Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
File: TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft (raw, json)
Hash identifier: C4DRHvGdu/B5zotIe4PWKampgtu6+EkBOYC/By3UnD8=
Subject key identifier: 33:96:92:08:AD:9D:76:C2:49:03:0A:EC:03:32:74:94:75:4A:68:40
Authority key identifier: 4D:F1:81:1F:39:97:B9:50:AC:89:E4:10:EA:3E:F0:18:A6:73:D5:FC
Certificate issuer: /CN=4df1811f3997b950ac89e410ea3ef018a673d5fc
Certificate serial: 01936BC95B606FFD88AB3CDD345FD161BE55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
Manifest number: 033A
Signing time: Wed 27 Nov 2024 04:02:58 +0000
Manifest this update: Wed 27 Nov 2024 04:02:58 +0000
Manifest next update: Thu 28 Nov 2024 04:02:58 +0000
Files and hashes: 1: 0cRicyUmidWBE_djmBXaUftVUV8.roa (hash: dXABuyX9P0JlwXTXdUP6jSuD7WT1eGa315E6Ln6WIa4=)
2: Baezm_8bXkS9o1OGc3Ib3OzxzbQ.roa (hash: J71/TnZdKLOG43ntzIGcfhnOq0LZrZ8hFPCXN2VPbKs=)
3: TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl (hash: 4oE2N5D4YyIq8n00902UW/zk8kQ9oEi1UZb/YG/gT3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:c9:5b:60:6f:fd:88:ab:3c:dd:34:5f:d1:61:be:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df1811f3997b950ac89e410ea3ef018a673d5fc
Validity
Not Before: Nov 27 04:02:58 2024 GMT
Not After : Nov 28 04:02:58 2024 GMT
Subject: CN=33969208ad9d76c249030aec03327494754a6840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ea:5b:b5:a4:d6:a4:78:f2:94:73:25:19:95:
3c:6f:6b:f6:56:6f:3d:9f:03:e3:41:20:c7:09:65:
75:a7:57:f3:90:b8:47:e7:26:f4:6c:d8:d7:1c:21:
2c:bc:aa:28:2c:7e:10:5b:6b:bc:34:59:7c:27:b9:
67:0c:49:ef:b9:64:30:0a:f2:8f:7b:61:ef:45:1d:
1e:88:c7:51:8a:1d:c6:5b:5f:0b:cf:45:8c:17:51:
24:de:38:5a:55:d6:10:cc:3e:64:00:fd:95:82:88:
b3:5e:dc:2e:b4:08:3b:01:a7:00:20:28:f5:bf:6d:
a7:76:61:fd:2e:39:ba:f8:07:80:ae:a9:4c:a0:e2:
79:0e:6c:00:33:c1:71:9b:1c:ae:e6:fc:4d:41:83:
20:21:85:52:ee:a9:08:7b:e2:f1:8d:c8:8a:2e:f3:
1d:55:1b:05:95:b8:e7:ac:6d:8c:09:d5:02:37:07:
08:e3:ca:a7:a9:1d:8a:8f:0e:43:d6:51:bc:e4:d5:
90:51:1d:50:8f:74:e0:20:3a:b5:64:86:5f:0a:d3:
10:77:db:34:f9:c2:1f:56:f5:31:9a:23:d2:62:c2:
ea:cf:c1:e8:58:46:de:5a:25:5a:67:1e:b9:3b:b3:
b3:1c:40:7f:0a:a4:33:e9:f5:a5:ce:0e:fa:08:6b:
71:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:96:92:08:AD:9D:76:C2:49:03:0A:EC:03:32:74:94:75:4A:68:40
X509v3 Authority Key Identifier:
keyid:4D:F1:81:1F:39:97:B9:50:AC:89:E4:10:EA:3E:F0:18:A6:73:D5:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:ba:c5:d7:d2:7b:7f:d4:fb:ab:dc:b8:e3:ad:e1:5d:22:5a:
2c:cf:e6:7a:78:85:4a:d4:c0:85:42:83:64:a6:3d:61:76:55:
88:81:9e:08:1d:9f:24:52:81:53:20:36:c2:6b:50:65:68:2b:
76:22:ff:b6:41:ab:ce:29:91:df:66:e9:12:58:e5:11:35:b3:
fb:14:c7:44:4b:44:55:a2:d7:5c:f4:2e:65:42:62:0c:ad:2f:
ca:e3:ef:8c:76:ef:01:d0:37:df:78:02:21:0c:ea:e5:5f:a7:
e5:dc:56:4f:04:ea:e5:21:4a:43:af:33:59:7d:d5:ea:bb:56:
8f:88:0b:10:57:e0:34:16:18:cc:3a:10:ff:c6:18:1a:4b:34:
fe:59:8a:fa:73:15:5a:fb:97:1e:74:cd:d9:e6:53:78:f4:7b:
90:c7:44:1d:ad:4a:e6:8b:07:77:ea:48:59:d3:5c:e9:e5:8d:
dd:29:ac:83:77:b9:4a:ea:9e:a6:d3:ca:fa:e9:66:4b:93:52:
e9:e1:06:f2:0d:e0:26:0e:e0:42:6c:9a:22:bd:c4:2e:c7:71:
fd:c5:92:f6:d5:f7:a7:69:f7:15:6c:2c:06:0c:08:66:e9:05:
8f:09:5b:49:fb:77:54:87:6c:79:b8:91:ea:95:4f:b9:37:12:
ff:b4:5f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 09:18:41 2024 by rpki-client on console-ams.rpki-client.org