5:F1:B3:75:B2:23:DE:8C:61:4E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KocemiyIEQatfGzdbIj3oxhTnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:39:70:0e:9c:5a:49:94:88:49:1c:b8:96:90:2e:40:0e:c7:
66:cd:0f:2d:bb:f7:9b:dd:67:65:82:42:96:a2:74:30:82:57:
87:1e:a6:c0:f6:dd:37:0b:02:c0:78:38:bf:40:3e:2f:05:9a:
ae:c4:23:09:ed:10:80:6b:f5:ca:b0:26:0c:93:dd:dd:a6:de:
1a:9f:e0:8b:d1:36:57:80:cf:1e:47:00:e1:9e:5f:d0:d1:36:
19:ca:8d:e9:87:72:16:11:64:5f:b5:5d:91:37:0e:79:e6:fe:
83:6f:48:a4:7f:5b:02:a2:89:fd:60:b1:76:9a:af:2b:b2:11:
1f:98:69:c0:96:e6:c0:b4:95:b0:5f:87:16:58:0d:a1:72:72:
7e:06:85:32:9b:aa:f6:23:60:c1:5c:4d:2d:d6:be:21:36:db:
7d:97:8f:78:2d:12:d7:8f:f8:97:90:a6:c1:9b:87:64:b2:7a:
4f:f5:45:6f:84:ba:d4:2c:6a:80:c4:bd:0c:ff:42:07:9e:02:
82:91:57:b1:41:74:ad:e5:81:d3:5b:6e:23:04:86:d4:8c:13:
14:ee:a4:90:3a:cf:20:7c:a9:bf:85:d8:9e:0e:37:4b:7b:89:
02:df:3d:d3:44:da:b2:5f:d4:db:6a:82:19:82:c4:62:a4:fc:
94:55:13:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:09:06 2024 by rpki-client on console-ams.rpki-client.org