Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
File: ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft (raw, json)
Hash identifier: ABvR0a1hg54L1SJeE+S1a3OCXEZNcG8XAi9JaU4Vx9k=
Subject key identifier: E2:B6:C6:FC:01:CE:92:87:9D:C1:1C:44:1C:64:AB:CB:76:56:41:36
Authority key identifier: 65:28:2B:F5:2B:FB:80:F1:10:6B:3C:0E:CD:FA:1A:54:33:30:50:86
Certificate issuer: /CN=65282bf52bfb80f1106b3c0ecdfa1a5433305086
Certificate serial: 01936933B823EBE0A2F38810F7CA700DC7B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
Manifest number: 1059
Signing time: Tue 26 Nov 2024 16:00:17 +0000
Manifest this update: Tue 26 Nov 2024 16:00:17 +0000
Manifest next update: Wed 27 Nov 2024 16:00:17 +0000
Files and hashes: 1: K4QiKCBCDVJNwj3LyfcbIMw_rKE.roa (hash: b6+PypL9ti9hIT0yeSg40quGYOT605m+sImk4ubc57w=)
2: ZSgr9Sv7gPEQazwOzfoaVDMwUIY.crl (hash: +6GZC8LtCRnOtcKwmVV4U+RjWmZ7hAxT4P48xEgwkKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:33:b8:23:eb:e0:a2:f3:88:10:f7:ca:70:0d:c7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65282bf52bfb80f1106b3c0ecdfa1a5433305086
Validity
Not Before: Nov 26 16:00:17 2024 GMT
Not After : Nov 27 16:00:17 2024 GMT
Subject: CN=e2b6c6fc01ce92879dc11c441c64abcb76564136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2b:0e:5e:b4:2a:20:05:ef:aa:a8:b5:b4:0b:
3f:eb:68:6e:6f:66:c8:d4:90:34:b1:5f:25:e3:c8:
55:d5:15:9a:92:2a:8f:b7:93:19:72:ae:bc:9f:96:
96:3e:cc:bb:fb:fb:d3:1c:b1:b6:77:fd:b0:e5:9d:
0b:d5:16:57:e0:2d:93:cf:67:4a:ff:7b:f2:be:68:
ae:0b:6d:5a:dc:24:e7:69:97:e3:bf:f2:56:95:3e:
4b:b6:d8:b2:a6:32:ce:19:9e:22:3b:6a:68:6c:be:
2f:6e:87:7e:71:32:a6:0f:ab:21:f9:33:b4:ed:36:
13:24:33:d3:c8:d3:da:3b:46:c4:3c:bd:03:67:01:
55:2d:a0:20:32:4c:85:34:02:d7:20:80:85:76:88:
df:8d:38:7d:e3:d4:ee:df:b4:a2:dd:11:3b:0f:84:
b1:87:82:ff:55:4d:62:df:54:e9:33:58:53:6c:c1:
33:77:8a:99:d5:d4:1c:19:d8:c7:48:0e:37:66:34:
99:0c:49:a8:7b:c4:3e:1e:4d:f1:dd:d8:e3:b1:b2:
e1:09:b4:f4:58:01:d3:5f:19:3e:d6:97:51:a9:c3:
04:32:57:67:04:6b:dd:e3:aa:e7:29:fe:d2:67:8a:
4f:eb:42:12:03:b1:39:9e:ac:db:f9:12:c7:c3:f3:
ed:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B6:C6:FC:01:CE:92:87:9D:C1:1C:44:1C:64:AB:CB:76:56:41:36
X509v3 Authority Key Identifier:
keyid:65:28:2B:F5:2B:FB:80:F1:10:6B:3C:0E:CD:FA:1A:54:33:30:50:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:bd:a5:64:fe:d2:57:da:88:c5:f9:c2:79:0c:c3:45:e3:fb:
09:ab:60:91:aa:fb:56:f7:7f:4f:72:cf:93:e6:08:ab:73:87:
e3:91:08:e2:bc:97:11:75:1a:74:6d:66:26:94:ad:15:97:db:
48:71:bf:f7:99:5a:08:80:cf:fa:d4:b4:10:d4:fa:bd:8f:3a:
14:aa:03:bc:97:9e:74:e4:b4:f5:41:f4:e1:d0:e6:ab:3b:98:
b1:10:a8:74:37:9b:57:89:c2:b0:ee:b3:e8:fa:33:ee:9b:12:
1a:e1:84:a8:a7:ee:cd:60:3f:64:67:f2:16:49:be:99:47:c5:
2f:aa:a8:7a:94:88:4d:22:3b:bc:2b:7c:47:30:e5:11:93:9e:
ec:94:9d:61:46:bc:f0:95:54:b8:49:a7:e2:e6:f4:a3:1e:06:
07:5a:a7:1a:1c:57:6a:ee:40:95:71:91:86:b3:87:e3:12:ab:
2a:b1:dd:24:20:ce:07:94:5f:78:d5:35:e3:87:b4:5d:93:f5:
07:b5:62:01:4c:17:14:28:a6:63:41:48:cd:33:6c:cc:8c:4d:
b1:6c:db:60:34:38:e6:f1:0e:af:8d:8e:c6:1a:d1:e1:d8:0b:
90:74:c9:c2:7b:a4:08:b8:b0:ba:92:7d:ee:8d:cf:1d:21:e8:
d6:68:c0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:23:20 2024 by rpki-client on console-ams.rpki-client.org