Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
File: aCMaUAoKgQjcekNYsQArH9vweZU.mft (raw, json)
Hash identifier: Fo+UV69cfQOw80q00xO1RvWpv9PaSSaZ83hfdooNj3o=
Subject key identifier: BA:3B:50:0B:EB:CA:23:D1:85:07:04:93:1C:8F:0A:AC:89:53:54:D7
Authority key identifier: 68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
Certificate issuer: /CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Certificate serial: 0193568927B53FE18224308B5ABE3203945B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 01:00:49 +0000
Manifest this update: Sat 23 Nov 2024 01:00:49 +0000
Manifest next update: Sun 24 Nov 2024 01:00:49 +0000
Files and hashes: 1: aCMaUAoKgQjcekNYsQArH9vweZU.crl (hash: RzGscfS36JMnr5uyxpVeIECR78sJiOvP+IHIg1NifAo=)
2: gn52MfuRmi0pTJTc512HTtDILqE.roa (hash: GvIV/OJLtxSXR7rlggxSoTma5886O7dG5+cnCdsOZQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:27:b5:3f:e1:82:24:30:8b:5a:be:32:03:94:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Validity
Not Before: Nov 23 01:00:49 2024 GMT
Not After : Nov 24 01:00:49 2024 GMT
Subject: CN=ba3b500bebca23d1850704931c8f0aac895354d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7f:62:bf:13:d2:26:ec:83:89:48:3e:ec:b0:
6b:d0:23:33:ee:a7:9f:33:73:3e:2e:9b:b4:c9:e6:
0b:8a:44:19:4e:3e:56:dd:8f:88:86:08:4a:06:7a:
32:a3:fb:3c:86:04:da:04:19:0a:c4:ac:bc:c8:2b:
91:ec:25:88:f2:ce:93:91:01:09:f8:d0:0b:37:21:
fe:3a:89:ba:98:ad:58:3b:6d:b7:86:33:40:80:77:
0d:71:94:5e:49:ee:bd:88:29:9a:ce:7c:ca:bb:c3:
63:62:84:25:14:23:45:ca:83:d7:c9:a5:e7:60:84:
2c:ee:10:66:73:5e:0c:fe:41:a0:f8:08:a5:0f:b3:
1b:67:fb:c5:dd:bf:e3:c1:aa:e2:0d:25:2e:40:70:
97:d6:b3:11:6e:66:f4:73:10:e7:c5:62:a2:8a:56:
4a:49:d6:5b:14:69:7d:c4:86:35:36:11:d4:a2:d3:
ad:aa:39:fb:79:c5:1c:82:bb:2e:33:b9:e8:99:fb:
e4:0d:4d:81:2e:93:32:f1:53:1e:96:65:86:aa:8b:
b1:e2:bb:12:41:c3:87:c8:50:69:7f:92:af:29:80:
61:24:ea:62:dc:84:36:05:2f:f5:aa:1a:16:43:80:
77:69:d1:d9:9c:ef:62:61:7d:f0:50:c4:57:91:b9:
95:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3B:50:0B:EB:CA:23:D1:85:07:04:93:1C:8F:0A:AC:89:53:54:D7
X509v3 Authority Key Identifier:
keyid:68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:40:67:1c:c8:9f:54:28:fa:f2:41:fc:d7:30:37:f5:3a:b4:
5b:24:c5:82:a3:df:cd:3b:45:33:42:68:e4:3c:a4:51:49:d5:
d7:8d:c3:35:c8:58:aa:52:06:f6:fb:fa:72:34:72:8a:9b:2d:
f6:3a:b5:37:3a:e4:f3:fb:3c:56:8c:0d:7d:48:42:31:0c:4d:
8b:77:e6:3d:f1:b2:d8:cf:0e:b8:a0:92:ea:5e:97:09:57:9f:
07:c1:cc:f5:d7:9f:8c:7b:d7:c4:0e:e8:52:db:3c:13:d4:cf:
5b:8c:00:7f:0a:29:7e:58:9d:5a:4c:f9:4f:fc:b5:28:78:7c:
03:17:4d:9d:b0:8b:76:fa:c1:85:2f:32:6b:01:7e:44:e0:20:
f5:0d:96:ef:91:f2:a9:ca:b7:19:e3:6a:39:0b:f0:5c:37:a1:
f2:f0:30:87:be:ca:35:7a:43:8a:61:d3:94:96:55:b8:f4:d5:
f9:6d:80:1f:e8:10:14:f2:c0:c6:a9:98:c2:a7:d4:20:82:0e:
dc:4c:be:b6:23:19:67:65:57:30:7a:1a:21:de:f0:98:5f:82:
8f:09:61:9e:f1:30:af:64:c4:c5:48:7c:59:30:fd:42:75:99:
a1:ee:71:18:23:54:58:a0:c3:e9:e1:3c:43:4f:b7:81:ec:6f:
59:e9:af:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:44:02 2024 by rpki-client on console-ams.rpki-client.org