Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/1f040b-b310-438b-b15e-3df47b620d60/1/8phZtw6kUOE62ockwOtr7syNqpE.mft
File: 8phZtw6kUOE62ockwOtr7syNqpE.mft (raw, json)
Hash identifier: 1GK0+B9Sn+mv7C4B3/ks5QOZNyPb+nPzRyllHaFM+mo=
Subject key identifier: D7:82:C3:25:A9:D1:60:C6:03:93:14:6B:D8:D1:43:B9:DE:E7:57:5C
Authority key identifier: F2:98:59:B7:0E:A4:50:E1:3A:DA:87:24:C0:EB:6B:EE:CC:8D:AA:91
Certificate issuer: /CN=f29859b70ea450e13ada8724c0eb6beecc8daa91
Certificate serial: 019369DA72F7972706A0506089D3ABB37B4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8phZtw6kUOE62ockwOtr7syNqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/1f040b-b310-438b-b15e-3df47b620d60/1/8phZtw6kUOE62ockwOtr7syNqpE.mft
Manifest number: 03DC
Signing time: Tue 26 Nov 2024 19:02:24 +0000
Manifest this update: Tue 26 Nov 2024 19:02:24 +0000
Manifest next update: Wed 27 Nov 2024 19:02:24 +0000
Files and hashes: 1: 8phZtw6kUOE62ockwOtr7syNqpE.crl (hash: XSPoNpYV/riTuPzfeCGTUPy8HROtzyZ1whTNc5EEgmo=)
2: MNoAt3lDdvyGkuhbUGnCVm60_E4.roa (hash: q52r1qZEUT4xmjqiRqeA1MU0xguxc4a4xxELYW6SSNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/1f040b-b310-438b-b15e-3df47b620d60/1/8phZtw6kUOE62ockwOtr7syNqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/1f040b-b310-438b-b15e-3df47b620d60/1/8phZtw6kUOE62ockwOtr7syNqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8phZtw6kUOE62ockwOtr7syNqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:72:f7:97:27:06:a0:50:60:89:d3:ab:b3:7b:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f29859b70ea450e13ada8724c0eb6beecc8daa91
Validity
Not Before: Nov 26 19:02:24 2024 GMT
Not After : Nov 27 19:02:24 2024 GMT
Subject: CN=d782c325a9d160c60393146bd8d143b9dee7575c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e1:f3:78:5b:2b:e8:04:1d:55:2f:36:4f:11:
bc:b2:ce:81:32:7f:4e:9a:92:47:c1:16:1f:cc:de:
e1:7c:3c:b7:be:58:49:bc:af:38:f4:68:c9:d4:47:
96:4a:85:f2:2e:ad:76:9e:14:0d:f0:83:67:1b:4e:
4c:de:e6:10:45:97:6b:17:52:f3:0c:ac:7c:58:d8:
27:f0:2e:80:37:57:96:3c:c1:ed:e4:bc:ee:8b:0e:
ba:1e:12:4c:58:e1:00:b4:00:41:35:d7:99:f7:b6:
49:02:48:e1:e2:74:cd:d6:21:cc:90:ff:85:13:f3:
7c:75:26:97:51:3f:dc:0c:8b:a7:5f:c3:7f:c1:07:
9a:fb:2c:c8:be:bd:e7:e3:0b:68:ec:a2:4c:fd:7a:
40:0b:c4:d8:cf:40:fb:8d:a1:b7:c0:e8:f6:7f:df:
32:3d:e8:d7:fc:5d:e4:2f:96:b5:3d:5d:4b:3f:0b:
66:c0:58:61:89:b8:c5:93:43:10:ad:08:0d:fa:ad:
c5:b7:dc:4a:9f:99:91:b8:89:11:ee:ad:61:40:c0:
e6:ee:d6:f7:ab:13:77:c8:2a:bf:3b:de:bc:65:01:
67:4f:f2:59:66:48:40:2b:aa:cc:a3:56:6e:a7:56:
a0:a0:da:62:02:76:8c:a6:6a:4c:b5:d3:53:f4:5b:
d4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:82:C3:25:A9:D1:60:C6:03:93:14:6B:D8:D1:43:B9:DE:E7:57:5C
X509v3 Authority Key Identifier:
keyid:F2:98:59:B7:0E:A4:50:E1:3A:DA:87:24:C0:EB:6B:EE:CC:8D:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8phZtw6kUOE62ockwOtr7syNqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/1f040b-b310-438b-b15e-3df47b620d60/1/8phZtw6kUOE62ockwOtr7syNqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/1f040b-b310-438b-b15e-3df47b620d60/1/8phZtw6kUOE62ockwOtr7syNqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:9a:1a:f6:8f:e1:bc:a9:45:2a:cb:8b:65:e3:5e:65:77:96:
c8:d4:82:b7:23:fb:9b:d0:b9:52:b0:8f:6e:bd:b4:9e:86:e4:
58:4f:b4:e2:b6:9c:53:ec:df:e3:f7:f7:59:3d:be:45:00:f9:
2e:3f:f6:69:9f:cd:06:fc:55:13:1f:54:db:66:0e:46:57:2f:
0f:06:b5:02:67:37:77:b5:2b:39:55:39:4f:f4:95:2f:9e:7e:
e5:1b:b8:5a:23:6f:e9:31:f6:6f:61:0f:9f:dd:1e:8e:c5:e1:
a6:13:58:54:7f:38:06:1d:90:e1:99:0d:eb:d7:85:a2:c1:0c:
a2:13:29:9e:09:4c:3f:e3:06:08:10:61:84:86:7b:77:96:cb:
a3:cf:a0:f6:cc:9d:bb:87:2d:87:c0:2e:b2:95:17:cd:25:c9:
d7:10:46:0c:31:ce:7f:78:d0:1a:eb:46:b2:dc:d5:5f:a1:71:
b0:11:31:cf:ea:a4:67:c4:13:d5:de:f8:76:59:f1:4b:3a:56:
fc:19:b3:ea:00:01:31:f6:f9:95:d9:c8:c3:68:89:f3:88:32:
56:a3:23:16:ce:9e:0e:b8:ad:9a:96:73:97:ec:4f:2e:78:c0:
7b:7d:3b:98:12:1d:16:d7:27:c9:ab:61:f6:93:71:c8:6f:6f:
f9:58:23:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:23:49 2024 by rpki-client on console-ams.rpki-client.org