Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
File: aAONTKy9QZGZUus3CcFlM4OJAOM.mft (raw, json)
Hash identifier: 2Jdp5nO8bXhtuhYPkzCRvpmCBvIBvigTDjjBTwthfS8=
Subject key identifier: 9C:64:7C:21:4A:BD:6B:96:A7:DF:04:C7:5C:71:72:FF:AF:E7:21:AF
Authority key identifier: 68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
Certificate issuer: /CN=68038d4cacbd41919952eb3709c16533838900e3
Certificate serial: 019355E3D6F3DA3A00F366BD75DDDBB431E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
Manifest number: 1373
Signing time: Fri 22 Nov 2024 22:00:15 +0000
Manifest this update: Fri 22 Nov 2024 22:00:15 +0000
Manifest next update: Sat 23 Nov 2024 22:00:15 +0000
Files and hashes: 1: 8KQQ-Gpiby7znTIielViN0qL6Us.roa (hash: boQ2YI+4QwSAWqwfaDSp88YrJS3MVk48A4s6VhuKliQ=)
2: aAONTKy9QZGZUus3CcFlM4OJAOM.crl (hash: tLZA2etxn+0jGDJ8+NFsS847CSI5ek4d/yHkAgVnzHo=)
3: mcegTA8KryHaQRa4XPE5O1v4yY4.roa (hash: FD5+bKCL030R5u9B0DUU4AyDw7samia6m+1hQW0MLL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e3:d6:f3:da:3a:00:f3:66:bd:75:dd:db:b4:31:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68038d4cacbd41919952eb3709c16533838900e3
Validity
Not Before: Nov 22 22:00:15 2024 GMT
Not After : Nov 23 22:00:15 2024 GMT
Subject: CN=9c647c214abd6b96a7df04c75c7172ffafe721af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:58:92:db:ea:73:56:66:0f:3f:21:44:dc:96:
08:49:e9:37:f2:66:48:70:11:92:1a:42:ba:66:f4:
02:bf:dd:da:e5:53:1f:f1:32:a6:b7:40:17:9b:fe:
0e:56:07:d7:ad:9d:39:b0:e7:ff:c8:1c:6a:f0:8c:
09:8f:de:5b:9a:34:fb:b0:d4:15:12:b6:fb:61:3f:
7a:bf:4a:dd:c5:ca:69:b9:a8:67:dc:91:53:0f:4c:
01:4c:00:c1:f8:47:ac:dd:41:71:ba:f0:bb:dd:b8:
28:db:62:b0:46:23:5e:71:20:f0:a0:25:db:c2:1d:
56:07:4c:9e:2c:5e:b2:0f:2d:dc:e4:f4:db:b3:fd:
a2:c9:3c:48:93:e1:e4:19:2f:3c:e1:21:47:22:38:
a0:ed:37:9e:b4:b9:28:2b:86:2c:c2:b7:dc:7a:6f:
f6:6f:12:1c:5d:bb:2e:3e:c1:f4:e4:3f:15:27:07:
41:ab:dc:95:eb:00:b9:4b:94:29:5c:b9:be:b3:48:
86:46:b4:05:85:9d:c2:5c:8d:c2:aa:a3:59:1e:87:
b7:32:e1:03:e9:6a:62:3b:05:49:96:22:6d:72:e4:
10:3d:cb:2d:4a:a6:7b:42:f2:3f:6c:cc:a8:a5:9a:
bf:94:c6:85:ee:17:04:8d:04:9c:c4:f1:ad:90:87:
56:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:64:7C:21:4A:BD:6B:96:A7:DF:04:C7:5C:71:72:FF:AF:E7:21:AF
X509v3 Authority Key Identifier:
keyid:68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:d1:33:f2:1a:7c:94:9a:d5:fd:2e:97:13:93:75:39:fd:aa:
aa:45:a5:d1:1c:b5:8a:6b:6e:b2:47:a4:2f:bf:c0:18:1f:8d:
a2:d3:86:5f:ee:6a:f2:9a:14:a8:96:42:f3:11:67:52:88:5e:
7e:11:b2:3c:c7:d6:3b:1c:9a:04:e9:82:27:d1:06:a7:51:02:
16:9e:24:2f:b6:57:a7:82:c9:07:90:fe:66:0f:d9:9f:0b:27:
0f:09:c3:8b:46:91:f0:3b:7b:37:55:a5:dd:77:2a:57:f8:42:
fe:06:44:b2:ba:bd:1e:04:87:e8:2b:6e:6b:b8:f8:9b:4b:48:
1e:17:29:0b:12:f5:85:51:05:c2:bf:b2:a3:4c:cf:f8:82:81:
cc:22:f2:fb:30:c9:1c:38:28:f4:f8:f1:73:ac:ca:9a:5b:f5:
b8:dd:94:79:40:81:b9:49:3a:f4:30:e4:4e:e2:c5:bc:83:1b:
d1:60:85:ab:6d:be:e2:44:17:a4:0e:28:91:19:58:f6:7b:de:
b2:92:d5:4a:d6:f5:82:13:c9:dd:85:62:87:3d:7d:12:09:42:
eb:ae:a8:fd:d1:93:c0:84:9d:fd:a4:b3:3b:d7:02:03:47:55:
b3:cb:43:3a:44:0b:43:08:9e:0a:53:b7:0e:54:b6:56:db:b7:
93:df:8d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:41:54 2024 by rpki-client on console-fra.rpki-client.org