Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
File: BZ9RaALCYTCaYQSHcubq_VhnqZA.mft (raw, json)
Hash identifier: IXPVmvX9/Mp6Ow3ZyK7L48dr0XFeYCqoN8xJ4l/C/gE=
Subject key identifier: 32:59:A6:69:C0:62:E3:8F:59:68:5D:34:2C:83:44:E7:CA:8A:97:F9
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 01940759045957E2326ED052331B752F89B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
Manifest number: 1288
Signing time: Fri 27 Dec 2024 09:01:01 +0000
Manifest this update: Fri 27 Dec 2024 09:01:01 +0000
Manifest next update: Sat 28 Dec 2024 09:01:01 +0000
Files and hashes: 1: BZ9RaALCYTCaYQSHcubq_VhnqZA.crl (hash: MTCzcQ+5jEJ2W7J2SBmSztXwMH0bYwx8wP9XUadK8Fc=)
2: YBpOxQVrdrIWGjTQMdeR0s2OHS8.roa (hash: /0LxzTzyDzk5AvMBi9YnlReHZdCH3wLNIyWCejE2CCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 09:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:07:59:04:59:57:e2:32:6e:d0:52:33:1b:75:2f:89:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: Dec 27 09:01:01 2024 GMT
Not After : Dec 28 09:01:01 2024 GMT
Subject: CN=3259a669c062e38f59685d342c8344e7ca8a97f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:90:c1:01:8e:76:b9:4a:15:51:25:4b:dc:52:
ef:37:6c:a5:80:6c:de:3b:79:c4:49:c1:ca:4d:c0:
74:da:8a:60:7a:24:f0:f5:01:e3:e8:04:bd:8c:01:
1d:9e:5e:e3:2b:0f:0e:5b:ab:64:d6:95:51:fe:16:
ee:63:21:46:c6:f7:00:84:3b:6f:f3:27:c9:e0:c7:
11:6f:b6:fd:05:af:26:06:c6:ae:4e:df:72:91:a3:
ec:4f:cd:8b:62:ce:e7:73:ef:50:40:54:0b:75:69:
84:48:93:37:04:ab:b2:82:f8:bf:ed:18:cc:f6:f8:
00:fe:d0:e9:d1:20:c4:79:e0:a8:9d:13:0e:8b:d8:
50:c7:c4:8c:9b:dc:58:13:d3:b6:ee:10:15:f4:83:
a9:5b:de:a8:7e:1c:3d:4d:c8:5f:b0:c5:46:43:dc:
7a:de:f0:fc:29:37:3c:cc:ec:b3:5a:50:20:61:40:
9e:4a:8d:06:ca:23:e9:57:55:1e:21:ea:32:68:6e:
31:71:f3:61:a7:30:c6:c6:3c:97:b7:0d:66:0d:94:
bb:fb:8b:c4:ae:ea:26:7f:c0:77:81:bf:e2:89:d2:
07:f6:a6:60:80:0b:0a:0d:1c:86:be:8f:22:11:28:
12:be:53:c0:b7:9f:de:a2:a5:c1:28:ce:cc:27:cb:
0f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:59:A6:69:C0:62:E3:8F:59:68:5D:34:2C:83:44:E7:CA:8A:97:F9
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:eb:2b:14:f5:7a:bf:49:2f:36:85:67:9f:2a:f4:3f:fb:12:
2b:f9:21:53:42:e5:a8:98:a6:f0:ee:cd:af:19:52:9c:27:af:
27:3f:4f:b7:a6:a7:1f:be:51:11:86:ee:99:48:29:a5:b4:63:
eb:24:16:a2:c2:66:fa:6a:65:2f:f0:de:86:f1:f4:cf:f0:df:
f9:83:ba:5b:ea:00:51:84:ba:98:a1:d4:a0:03:15:fc:55:2e:
8b:53:2c:cf:58:98:43:5c:ca:be:7b:cc:1b:dc:20:79:70:df:
21:38:63:3c:35:90:97:84:15:9a:15:ad:aa:77:11:93:e2:43:
50:d5:ee:54:f6:ad:df:6c:95:38:a5:74:dd:68:f7:85:69:92:
d3:12:70:45:9c:c6:c3:93:ee:92:17:db:51:b1:0c:87:f1:9c:
47:73:23:8e:6b:1b:b4:18:c6:df:02:b7:62:68:20:9c:fc:81:
3a:bc:99:9b:b6:14:0d:73:09:2f:54:f8:8c:a4:66:9f:ff:2c:
20:f8:7b:af:e3:03:41:be:84:ae:2c:b8:1b:44:f8:6b:72:8c:
fc:fd:6a:13:ad:ee:34:f4:a0:11:99:7b:7c:98:52:1b:b1:e9:
9e:10:47:c4:5c:5a:5c:69:55:f4:e3:ca:85:4e:d2:11:92:03:
5a:6e:7e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:57:06 2024 by rpki-client on console-fra.rpki-client.org