Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
File: zTu8GVzaflgkWmHLMLlv5XL9eBE.mft (raw, json)
Hash identifier: LLod4b4/cYruH7FkVaPaWSYaFLJm+ODjki5C3UNkv/o=
Subject key identifier: 88:BA:D9:F2:B0:67:24:34:A9:23:70:B4:3A:A2:CA:83:66:75:47:0A
Authority key identifier: CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
Certificate issuer: /CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Certificate serial: 0193549B95311861F94CA802D7B47D2949A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
Manifest number: 0CC2
Signing time: Fri 22 Nov 2024 16:01:42 +0000
Manifest this update: Fri 22 Nov 2024 16:01:42 +0000
Manifest next update: Sat 23 Nov 2024 16:01:42 +0000
Files and hashes: 1: Kmlt2OnDfyr-xvUq2wtLaJFFd2Q.roa (hash: WbhRtVuWF6be/CtAbJTFROvLmiN5iCcmflupCqioaKQ=)
2: zTu8GVzaflgkWmHLMLlv5XL9eBE.crl (hash: Zz8/HMMirywpzQfMp8lVAgviaNbK2z97GayBdTpPvdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:95:31:18:61:f9:4c:a8:02:d7:b4:7d:29:49:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Validity
Not Before: Nov 22 16:01:42 2024 GMT
Not After : Nov 23 16:01:42 2024 GMT
Subject: CN=88bad9f2b0672434a92370b43aa2ca836675470a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:96:08:15:ec:8e:c6:24:db:32:e5:74:fa:93:
bb:e3:ab:77:5c:f9:b1:87:ec:93:6f:08:e8:d3:e7:
2b:02:ec:35:50:1c:f7:8f:05:59:88:d8:d4:7c:cb:
cc:a4:45:86:c5:8c:6a:0f:c8:e9:bc:28:7f:93:a3:
47:41:a9:01:bc:8a:56:98:91:4b:48:44:59:2f:61:
1d:36:e8:73:be:9b:9d:99:61:f3:7f:ba:8b:28:81:
75:b5:d1:ea:05:2a:76:a1:10:e0:87:31:59:03:fd:
4a:70:d6:73:eb:86:0e:4c:0f:fd:95:eb:51:61:ba:
bd:b8:10:68:f8:50:32:ae:3f:e0:b8:ec:fd:1e:5d:
1d:3b:29:ff:ec:ff:86:83:ac:b1:b2:95:b3:d3:6c:
5a:ab:f6:96:28:10:ed:1a:80:38:c9:86:2a:58:5e:
d0:a5:aa:13:74:61:02:0a:30:25:0c:22:4e:8f:4d:
36:21:ab:4c:37:d9:23:c6:99:34:be:c6:6b:7c:7d:
8b:99:3f:a8:a5:dc:94:00:91:ae:a6:02:d9:c3:fe:
46:e6:1e:67:13:95:bd:15:43:d5:48:34:9e:62:25:
6b:29:f0:32:d8:74:49:6f:59:ae:02:1d:6e:97:23:
8d:9e:87:2f:64:c2:d4:23:35:2b:3d:c3:71:4f:7b:
c0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BA:D9:F2:B0:67:24:34:A9:23:70:B4:3A:A2:CA:83:66:75:47:0A
X509v3 Authority Key Identifier:
keyid:CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:c5:2a:f3:2f:4a:3f:eb:99:3c:5f:c0:2d:55:58:31:71:43:
1d:4b:fc:c7:fd:6a:ba:b0:a6:12:49:50:fb:3b:a1:46:06:15:
5d:3c:3a:eb:db:5a:7c:a5:d0:e7:25:c5:7c:09:29:1b:7d:62:
31:40:72:e4:cc:c0:5b:cc:f0:60:a7:bc:16:4c:28:78:d2:88:
b4:05:84:8f:67:49:63:71:b4:68:b1:dd:a9:95:b6:78:8b:37:
8f:f8:a5:a5:19:b9:a1:f8:50:b7:e7:9c:35:7b:57:c9:3e:2f:
9a:10:b6:11:80:c1:5e:b7:3a:a4:e7:c1:0f:36:ba:49:7f:83:
53:4f:39:f1:f0:13:44:4d:f7:a3:84:ab:25:49:2d:5d:d1:49:
ae:f7:a2:9f:19:af:05:bc:7e:70:ee:1a:a4:a2:04:58:51:61:
ee:64:2d:4e:4f:76:10:08:4e:17:d4:b5:bd:32:35:17:34:b7:
3f:98:eb:cc:02:ec:c7:b0:41:d4:1d:2c:33:af:de:f7:08:87:
10:0f:a7:ea:ef:5c:c0:58:48:ba:55:c7:db:16:88:11:69:4e:
6d:cf:86:7d:04:2f:03:d3:52:21:af:78:26:5a:4c:9c:4c:0e:
d3:2a:6d:18:1b:2b:b0:13:4d:2e:80:f3:5d:f4:85:30:24:8d:
07:07:94:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:12:46 2024 by rpki-client on console-ams.rpki-client.org