Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File: fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier: Wmoumrdy50mO3Ih9Ft/TwJh5IGaEtVKrqAE6Ta/8t2s=
Subject key identifier: AB:0F:B8:C2:15:32:FA:9C:BA:FF:10:6B:F5:F4:3A:FF:80:BA:94:E3
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 019366D7D6F123209C33C2B4DC594E355AE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number: 0F54
Signing time: Tue 26 Nov 2024 05:00:41 +0000
Manifest this update: Tue 26 Nov 2024 05:00:41 +0000
Manifest next update: Wed 27 Nov 2024 05:00:41 +0000
Files and hashes: 1: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: +kVmJMs3ZgwGlLvNS7ZEzV+ut6CGXEpE9jGc6vaqmDk=)
2: hnRzRLzc-5CxEo9D5FmeYAys5AA.roa (hash: icldKDzh3hx+/R6KGwTOvdGHoYprSQ7MBGewiswZ3KQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:66:d7:d6:f1:23:20:9c:33:c2:b4:dc:59:4e:35:5a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Nov 26 05:00:41 2024 GMT
Not After : Nov 27 05:00:41 2024 GMT
Subject: CN=ab0fb8c21532fa9cbaff106bf5f43aff80ba94e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:11:e2:ad:b1:b9:76:fd:70:97:b6:40:71:ff:
24:b0:e3:99:72:c6:ad:aa:67:76:9d:24:08:5d:27:
1d:41:b4:5a:dc:40:48:2b:0f:35:51:9b:99:9d:d9:
e2:95:f1:5e:19:69:ee:6d:b7:10:c7:8a:7c:fa:bb:
bd:e8:92:1c:3c:26:31:68:5e:54:b1:14:d3:1d:0f:
c5:b2:ee:ce:fb:77:df:7a:39:2a:8b:92:a1:a6:e4:
2c:27:93:98:20:82:ed:e9:8b:b2:72:b1:8c:9a:67:
c4:58:78:b3:51:79:fd:8d:35:03:48:e0:87:2e:c2:
9b:8f:2e:ec:0f:e1:d9:1d:7a:ac:ae:50:a1:e3:48:
78:40:11:04:47:0d:c8:87:f3:30:b0:0e:a1:ed:d2:
d6:c4:93:77:8c:e1:98:f2:dd:fe:41:c0:06:73:ef:
a0:d1:b3:c7:18:29:25:a9:5c:9e:5f:b4:2a:b0:77:
20:a5:d0:93:ff:27:7a:92:88:19:aa:c1:6c:9c:3a:
90:16:9c:63:ed:67:67:50:88:07:ed:92:e2:28:d4:
fa:cc:77:9e:08:ad:f8:67:c2:02:ad:87:d5:1d:8f:
76:44:e0:6e:c4:72:a8:e1:82:e4:08:65:81:e6:98:
03:c2:d7:e3:c1:74:ef:10:81:72:66:84:ac:21:61:
ea:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0F:B8:C2:15:32:FA:9C:BA:FF:10:6B:F5:F4:3A:FF:80:BA:94:E3
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:8d:c2:36:d7:b2:59:6d:d9:ca:c4:23:3f:39:35:2f:bc:36:
c8:85:56:8e:38:ca:db:90:38:8d:90:bd:93:1f:3a:ca:03:ec:
02:9b:7c:e1:71:9c:06:82:c1:1e:5d:5d:9b:91:c7:d1:a1:d6:
12:d8:18:99:d5:fc:4d:69:cd:64:f8:03:80:83:44:ed:b2:b3:
18:4c:f1:b5:99:0f:25:bb:4b:39:85:dd:de:d7:ca:93:71:ad:
87:c0:38:6e:aa:5c:32:45:ed:13:ab:90:07:6e:3e:53:df:9e:
59:5c:18:6e:26:74:03:14:ed:3c:16:98:c1:1d:a3:0b:e3:48:
2f:24:61:c4:a9:b1:a7:37:e9:c3:da:e6:2d:a3:7b:29:9d:12:
3f:15:bd:c8:df:20:14:86:5c:a4:49:1f:26:1d:d6:7c:b5:5f:
19:16:5d:35:1a:04:96:ec:82:3b:69:21:9e:65:b2:b0:1a:c9:
e7:c2:bb:36:c1:c7:2b:f3:a6:1b:30:e8:2e:21:8e:8c:81:da:
9a:3c:a7:e3:bf:21:f9:d4:aa:94:82:82:ee:6c:f5:36:f3:cd:
03:83:d1:bd:04:be:31:c0:b7:56:4c:29:5e:ff:da:53:78:8d:
d7:2a:a6:f0:df:49:54:bd:8e:10:03:4d:12:23:04:40:60:6a:
4b:72:06:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 14:42:54 2024 by rpki-client on console-ams.rpki-client.org