Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
File: zTwRDf139XdXORwPrt7r42CGVx0.mft (raw, json)
Hash identifier: JQc4aS9Mk3k8yOrSljDqOdjkkxWxHjFuwgtWrVlVMEk=
Subject key identifier: 41:89:C1:71:73:00:48:88:EC:E0:AC:38:D8:C8:B2:C2:14:A0:38:69
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 019369D892AEEE2B6D17DA29250B83980DE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
Manifest number: 0B96
Signing time: Tue 26 Nov 2024 19:00:21 +0000
Manifest this update: Tue 26 Nov 2024 19:00:21 +0000
Manifest next update: Wed 27 Nov 2024 19:00:21 +0000
Files and hashes: 1: N_qYUkaIb2FHrvhvuqZlAeCEGA0.roa (hash: XQGUSq+Gh7zamrvtmNUUJYmXfatCTQeJbPQVl12rKK8=)
2: zTwRDf139XdXORwPrt7r42CGVx0.crl (hash: SBHvhwvgpb3Mr/rqgYe80TFbYUiHFh4ZdHW6GyXoTSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d8:92:ae:ee:2b:6d:17:da:29:25:0b:83:98:0d:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: Nov 26 19:00:21 2024 GMT
Not After : Nov 27 19:00:21 2024 GMT
Subject: CN=4189c17173004888ece0ac38d8c8b2c214a03869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c0:e1:26:34:15:56:59:6c:36:60:86:75:9c:
18:7f:04:07:9b:97:45:b7:d5:bf:be:ed:2a:65:8c:
6c:4a:5c:1f:2f:60:2f:45:f5:d0:64:55:47:22:cd:
f2:1a:57:f1:ce:b7:72:7f:f4:4e:d4:31:40:a3:f0:
8b:8f:0b:2f:90:05:41:a0:6b:67:a8:26:dc:3c:43:
2b:8c:b0:63:68:0f:52:b2:9f:76:8d:d4:80:1f:76:
9c:cd:24:f1:13:7f:fb:d9:80:38:fa:7c:c0:2d:b8:
ee:e9:83:42:b8:db:67:64:84:bd:40:c7:10:d1:a7:
da:f0:d6:58:05:04:27:f9:0c:92:44:b0:7d:52:af:
c0:41:5d:a4:b8:9b:d1:23:7c:29:e0:fe:ec:33:ef:
b3:d2:96:6e:a8:44:a4:10:f5:9a:63:e5:c3:b2:13:
22:ee:82:8e:2e:fe:36:00:4d:db:dd:04:98:8c:7f:
8c:51:8c:a1:f2:0a:1c:ad:a6:c6:67:11:8f:63:43:
74:05:0f:2b:17:e7:aa:71:53:3b:6a:cd:03:55:c7:
7c:03:f0:07:57:59:b0:3e:a8:7a:08:9b:b8:ce:99:
e7:61:21:50:ac:d3:c7:2d:1d:1a:e2:d4:e3:a1:4a:
64:a4:f5:26:fb:43:23:25:ff:d8:0c:33:a7:1e:99:
42:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:89:C1:71:73:00:48:88:EC:E0:AC:38:D8:C8:B2:C2:14:A0:38:69
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:ae:38:67:49:43:0d:68:48:db:e7:77:c7:f4:13:17:c5:8e:
68:6e:b3:89:77:f6:17:f9:a9:7b:c5:f4:a1:d3:0f:93:56:53:
7e:db:fb:dc:d4:ec:e0:2b:f0:35:05:62:85:61:22:79:85:aa:
4d:62:d6:74:db:39:6f:1f:f7:46:89:76:57:39:bc:bc:cf:24:
58:4a:b2:9d:c6:8e:36:2a:5f:60:2d:e7:59:78:d6:05:7d:5e:
13:cb:c1:0c:11:4b:fd:4c:b7:56:d5:1a:1c:b6:58:6f:37:87:
a3:26:7e:09:f7:36:b1:5e:c0:04:b3:7a:ef:b0:06:bd:e8:de:
f0:c0:e5:64:4c:de:d5:91:04:3c:87:b5:32:8a:e3:67:38:4c:
3c:04:19:f7:b7:a5:70:c3:e2:e8:f1:9a:72:cd:7e:61:fb:16:
96:53:e5:4d:1d:b1:29:dc:67:fa:19:22:c9:73:3b:f2:ce:f9:
f5:2d:9e:66:37:ee:2f:f7:e4:56:93:9f:7f:37:59:3a:5d:18:
91:fc:be:86:4d:2d:2c:17:c0:58:df:e8:4a:e2:02:c7:57:b8:
7e:77:60:7d:80:b3:c1:07:44:b7:98:5b:c8:13:80:37:c9:6d:
c1:63:81:70:c4:34:0f:31:4f:c7:b6:e1:d8:fc:4d:f1:c2:2e:
49:32:b7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:23:17 2024 by rpki-client on console-ams.rpki-client.org