Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
File: aYhRnekYGF-24euv0eCDXKoRMuQ.mft (raw, json)
Hash identifier: p3nAu6hQNSU0awoud99PVJjfr6GETaxkTq+/hWiWuIU=
Subject key identifier: 65:0E:4D:F2:2E:35:EC:CB:A4:71:77:C7:F5:FE:99:44:C3:DF:0C:BA
Authority key identifier: 69:88:51:9D:E9:18:18:5F:B6:E1:EB:AF:D1:E0:83:5C:AA:11:32:E4
Certificate issuer: /CN=6988519de918185fb6e1ebafd1e0835caa1132e4
Certificate serial: 0193579B88B817F6E13A01AED59D393F5E1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
Manifest number: 0E39
Signing time: Sat 23 Nov 2024 06:00:31 +0000
Manifest this update: Sat 23 Nov 2024 06:00:31 +0000
Manifest next update: Sun 24 Nov 2024 06:00:31 +0000
Files and hashes: 1: I9DY8VT-KAurtxLIX6CQIadJ_B0.roa (hash: mxxcv2uCMotRHKPk9FSatxUH44KgB6K4J+k22KU5FW8=)
2: aYhRnekYGF-24euv0eCDXKoRMuQ.crl (hash: 0pSb2hiq82cj7oXfAel5AFvy6X4EqlbjEtWBLMgAeh4=)
3: hsI4pEE3EY6z43xDiYhgoJOv_tk.roa (hash: uLt9gBDufxrISHG9o1jQTdi6VyvEx7vLVjNncRhsiaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:88:b8:17:f6:e1:3a:01:ae:d5:9d:39:3f:5e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6988519de918185fb6e1ebafd1e0835caa1132e4
Validity
Not Before: Nov 23 06:00:31 2024 GMT
Not After : Nov 24 06:00:31 2024 GMT
Subject: CN=650e4df22e35eccba47177c7f5fe9944c3df0cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:ec:f7:07:5b:31:3f:6a:2f:34:a6:ea:72:
6b:c9:33:1c:d1:82:f2:56:7f:4c:f2:6d:9c:b5:24:
1c:1a:c4:da:2b:5f:72:f5:c3:83:00:34:b4:6c:ec:
c1:33:9d:12:a1:2b:d1:6a:37:5f:11:42:d9:f9:f9:
ef:97:5c:44:e9:0e:67:17:b4:d8:40:5a:8c:91:22:
8f:9a:a8:3a:4f:26:b2:54:81:2f:2c:41:5b:ee:88:
75:be:c3:5a:f1:87:90:36:ee:a1:f0:c0:34:0f:3f:
15:74:5c:bd:67:11:5e:c1:5a:15:58:66:19:27:c0:
b0:4e:94:b0:b2:ef:0c:bf:46:78:fd:d1:ca:59:0b:
d0:34:e0:57:71:c5:af:ee:d6:74:65:de:64:89:e3:
09:70:ba:9a:6d:a7:95:e6:b3:09:8c:e5:43:34:fc:
15:61:5b:4a:5a:5d:6b:2c:93:47:23:48:2f:4f:d0:
3f:fd:b6:9f:da:8c:c9:76:0b:01:e4:ea:19:57:59:
50:2d:8e:6f:f4:95:ed:26:4d:e5:37:19:b4:f5:ad:
fb:3e:73:56:f1:43:0e:8a:88:5b:ce:2b:00:62:2a:
93:d9:db:45:de:1a:bf:a4:ec:10:0c:69:87:99:89:
bd:5b:50:7c:0b:5c:a7:25:9b:6c:84:41:37:33:49:
24:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0E:4D:F2:2E:35:EC:CB:A4:71:77:C7:F5:FE:99:44:C3:DF:0C:BA
X509v3 Authority Key Identifier:
keyid:69:88:51:9D:E9:18:18:5F:B6:E1:EB:AF:D1:E0:83:5C:AA:11:32:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:e6:f9:e2:23:89:a2:ea:de:83:58:cd:8e:29:7f:98:5d:09:
38:51:68:3d:fa:c6:3c:0e:6c:36:63:a8:24:6d:16:36:9a:6d:
c7:04:8b:b1:21:19:74:7e:6f:25:f2:53:2a:18:a0:7b:1d:6e:
ba:16:5e:aa:85:0f:ef:b8:39:bd:42:eb:f8:94:a3:24:32:ea:
95:aa:13:04:f6:23:f2:ab:cd:68:11:0a:b5:a8:5b:81:d5:9c:
eb:f1:ff:43:c8:09:c2:21:68:3e:cf:dc:24:50:13:34:3d:74:
57:9b:8b:b1:fe:85:a8:20:6d:17:c6:44:2f:3c:78:c5:46:8c:
50:be:f1:91:4d:80:e0:00:be:59:fe:a7:f7:91:95:2b:90:27:
d7:6f:00:18:8d:41:08:bc:20:05:15:ee:ee:4f:20:82:e4:c3:
59:1d:a2:a8:cd:31:3f:53:6e:3e:24:00:a5:8e:34:0d:e6:85:
77:e8:ec:53:69:1d:a2:3f:af:52:f8:b2:98:06:c5:4e:75:fb:
52:a0:34:68:c8:2a:3d:19:b9:58:ad:56:c1:ec:e9:79:e5:f3:
54:1f:ea:6f:db:62:42:f5:8d:9d:16:2c:aa:1a:7a:17:a6:eb:
d8:fd:28:8f:1b:a8:00:1d:b4:d3:58:8a:e7:f9:b9:f9:85:3a:
93:0d:68:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:04:00 2024 by rpki-client on console-fra.rpki-client.org