Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
File: oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft (raw, json)
Hash identifier: Koq9rw3czrm90VJu3AcOOoPkd86hnaYlWFYSyA52HF8=
Subject key identifier: BD:F3:48:6E:5C:26:B3:20:ED:8B:B9:84:B2:E7:FB:D9:CD:2B:71:AB
Authority key identifier: A0:A2:2F:CB:54:A0:91:D6:91:3F:FE:9F:AF:B9:83:C5:7A:4A:C2:2C
Certificate issuer: /CN=a0a22fcb54a091d6913ffe9fafb983c57a4ac22c
Certificate serial: 019369DAE513B441BEBA51F2EB3F45B3CA36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
Manifest number: 04CF
Signing time: Tue 26 Nov 2024 19:02:53 +0000
Manifest this update: Tue 26 Nov 2024 19:02:53 +0000
Manifest next update: Wed 27 Nov 2024 19:02:53 +0000
Files and hashes: 1: QMoo5MhPB-IRN-grs7DsurCHxxo.roa (hash: 9JdMsXD8FXCTc5K7E+/x+BhpYN+0N5DUdmtU/oYIyOE=)
2: oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl (hash: S4520xndKA0aAE4E62EIU3EM1v8mrh1MM95NC66WwPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:e5:13:b4:41:be:ba:51:f2:eb:3f:45:b3:ca:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a22fcb54a091d6913ffe9fafb983c57a4ac22c
Validity
Not Before: Nov 26 19:02:53 2024 GMT
Not After : Nov 27 19:02:53 2024 GMT
Subject: CN=bdf3486e5c26b320ed8bb984b2e7fbd9cd2b71ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4e:88:2b:a5:27:4a:68:a1:e3:30:b4:b0:9f:
7a:32:d4:88:5f:77:f9:38:40:c0:79:36:10:3c:9e:
e1:d3:8d:83:b6:a3:87:8d:08:33:7b:2f:45:d5:ac:
03:77:17:b7:c2:d3:3d:d9:bf:27:89:47:27:7f:75:
e2:1b:f3:16:12:bd:dc:17:0f:6f:77:25:ef:60:19:
9e:d5:b0:b9:b6:5b:df:c9:01:99:47:7c:b9:9b:da:
c9:ac:7e:7a:ed:7a:3a:3b:4f:2c:98:5f:3e:72:fa:
c8:71:6b:58:98:3d:38:fb:58:8c:29:e4:e1:d3:4f:
a3:9a:75:05:e5:de:f2:ed:da:bf:cd:ea:72:19:57:
41:32:af:cb:1b:6d:ee:c5:ff:a3:4b:f9:23:22:14:
a1:85:19:c3:b7:18:d2:18:09:e1:c8:3f:a6:5a:91:
89:8d:e6:f0:97:6b:2c:27:13:ea:8d:31:81:dc:85:
3a:cb:e2:4a:07:70:19:a2:53:6c:23:d8:de:17:17:
af:2f:48:05:a6:fb:b1:27:59:5d:12:2a:20:2d:32:
62:69:7b:68:5c:cf:e4:07:70:6a:64:2b:2a:5b:db:
fb:50:de:30:24:a3:5d:66:99:da:32:c7:7e:10:b6:
2f:15:eb:74:19:73:32:d4:69:61:18:49:e6:8a:c2:
ee:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F3:48:6E:5C:26:B3:20:ED:8B:B9:84:B2:E7:FB:D9:CD:2B:71:AB
X509v3 Authority Key Identifier:
keyid:A0:A2:2F:CB:54:A0:91:D6:91:3F:FE:9F:AF:B9:83:C5:7A:4A:C2:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKIvy1SgkdaRP_6fr7mDxXpKwiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/df3b30-1ba9-4c4b-aa0c-f927e582ebf9/1/oKIvy1SgkdaRP_6fr7mDxXpKwiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ea:b1:a0:13:d1:00:89:c9:9f:11:5f:76:b9:55:40:fc:f2:
6f:db:16:da:4b:70:4f:5b:0a:77:ed:77:d8:1f:45:19:5b:cc:
3c:f4:15:d4:8d:07:56:28:9c:85:22:9c:72:14:97:15:7b:d9:
57:64:90:5a:fa:56:62:b5:a6:2f:7c:7c:b4:cb:73:8f:aa:f5:
4f:d2:6f:97:9e:a0:81:bb:02:b3:ba:f2:45:fa:c1:1f:0e:cd:
0a:e0:68:1d:39:ac:d9:6a:b8:02:fa:a3:81:0e:48:fc:1d:74:
bb:c9:aa:cb:ab:27:97:69:dc:b5:29:68:71:30:e2:2f:3f:50:
cc:8c:57:31:fa:a6:81:76:aa:24:41:e4:cd:b8:5c:49:12:0f:
cf:1d:41:32:ce:05:7a:2f:ac:f6:6b:b4:05:a6:75:d7:92:9c:
22:29:b8:a8:3c:a5:4a:37:a5:20:cf:42:e4:63:20:43:d6:92:
f0:c0:ab:40:c5:a2:23:b4:e6:4c:93:3d:d8:91:51:0b:a9:07:
05:d2:85:d9:4b:e9:bb:18:b3:01:f4:29:36:69:67:d2:ed:97:
aa:a0:c6:e5:29:10:4f:b6:00:5d:96:7b:32:9b:66:04:a5:38:
60:94:82:07:19:0c:54:a6:82:32:d7:69:06:19:8a:2a:72:6f:
96:59:df:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:23:17 2024 by rpki-client on console-ams.rpki-client.org