Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
File: 2PcA7rBSdLMdwdrzDNfIExCrRS0.mft (raw, json)
Hash identifier: eyjVKWoWCnbF0lVE5kAtVe9nsuvanDE9y9WA49ODZao=
Subject key identifier: 64:09:D6:4B:88:1D:66:99:72:20:5B:60:C8:54:9F:3E:2A:1F:E2:DE
Authority key identifier: D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
Certificate issuer: /CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Certificate serial: 019356897800C4BE0F64DBA29021837FB56C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
Manifest number: 05AC
Signing time: Sat 23 Nov 2024 01:01:09 +0000
Manifest this update: Sat 23 Nov 2024 01:01:09 +0000
Manifest next update: Sun 24 Nov 2024 01:01:09 +0000
Files and hashes: 1: 2PcA7rBSdLMdwdrzDNfIExCrRS0.crl (hash: Qnz0AQauyyZCR4TU06a9A/dsRUhDgykKvAdUXoxw1tw=)
2: WIbPMtHhgEIpHqh23ZaGjjVbp8c.roa (hash: a2OgNOEYcWSGV/wNsBNYO4YRIZDgeCN7JXpO7KJxBJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:78:00:c4:be:0f:64:db:a2:90:21:83:7f:b5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Validity
Not Before: Nov 23 01:01:09 2024 GMT
Not After : Nov 24 01:01:09 2024 GMT
Subject: CN=6409d64b881d669972205b60c8549f3e2a1fe2de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:b0:df:65:dd:72:52:72:17:a9:6f:59:ce:
34:13:eb:4a:93:61:64:99:f9:9a:a7:62:48:eb:75:
73:27:99:ef:fa:11:7f:e7:dc:b3:ed:be:8b:f8:48:
f7:04:65:93:13:30:9b:d3:56:50:e8:e0:56:70:d9:
4b:67:97:b8:3b:ad:6b:4d:ce:dd:9d:30:b1:49:dc:
0f:d2:98:50:18:c3:c7:15:9c:93:b3:c1:22:81:bb:
ec:46:f2:73:f7:e1:0d:de:24:af:9b:a1:8c:4d:f9:
7a:91:35:06:49:ed:ba:24:c5:25:4c:d6:cf:fb:8e:
99:39:eb:a9:b6:5b:72:78:9e:04:9a:f6:8f:be:d1:
a4:d1:b0:94:82:57:4b:76:7d:58:41:f1:0f:c6:e4:
11:9f:63:18:ea:86:d2:f3:84:6e:c7:fe:7d:51:49:
0e:55:64:e5:fb:34:28:b8:72:e4:03:95:f9:06:bc:
5b:82:fb:6c:90:9f:3b:79:54:82:2c:ec:6d:1f:cb:
bf:3d:45:d1:6e:ef:b2:7c:26:6d:61:38:5c:59:6c:
ef:84:94:94:7d:2d:3d:8d:e8:68:0b:2b:41:a2:3c:
ef:7c:31:2f:b6:73:f0:b7:25:7b:6a:93:9d:8c:cf:
82:88:df:5b:b6:01:b2:b5:50:7e:95:85:40:eb:4a:
83:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:09:D6:4B:88:1D:66:99:72:20:5B:60:C8:54:9F:3E:2A:1F:E2:DE
X509v3 Authority Key Identifier:
keyid:D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:a6:52:fc:60:a7:3f:3a:13:2b:b0:b7:d7:24:c4:34:78:5f:
9d:72:8c:51:36:9a:41:c8:e4:80:15:f5:df:cf:1b:58:84:36:
a8:0c:9e:96:39:9d:73:0e:a3:3f:35:9d:7c:ea:03:c3:f5:4c:
5e:35:b5:9b:e3:bb:e0:5b:30:fb:23:52:16:83:d1:67:bb:c4:
27:ae:d8:47:47:cb:7c:6b:5d:d5:20:98:25:e3:24:54:33:3d:
fa:7c:19:47:5c:ca:2a:ff:fd:84:e8:ce:ca:0a:e7:19:d5:a0:
a0:9e:e2:e3:ab:e6:a0:0f:31:3e:95:84:ef:16:72:5c:49:53:
4e:df:46:7c:09:b7:87:af:13:cc:41:58:eb:e5:93:f4:5d:b8:
68:c7:a3:11:5f:02:b1:2a:fb:c7:a5:6f:cb:fd:2e:3e:5c:bd:
00:dc:60:22:2d:96:41:99:ec:14:83:ed:8f:d1:2e:0e:e0:33:
e8:3a:45:d1:bb:1a:ac:b7:6a:be:0c:4b:1b:19:a1:38:63:ee:
58:e7:eb:bf:57:ed:f0:9d:ca:b3:ab:63:31:49:6a:2e:12:1f:
44:9e:8d:ad:18:5d:bc:11:9a:e3:e3:d8:ee:f4:dc:31:bc:c5:
77:de:28:70:dd:dd:3d:44:9e:92:b3:46:60:06:16:20:08:04:
e1:e9:33:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:44:54 2024 by rpki-client on console-ams.rpki-client.org