Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: DcA4ozo26cllYLYXJKO3g2OleRYZ3wy8LHJu6ArZilA=
Subject key identifier: B8:24:63:86:49:D9:77:08:98:94:CC:F4:BA:2F:33:4E:5C:62:05:A2
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 019357D2E2AEB92ADA3327ADE7E1BC9BC330
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 07:00:58 +0000
Manifest this update: Sat 23 Nov 2024 07:00:58 +0000
Manifest next update: Sun 24 Nov 2024 07:00:58 +0000
Files and hashes: 1: RzNVuMXf9uQ_3ERpykVtGFwjdLw.roa (hash: SmP9ukQdRHY1zmZ9vU26ZS/6EtGITI1tXIVx5W0Ky9A=)
2: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: uScHxFbJOUWizz3Lw72t5G1WbVBW929gm0Gl7CDMJ3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:e2:ae:b9:2a:da:33:27:ad:e7:e1:bc:9b:c3:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Nov 23 07:00:58 2024 GMT
Not After : Nov 24 07:00:58 2024 GMT
Subject: CN=b824638649d977089894ccf4ba2f334e5c6205a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:db:f8:0d:63:ac:f6:d6:12:0a:3d:48:18:7b:
72:ca:db:82:41:c8:81:ae:86:f0:32:48:31:e0:f1:
38:5c:1f:d6:18:e5:23:0f:38:bb:28:d2:e2:9e:04:
b9:01:1d:7b:b2:9b:c7:16:c0:80:9b:69:d3:b9:53:
26:f3:45:c1:a9:75:2c:bf:c4:de:9d:90:19:85:1e:
09:04:86:60:67:54:47:2f:f9:0a:22:4d:90:e0:f2:
a4:fe:27:fc:d8:6e:c5:a2:13:dc:b7:66:58:64:16:
73:c8:6c:5a:c9:bc:3c:7b:29:ba:df:b3:af:38:39:
f9:75:04:8f:fd:62:4b:82:ae:f3:e8:09:ea:55:2f:
e4:a8:57:60:c8:35:a5:29:9b:45:ab:9f:ae:3c:18:
b5:6d:6b:2e:35:93:c5:38:da:89:9a:2f:c7:ec:29:
c0:6b:e7:b0:ee:f6:70:bc:95:13:20:ac:25:86:85:
da:78:30:25:5e:32:cb:94:dd:c0:c3:13:16:27:f3:
31:ad:6c:fa:9c:11:36:28:92:24:f9:5d:4d:4c:23:
be:2d:f9:bc:1a:3e:0e:cf:0e:9b:8e:25:30:c4:02:
8e:bd:57:4c:33:dc:37:4a:2f:74:63:b4:7b:67:a5:
76:9d:af:3d:49:94:1f:3b:3d:62:98:7a:2b:2d:c8:
b5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:24:63:86:49:D9:77:08:98:94:CC:F4:BA:2F:33:4E:5C:62:05:A2
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c2:d3:ce:e0:60:5b:e8:de:e2:a6:f8:d2:43:53:84:55:5a:
9d:d2:06:ae:cf:33:20:ac:9c:36:b5:8b:22:de:e6:f8:38:ff:
9f:35:b9:2f:2c:44:ff:ca:ec:f7:99:68:aa:b7:7f:6d:7b:fa:
6a:7c:9e:a4:6b:8f:c1:ac:9c:51:aa:21:9b:d4:42:59:cf:c7:
6c:1d:f4:d8:10:7e:cc:d6:8d:e6:b5:19:58:fc:0f:94:e5:a5:
00:68:38:ae:e7:50:b1:b4:a1:9e:4a:f5:4d:ea:34:1a:7f:d0:
b0:a9:05:e9:15:01:93:86:82:41:7a:4f:6a:d5:96:41:60:5f:
7f:7c:1d:51:5c:0a:10:33:3d:37:a8:32:9d:39:d2:e8:66:a2:
d5:b3:12:10:33:8a:56:da:3d:95:ad:8d:97:ed:b8:80:d8:55:
70:97:61:3b:2a:e8:35:e4:ce:e0:56:17:09:e7:7e:8b:81:3e:
e1:8d:97:1a:09:68:e3:c3:a8:9d:40:ce:70:93:a1:8b:14:55:
ef:cc:c2:b1:29:69:2f:34:9d:cf:9a:db:8d:24:50:c2:c0:9c:
e2:fb:7e:c4:55:73:1f:20:7f:76:7d:0a:7f:c5:b6:4c:9d:e6:
eb:eb:6f:ea:ad:88:1d:a6:13:19:58:a5:41:84:28:41:01:39:
f7:45:e2:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:45:20 2024 by rpki-client on console-ams.rpki-client.org