Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json)
Hash identifier: GY0q8iSBi5uIhCAyrhHoQo1EAlC40TeCk6Ub4MJCdk4=
Subject key identifier: DC:EF:E4:EA:36:7E:99:89:D1:06:D4:17:C3:F5:5F:B9:D9:48:62:B1
Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84
Certificate serial: 019364E960F7EC9A52D025B369F03F78722D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
Manifest number: 1311
Signing time: Mon 25 Nov 2024 20:00:36 +0000
Manifest this update: Mon 25 Nov 2024 20:00:36 +0000
Manifest next update: Tue 26 Nov 2024 20:00:36 +0000
Files and hashes: 1: Zj80c-jabmgqBmuwT7BHYAk2ltw.roa (hash: nm3tNI/DFrq35tjcjDojC7wNLZ9/058qVzzK6kahNEM=)
2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: xbHN3scmB3j3QmKJLywC9VW1UbGZA0qxePHP3KQhkeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:e9:60:f7:ec:9a:52:d0:25:b3:69:f0:3f:78:72:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc8df88054060df685bba9739123e8342d479e84
Validity
Not Before: Nov 25 20:00:36 2024 GMT
Not After : Nov 26 20:00:36 2024 GMT
Subject: CN=dcefe4ea367e9989d106d417c3f55fb9d94862b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8e:ea:b7:7e:62:59:20:71:7f:cb:41:0d:65:
ba:fc:86:2e:df:9e:b1:12:6a:9f:ef:2b:76:10:64:
04:35:ee:57:59:0b:e5:a0:d7:b9:3e:5f:1f:cd:18:
38:62:3f:b9:83:68:fa:a3:15:70:92:32:0f:1b:2d:
e4:81:ec:0d:2f:f7:5c:53:7b:e2:21:8f:04:65:30:
67:5a:86:2c:d0:4e:f9:5f:78:bc:24:e1:87:a7:06:
0f:54:72:aa:16:58:cf:32:be:9b:88:3f:e7:25:7b:
9c:ee:a1:d8:f3:4e:ea:c7:11:d9:c1:70:09:92:f6:
31:dc:0f:59:b3:5f:7a:5b:c5:e4:57:43:8f:a6:3f:
18:a2:05:ae:e1:1d:e4:43:8e:e0:53:60:c8:b6:29:
6c:40:27:a6:64:02:d8:43:32:da:95:84:3a:8d:83:
a5:10:4f:be:51:d5:68:fd:8c:ea:48:10:f1:12:58:
68:48:6d:02:ce:c3:8c:7f:ca:c9:c8:06:bd:cc:61:
be:af:12:11:83:7c:ff:ce:01:56:19:91:50:7f:93:
b4:9c:9c:90:fb:0c:f3:10:1e:3c:a9:7a:b2:31:21:
e6:8b:86:34:62:d7:78:12:a8:31:dd:37:b2:67:70:
fc:5c:cc:d4:9f:2a:a6:97:2f:6a:d2:70:fa:50:87:
5c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:EF:E4:EA:36:7E:99:89:D1:06:D4:17:C3:F5:5F:B9:D9:48:62:B1
X509v3 Authority Key Identifier:
keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:e7:66:9a:de:30:b8:77:73:2c:1f:66:e4:ab:f6:c3:8f:fa:
42:f3:3e:10:e3:b7:34:6a:5a:18:f9:0b:5e:73:8f:ad:53:e5:
a2:0b:be:5f:b9:d2:4d:e7:af:51:35:50:9d:21:e8:9f:5a:5f:
09:60:8b:84:9d:de:f0:a4:6c:b4:78:ee:1f:9d:4a:89:16:e2:
f9:d0:7f:92:fa:2a:33:8f:b2:b0:1e:f5:7c:40:bf:b6:a0:e2:
86:76:f5:ff:84:0d:48:46:b6:ec:7d:c8:2a:92:3f:ae:36:69:
12:f4:c1:8d:d4:6b:89:f2:75:6e:54:23:06:d0:25:49:3d:46:
8a:1a:69:38:9e:3a:6c:7b:48:93:b6:48:c4:9d:b8:c7:68:27:
3d:3d:17:0b:6b:f5:de:ae:14:b8:20:72:e0:30:7a:43:83:66:
36:6d:a7:9b:07:45:67:03:b3:ef:ca:bf:4c:e1:f1:16:a8:72:
d9:42:82:f1:81:16:de:a7:d3:dd:95:89:5b:49:47:4e:37:cf:
9a:30:f9:16:73:3a:4d:9e:7c:04:9e:b0:b4:74:1a:70:64:e0:
46:f0:d5:ff:e5:de:71:f8:e2:f8:f8:a2:94:3e:e7:bf:89:b1:
5f:68:8f:47:be:bb:f3:7c:bd:83:c5:23:fc:3b:60:5b:bb:a6:
9e:86:ba:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:41:07 2024 by rpki-client on console-ams.rpki-client.org