Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft
File: MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft (raw, json)
Hash identifier: DjCwx5c4V+E+NxrsUkGC5qMZYdUlwcfdahZ0MPEuEkk=
Subject key identifier: 6D:E1:AF:73:3C:AF:FB:3B:25:70:1D:1D:3B:7A:3F:4B:52:2D:45:83
Authority key identifier: 30:25:FD:33:9A:A6:45:04:F2:89:A0:0C:41:73:C5:5A:00:02:EB:44
Certificate issuer: /CN=3025fd339aa64504f289a00c4173c55a0002eb44
Certificate serial: 01937838FA386447E91057C5AF2AF4E3FDB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft
Manifest number: 0D4A
Signing time: Fri 29 Nov 2024 14:00:20 +0000
Manifest this update: Fri 29 Nov 2024 14:00:20 +0000
Manifest next update: Sat 30 Nov 2024 14:00:20 +0000
Files and hashes: 1: MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl (hash: 6+Jucd4V1HjRFV5Q5SWiSs2aCaWmJTsX2b27H/STeaM=)
2: QP2WbRv_yD2N_3sd9malNncX4Us.roa (hash: S/ngORpPFZiiKoY0a0p5xwlWDHsZPR0hw2UGQFg9+eU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 30 Nov 2024 11:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:78:38:fa:38:64:47:e9:10:57:c5:af:2a:f4:e3:fd:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3025fd339aa64504f289a00c4173c55a0002eb44
Validity
Not Before: Nov 29 14:00:20 2024 GMT
Not After : Nov 30 14:00:20 2024 GMT
Subject: CN=6de1af733caffb3b25701d1d3b7a3f4b522d4583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3f:92:a8:77:df:40:81:cd:f8:c4:db:ca:b6:
7a:bd:ea:d9:9f:b4:3b:49:eb:2d:f2:a2:d5:27:0b:
a5:e4:63:69:5e:70:1f:c1:4a:aa:26:d7:25:b5:a6:
41:c8:95:c4:08:68:f9:03:39:35:38:4d:7d:48:4e:
9b:61:9d:f0:d2:11:06:e8:97:e7:b6:a4:09:fd:6e:
34:71:78:1d:d0:09:6c:36:4a:f9:c3:5c:ed:2f:40:
fe:91:ef:04:a0:88:70:89:f7:0c:c6:b4:71:49:bf:
6a:3b:91:7c:e8:b8:a0:22:c4:0f:f5:ff:6e:03:c4:
8a:b2:55:4a:d9:ba:c2:19:65:ee:d9:f6:53:7e:47:
75:5c:83:dc:f7:46:aa:7d:1b:4c:cf:57:92:b9:09:
21:ed:54:86:71:39:a6:c1:51:5f:4f:a8:5d:5a:7d:
04:07:1c:f7:7e:fb:7c:09:aa:2d:cc:1b:76:71:cf:
e0:54:13:55:ea:49:ae:64:65:db:62:da:af:80:25:
58:90:5d:65:fa:b6:f0:c3:3f:0e:a8:5b:fc:64:8f:
f4:5b:6d:c9:67:2c:c4:ca:6e:00:dc:85:82:d6:3e:
e5:43:89:9f:d9:0e:25:2a:4c:c9:c0:a4:06:97:13:
62:81:6c:88:42:26:9f:af:bd:cf:ba:da:9c:af:f9:
c8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E1:AF:73:3C:AF:FB:3B:25:70:1D:1D:3B:7A:3F:4B:52:2D:45:83
X509v3 Authority Key Identifier:
keyid:30:25:FD:33:9A:A6:45:04:F2:89:A0:0C:41:73:C5:5A:00:02:EB:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:9d:5c:21:b1:4d:93:be:17:96:43:0e:f6:8b:b8:d3:ae:d4:
13:0d:fb:4d:e8:e7:1f:fa:5f:1b:39:5a:3d:04:fd:c2:29:be:
27:f2:3b:85:7a:e2:32:27:7e:5f:b9:59:10:6d:cf:53:96:0b:
67:16:7a:ce:0d:13:bd:0d:a8:48:cb:36:59:24:77:85:ac:70:
c1:57:d5:79:93:96:22:68:d3:3e:a6:4c:11:c4:02:43:3d:90:
97:43:e5:33:00:2b:dd:0b:89:c0:f4:00:0d:11:c7:e8:2f:c0:
a6:44:08:73:43:23:3c:68:2f:1d:01:a0:04:9e:7c:f9:22:97:
20:e1:63:de:d9:76:ba:ac:de:c4:cf:3f:42:fa:9d:0d:8b:fe:
5e:b3:ec:46:6e:9f:09:41:de:6e:71:3f:7f:20:46:6f:87:65:
87:72:23:67:c3:c5:6b:c8:4b:42:b8:7b:1c:2f:50:28:ef:25:
e6:90:49:92:e7:ef:99:83:41:0e:e7:fe:92:55:ec:c0:8d:a0:
ac:45:f0:34:ea:44:f1:c3:c8:c1:79:a4:ce:f2:39:1c:8f:14:
66:dc:a1:a5:b0:e9:6a:6b:1d:c7:93:d2:96:1a:5f:76:9b:e8:
cb:ce:a5:d0:86:ad:71:ed:80:ae:72:f8:50:ab:84:e2:4d:aa:
a6:3c:85:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 29 18:54:34 2024 by rpki-client on console-ams.rpki-client.org