Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
File: U7EFBlwNkTm1_-3DLJAM9ktDEus.mft (raw, json)
Hash identifier: gEmz3ZWfi9ZVlRRjLQLLbcIQIYp1MNxNGUzX4kZFtk4=
Subject key identifier: F7:A8:34:B3:04:E4:8F:E9:CF:05:8B:17:45:A0:CC:AA:01:A5:71:BF
Authority key identifier: 53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
Certificate issuer: /CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Certificate serial: 01935576A4F730608FA42B8F0721D1C5EFEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
Manifest number: 136F
Signing time: Fri 22 Nov 2024 20:00:58 +0000
Manifest this update: Fri 22 Nov 2024 20:00:58 +0000
Manifest next update: Sat 23 Nov 2024 20:00:58 +0000
Files and hashes: 1: U7EFBlwNkTm1_-3DLJAM9ktDEus.crl (hash: Q988jrb2BjonyzluWGpppeLBHkK5SjFKcSvOLzNKtn8=)
2: ei28onpouyMLlBCGHhuy-dN1vmg.roa (hash: 5q+ETSAH8H8rMlIvUB3bjsiMIKWirykIdwXIfXSda3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 20:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:76:a4:f7:30:60:8f:a4:2b:8f:07:21:d1:c5:ef:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Validity
Not Before: Nov 22 20:00:58 2024 GMT
Not After : Nov 23 20:00:58 2024 GMT
Subject: CN=f7a834b304e48fe9cf058b1745a0ccaa01a571bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:66:63:ff:1d:a0:d3:0e:a0:f6:a1:ae:8c:cc:
b5:0d:eb:de:71:2b:a8:91:42:57:ab:4f:16:c4:c6:
e6:77:21:52:81:39:f1:a9:ce:05:0c:59:f6:e7:4b:
73:9a:a6:a5:01:c2:6d:ce:5b:3a:ac:00:0e:f5:39:
a8:1c:e6:52:24:cc:e8:98:f3:1d:27:3e:81:06:0a:
da:b0:3d:10:b3:96:6d:10:18:8a:68:c5:0f:7d:f9:
12:9a:a3:31:16:fa:ea:c5:10:fd:22:88:8b:eb:d4:
dd:30:17:01:53:06:a0:f2:4c:f0:66:a5:3d:ea:83:
0c:e0:2a:62:db:e6:68:a4:b6:2c:11:cd:c4:e7:07:
32:99:10:31:a5:0f:e5:a4:9a:09:e3:de:94:f8:32:
44:ac:c0:e8:1f:87:2a:3b:73:79:d5:66:40:db:c0:
1d:19:00:07:6b:f2:bc:ad:d3:d8:31:07:40:f0:bb:
97:26:e5:8f:54:c3:64:bd:e0:60:03:8a:03:2e:8f:
ce:e0:26:79:12:a1:74:1b:b9:05:69:84:0f:68:33:
b0:a2:e4:8f:55:42:60:8b:dd:45:34:5d:04:b5:b4:
dc:c9:1e:0a:ca:f5:9f:8e:19:cc:a0:61:74:4c:1c:
42:9f:31:a1:69:22:15:c3:08:c8:23:0a:be:5b:0b:
ca:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A8:34:B3:04:E4:8F:E9:CF:05:8B:17:45:A0:CC:AA:01:A5:71:BF
X509v3 Authority Key Identifier:
keyid:53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f4:0e:61:79:7b:a0:dd:9a:66:dd:46:da:61:4d:bf:90:10:
f0:eb:1a:0d:bb:23:71:a0:64:95:9b:51:47:5b:60:b6:dc:c5:
7f:50:ed:45:4e:e9:ef:52:0c:43:8b:3e:a4:f8:27:8b:e4:b2:
aa:e0:ac:ca:a2:16:e7:ac:ad:f3:37:4a:1a:2d:bc:4e:b0:ce:
87:a1:23:ee:fc:12:17:7c:74:cd:d4:07:00:22:61:ac:3f:5f:
90:85:10:fb:77:1a:04:98:44:f4:9a:d3:1a:0f:e2:f6:88:b3:
57:92:ae:d2:20:77:ff:ea:82:68:0c:61:f4:fd:68:69:66:d0:
3b:6d:b7:9b:7e:08:e4:de:2c:b0:1a:67:44:ca:a0:fe:70:a6:
75:17:23:b9:99:b2:8b:ee:9a:6b:32:6e:f5:86:0e:e6:30:f8:
79:af:fd:99:e6:46:9d:4f:89:a8:53:6f:06:cf:72:4d:77:93:
3b:0c:c2:f9:83:fa:5f:90:99:a8:c6:c3:4c:c2:16:5a:8b:c3:
23:ba:a6:b5:4e:91:94:a6:12:b0:29:6e:21:db:82:ae:5a:1c:
c0:aa:bf:c3:91:f6:3e:a6:14:14:68:68:09:7b:d8:cc:1f:bd:
53:72:6b:f5:ce:0a:7e:ff:6b:cd:1d:75:68:8a:16:87:bf:e1:
09:03:f4:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:10:31 2024 by rpki-client on console-ams.rpki-client.org