Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
File: O_zNSgBCLIZfUJO4W7howrswxGk.mft (raw, json)
Hash identifier: ++2SHITQja6jtZ9qWWi6j2aVp+e3SC2Yk8EQVU4bF0k=
Subject key identifier: EC:B5:9B:C3:B5:A5:C6:89:F0:D6:E6:58:ED:49:41:05:90:A5:47:B9
Authority key identifier: 3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
Certificate issuer: /CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Certificate serial: 01935689CC0CE705A9FF3C3D2ECFA07104CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 01:01:31 +0000
Manifest this update: Sat 23 Nov 2024 01:01:31 +0000
Manifest next update: Sun 24 Nov 2024 01:01:31 +0000
Files and hashes: 1: O_zNSgBCLIZfUJO4W7howrswxGk.crl (hash: xXhOxYWQMrQwDhYNm9fJArDs2L/retFqu2zzvzivIrY=)
2: Zeio8G8F7d8ppWeP2ZyG17JXT6w.roa (hash: nF3JyiKDubkFKWVoJeyww8LR0PDS9FDR2B455+zachk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:cc:0c:e7:05:a9:ff:3c:3d:2e:cf:a0:71:04:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Validity
Not Before: Nov 23 01:01:31 2024 GMT
Not After : Nov 24 01:01:31 2024 GMT
Subject: CN=ecb59bc3b5a5c689f0d6e658ed49410590a547b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:04:88:0f:da:da:ed:bd:6e:e3:2d:36:d6:65:
92:60:54:af:e2:83:a7:a2:70:db:97:91:11:90:9e:
16:23:2d:9e:42:dc:59:f4:da:9a:ce:e9:a5:00:d9:
4f:54:93:1e:24:e2:23:6b:d6:29:6b:74:19:23:4a:
92:9f:0e:5f:b7:55:90:fa:51:28:bc:fe:ab:22:a0:
96:17:0f:e8:c5:7a:ba:f0:0f:3f:d3:2c:a1:57:3b:
7e:a6:39:4e:af:e1:e3:18:93:8f:a6:55:6a:12:23:
b4:da:c6:90:e9:2b:12:aa:60:5f:8d:2e:24:48:20:
a7:14:c9:78:e5:4a:c2:a1:c4:50:de:f7:ee:f5:e1:
b3:a6:c8:34:8e:5b:44:f3:13:fb:5c:73:98:01:55:
87:20:6d:13:b8:56:b0:da:e4:45:dc:d1:e8:64:cb:
bb:6d:47:5e:4e:78:22:16:25:57:99:9e:10:f6:6c:
94:4e:96:9c:05:2d:96:5f:2c:87:ec:b2:57:a2:a1:
6f:70:17:59:72:bb:9d:18:5a:97:b8:08:3a:dd:d7:
20:22:e8:5f:15:e3:51:b9:da:33:14:e6:00:cb:7e:
3f:80:c6:d1:6c:11:57:7d:e5:ec:2c:45:3f:c3:4b:
34:8b:58:67:93:22:2e:98:b3:85:c1:db:f8:a7:64:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B5:9B:C3:B5:A5:C6:89:F0:D6:E6:58:ED:49:41:05:90:A5:47:B9
X509v3 Authority Key Identifier:
keyid:3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:db:5e:ed:d1:98:b1:fc:0e:be:a0:27:42:a7:27:c2:7d:17:
b2:28:12:1d:17:da:1d:02:8e:cd:b7:ee:fa:50:ac:42:91:a3:
6a:49:ce:31:c8:07:fb:63:79:bb:94:8a:8a:30:27:64:96:3b:
36:f4:da:6e:fe:f8:2a:e7:51:fc:4a:71:d6:19:be:21:39:95:
d9:9b:6f:5c:ed:be:f0:c2:f5:f9:7f:76:46:40:05:c5:a9:96:
5c:e7:ae:d9:95:2d:e8:f0:be:b6:bf:b7:34:91:ce:6d:5f:42:
d9:e4:d5:89:a4:00:ec:38:05:f7:6b:34:d8:c4:a7:74:b8:fd:
9c:85:0b:8a:8a:7b:6d:df:48:e3:1c:05:41:80:89:6e:61:ad:
cc:1a:70:19:27:ca:fa:23:b0:ac:98:b7:6a:e0:2c:b8:a7:0b:
25:ac:6f:bd:de:4d:e9:4b:38:74:85:ce:44:59:28:ad:69:46:
bd:e5:9a:7f:58:f4:cb:83:95:c8:67:b0:a7:02:d3:6a:e5:b0:
d5:a8:dc:d7:e7:84:3a:cc:07:d9:f5:ec:7d:78:cc:4b:80:c5:
99:b3:97:aa:d2:1d:25:68:75:81:88:f5:63:b1:ea:b1:dc:43:
7d:44:52:46:42:3b:22:aa:1d:5a:4b:e8:ad:25:6c:0a:5a:54:
2a:08:61:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:44:06 2024 by rpki-client on console-ams.rpki-client.org