Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
File: cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft (raw, json)
Hash identifier: HDTIETaB8ZQj9Tp1IQLc1EDAr75BoznL4+7wGQI55EM=
Subject key identifier: 72:13:96:6A:06:D7:21:0D:17:3F:3D:D2:7B:BC:92:52:38:C7:96:90
Authority key identifier: 70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
Certificate issuer: /CN=708029a674177efd99252275094618c0c9cfbd1d
Certificate serial: 019363320DD645B3E95FB00020711BF0469B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
Manifest number: 0342
Signing time: Mon 25 Nov 2024 12:00:44 +0000
Manifest this update: Mon 25 Nov 2024 12:00:44 +0000
Manifest next update: Tue 26 Nov 2024 12:00:44 +0000
Files and hashes: 1: cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl (hash: JiwGydoFcaGOFxUQuMa8HEEd0jhXVEAe9zdZKLi4SEg=)
2: tYiJg603p74tpsuNgFRyGvWzvtM.roa (hash: smkzoyeBM5HoKOKNJQ3ppBMvHHJBf9z7SEYd6Ls8Lzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:39:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:63:32:0d:d6:45:b3:e9:5f:b0:00:20:71:1b:f0:46:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=708029a674177efd99252275094618c0c9cfbd1d
Validity
Not Before: Nov 25 12:00:44 2024 GMT
Not After : Nov 26 12:00:44 2024 GMT
Subject: CN=7213966a06d7210d173f3dd27bbc925238c79690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2b:9c:b3:cb:ca:0b:52:96:0c:2d:cc:6c:b7:
ea:85:03:f8:5d:60:93:2b:b8:fa:6e:65:20:7b:1d:
46:52:fc:21:db:a2:29:c0:23:72:4d:11:cf:63:f5:
af:5d:c9:0d:d1:0a:4f:e7:37:9d:00:db:75:18:75:
4f:e5:c9:9c:28:0e:67:8d:b7:9c:56:16:8f:98:a3:
ac:d5:df:9a:26:ad:2c:0f:67:52:3a:b6:5e:00:fe:
69:c7:37:ff:57:a8:27:8a:2d:aa:37:ff:a6:d6:96:
4b:79:7d:e1:ed:5f:23:af:36:39:2c:e5:ab:54:65:
f2:6a:61:eb:f8:f7:cc:4e:c2:5d:dd:8f:a7:03:d8:
98:da:34:d6:7c:b2:b6:b8:48:54:95:e1:a1:1e:79:
87:91:83:6f:e4:be:78:74:a7:40:79:21:49:ec:4b:
dd:2b:4e:fc:ee:fe:27:0d:65:57:e1:04:a6:f8:4a:
fe:f2:76:52:c4:de:f7:46:a4:40:80:9e:68:ab:c6:
3e:0d:b9:e7:19:57:29:24:81:77:54:34:df:c4:41:
5a:90:99:4e:c5:31:e4:f4:f3:b1:20:41:ca:0d:6a:
be:60:bf:20:0b:e8:04:4c:60:f6:f7:1e:bf:0c:33:
c9:76:98:93:71:0e:32:dd:5b:88:d9:cc:af:46:31:
61:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:13:96:6A:06:D7:21:0D:17:3F:3D:D2:7B:BC:92:52:38:C7:96:90
X509v3 Authority Key Identifier:
keyid:70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:a9:42:c2:45:c5:d1:de:4e:0d:72:a8:31:ac:9d:70:bb:66:
47:e7:b5:4f:2f:dc:f9:91:d3:16:43:6a:39:ea:dd:27:ea:a1:
14:87:14:72:5a:47:57:41:9f:0b:22:87:92:b0:92:86:8c:3e:
59:5d:d1:1d:f3:a1:4a:1d:d2:82:1b:9d:05:3c:f4:c9:16:99:
59:7a:4b:6d:ea:c8:6b:d1:f6:1f:78:9c:de:64:6f:80:ab:37:
14:d3:ff:b6:d9:76:8b:29:bb:cf:d3:4f:2a:98:1a:ee:fe:6a:
39:72:c0:0c:26:16:08:8e:3b:4d:3c:94:86:a7:48:95:17:4c:
c2:c6:58:1a:e1:51:76:88:b7:54:a7:66:50:aa:89:86:f5:58:
b0:e7:7e:7d:a9:66:dd:c2:dd:72:e9:be:c0:b2:7d:a8:f4:f0:
93:ce:ea:71:1f:fe:75:48:39:32:a8:9d:4e:b3:2d:4e:41:71:
1d:54:e0:e1:70:61:5c:d8:26:ca:6e:33:b7:e7:3d:4a:ac:7c:
0b:40:11:19:71:4c:85:02:a1:78:07:24:60:5a:96:5c:7b:89:
b2:1a:20:6f:a1:7a:3e:9d:2c:01:44:b8:7a:77:52:2f:23:99:
b5:0e:3b:28:92:56:5f:13:c0:94:b7:64:1e:c5:c0:eb:c4:53:
1f:b3:aa:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 13:58:12 2024 by rpki-client on console-fra.rpki-client.org