Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
File: 1AjPCbarAFupM7KnpKbSfqa7cso.mft (raw, json)
Hash identifier: R40xoxlRMOsaIhRguVT8aWxLJ4LG9NKTd5GoUlgR/qk=
Subject key identifier: 5E:B6:6B:3E:1D:6F:B2:C2:58:6B:9C:24:36:A0:FA:72:A6:93:DA:C0
Authority key identifier: D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
Certificate issuer: /CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Certificate serial: 0193579BB838054D25E32002A5741CAC2B5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
Manifest number: 8A
Signing time: Sat 23 Nov 2024 06:00:43 +0000
Manifest this update: Sat 23 Nov 2024 06:00:43 +0000
Manifest next update: Sun 24 Nov 2024 06:00:43 +0000
Files and hashes: 1: 1AjPCbarAFupM7KnpKbSfqa7cso.crl (hash: QaIFAyOHbZrJKLkMauvdNeklkeC0HOCs21kPyZW8UrE=)
2: ovoMAd9GU8LYuhe-cwKbBFnIovc.roa (hash: g5R4VSqYrbk+C8muHfYO7UgSe+CZot81G6lTB2cie8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:b8:38:05:4d:25:e3:20:02:a5:74:1c:ac:2b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Validity
Not Before: Nov 23 06:00:43 2024 GMT
Not After : Nov 24 06:00:43 2024 GMT
Subject: CN=5eb66b3e1d6fb2c2586b9c2436a0fa72a693dac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5d:0e:56:38:4a:c6:b7:25:76:99:26:85:52:
b0:e0:67:6b:61:f6:71:91:07:06:34:b0:a7:96:00:
45:5d:a4:db:6a:da:3a:b1:f8:11:ee:39:63:58:43:
8c:68:7e:02:c1:ed:6c:a0:59:ef:4e:9f:cc:56:6e:
0a:ca:df:a3:5c:65:6f:58:62:ef:95:f5:31:03:b6:
cd:55:72:a7:b2:14:1a:6f:3d:48:66:0d:7c:7b:83:
26:b8:b1:0b:28:04:71:f5:44:a4:64:84:96:9f:0f:
d5:47:a2:26:94:0f:ce:4e:c7:05:96:a2:36:38:12:
58:5f:9f:f0:01:1c:72:53:c8:e1:1a:da:2b:7c:a1:
03:9d:84:ad:73:2e:ea:81:c0:da:10:93:c6:00:4c:
4c:97:35:f1:bb:8e:44:82:37:20:21:08:3d:39:4b:
f6:f5:47:3f:d2:7a:86:37:2a:40:cb:cf:79:94:5e:
b1:13:85:eb:1a:93:a6:52:0d:f0:ab:06:bc:4f:59:
4c:f2:29:0f:f6:0f:a2:62:1f:04:85:8f:c8:9b:59:
2c:8e:d9:f1:a2:da:92:7b:a6:71:47:5c:a7:00:9f:
89:dc:d0:51:b9:01:2a:da:72:9b:29:9a:c5:7f:de:
d8:dd:cc:dd:a4:49:fa:46:27:59:ba:6d:3e:dd:12:
76:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B6:6B:3E:1D:6F:B2:C2:58:6B:9C:24:36:A0:FA:72:A6:93:DA:C0
X509v3 Authority Key Identifier:
keyid:D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:2d:99:d2:89:64:f9:02:7a:67:7a:e0:a7:1f:da:e5:2d:0f:
4c:59:5f:a5:74:5f:d4:91:a3:50:32:f1:41:86:92:82:6e:b4:
f3:28:ef:2a:9b:8a:21:aa:a0:d3:1b:c7:87:29:f3:28:e7:7e:
cd:d0:ba:9d:df:c0:74:8a:ff:c7:f7:ef:26:a4:5a:b1:9d:c5:
55:4a:a9:74:be:33:93:90:29:03:d4:71:47:11:84:94:d4:89:
ff:27:cb:84:9e:ec:20:b9:d8:bc:78:94:f1:56:fe:3a:1a:d1:
43:ca:60:4e:1a:bc:d1:94:80:ba:e3:61:b2:ac:2e:7b:4d:76:
f6:b7:b9:1a:47:8a:99:56:e9:51:88:25:23:d7:30:2f:66:18:
d2:19:ac:24:12:d2:b9:15:e3:4a:5e:fb:69:62:bf:33:51:c9:
35:3c:d0:34:aa:24:e0:b3:eb:b3:4f:01:30:d1:83:5b:4d:9d:
c5:27:f3:d7:2e:f1:11:b4:b3:56:6b:42:ac:2a:57:5a:62:0e:
6a:68:59:f5:15:be:1b:f0:34:e2:aa:6e:0b:ac:7f:26:5b:85:
4f:52:4b:a1:20:57:bf:bb:6b:c1:8c:d0:b5:02:d9:6f:b1:b9:
3d:24:a6:8d:f7:56:cc:03:d4:8e:2f:e6:00:4d:04:e2:af:9e:
eb:39:95:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:02:37 2024 by rpki-client on console-fra.rpki-client.org