Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: WuZjiZMnLyyD+iCf9LH5fSJFtfEPGKUb/aNp44ugIbY=
Subject key identifier: 60:F6:E9:CC:F1:F0:90:A7:E6:F8:3F:23:E3:19:1F:71:88:83:FD:74
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 019355E47391CA95D38A7BD12995DEDB5CB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 09AD
Signing time: Fri 22 Nov 2024 22:00:55 +0000
Manifest this update: Fri 22 Nov 2024 22:00:55 +0000
Manifest next update: Sat 23 Nov 2024 22:00:55 +0000
Files and hashes: 1: 9NKVnNMtAKSYfk8vUOI7FiZyiPM.roa (hash: mqZ9dFQvwzJN317+bpzpJw60GoIDhKfV5v//qZfdQDE=)
2: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: 5c0cTczRfmgGaRRwGl5Fabxpuip/UFXyRWkJUx8JJv8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e4:73:91:ca:95:d3:8a:7b:d1:29:95:de:db:5c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Nov 22 22:00:55 2024 GMT
Not After : Nov 23 22:00:55 2024 GMT
Subject: CN=60f6e9ccf1f090a7e6f83f23e3191f718883fd74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3e:0d:91:86:b1:86:6b:8a:ec:4a:52:8b:72:
e1:c2:94:b1:e4:96:bf:2a:9b:cd:fd:8b:9e:db:ff:
92:0d:ca:0f:da:1a:d4:6a:51:9d:e9:d7:fe:c0:7a:
fc:09:55:84:12:12:6a:2f:11:f4:fe:a7:48:68:e7:
8c:b1:6e:91:95:a2:47:47:ea:db:4d:6f:6b:eb:90:
a4:7f:f7:94:bc:1e:5f:e1:27:eb:37:fe:a9:ec:55:
d1:13:4c:ca:fa:20:7f:21:bc:0a:c8:ce:4a:93:c0:
fc:e2:0d:67:f9:4d:08:40:53:01:f6:65:54:ba:70:
83:d8:06:76:43:70:97:04:e5:dc:66:e1:68:0e:f2:
2b:4c:d8:ea:a8:68:04:98:2a:f8:8c:77:84:d2:3a:
66:16:ce:90:cb:8f:06:15:a3:cb:bd:5d:2d:40:1b:
bc:6e:16:4b:46:e1:f7:2e:db:8c:df:e1:e9:0f:15:
cb:9b:a4:23:97:47:1c:6f:bc:24:b3:d4:f9:59:e8:
fe:22:d4:ca:da:29:b5:32:78:57:5e:f5:c7:28:b9:
8c:af:e0:33:2d:b1:37:36:36:d5:bc:53:39:bc:cb:
70:c4:dd:7c:10:4d:59:2a:e6:1d:15:dc:e9:aa:0c:
16:40:5f:d3:e3:0e:a2:c9:ca:77:ac:19:e0:65:5a:
84:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F6:E9:CC:F1:F0:90:A7:E6:F8:3F:23:E3:19:1F:71:88:83:FD:74
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:de:a8:2f:14:b3:8f:71:19:7d:0f:1b:f6:b9:7f:2b:bf:14:
8d:ff:d0:1b:a4:93:73:4e:cc:ac:d7:f0:b8:35:47:a9:a4:ac:
c8:b3:52:63:d0:f0:71:66:69:b4:0b:ef:52:8d:db:db:a9:bf:
80:cb:34:d7:06:51:a0:f5:77:cc:e8:92:9d:01:ea:43:af:e5:
9f:dc:03:ab:fc:2b:f7:8a:c3:6a:95:45:99:aa:fd:49:5a:55:
2a:df:37:c3:7c:a9:a7:29:0b:ce:b6:6b:7e:85:c5:79:78:d7:
3c:7b:6c:12:37:fc:f4:b4:2c:68:bd:56:92:81:9b:3d:bf:c0:
84:df:80:0e:59:ca:12:f1:2b:1b:10:7c:f5:2c:96:2e:c6:cf:
5d:3f:67:ad:dc:3f:48:19:6d:69:6c:36:84:98:44:9e:e3:a8:
7e:55:75:90:fa:5a:ad:8c:1e:bb:cb:a8:80:e3:7b:e7:c8:74:
ab:e4:10:a7:67:c9:7c:f5:31:a6:5c:72:88:3b:e6:22:b0:33:
58:24:3b:b2:be:16:95:95:92:a3:e3:1b:15:40:66:e7:46:cb:
d8:09:15:76:47:48:94:65:aa:b1:d4:91:6e:68:68:a0:cb:97:
aa:bf:3b:15:40:86:19:b7:56:34:68:ee:4e:4b:e7:b5:42:13:
4c:d6:09:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:09:35 2024 by rpki-client on console-ams.rpki-client.org