Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
File: czaDy4VtbZ_1jih-ipBdKS3KazQ.mft (raw, json)
Hash identifier: 0yex9Cwktg+4hB2UFF/39IE9K0vZmxK7y1nCIWBm78U=
Subject key identifier: 68:26:66:F3:76:48:E1:2E:A7:76:15:FC:4E:FE:E1:DD:B0:57:8C:15
Authority key identifier: 73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
Certificate issuer: /CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Certificate serial: 01936AB4D3CDC1F462619B06EC0920900F37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
Manifest number: 0FC0
Signing time: Tue 26 Nov 2024 23:00:55 +0000
Manifest this update: Tue 26 Nov 2024 23:00:55 +0000
Manifest next update: Wed 27 Nov 2024 23:00:55 +0000
Files and hashes: 1: czaDy4VtbZ_1jih-ipBdKS3KazQ.crl (hash: 69PTtuL6c4eQ4JjAH+e6CdiqvYfeDG7LQuY3S1rosHY=)
2: uuP8C8pmmecPaA_3_tnr8ocmk3Q.roa (hash: orNJ9pT3NinT9ZTfi5iQPIBQpMkr3mM83VZErVrX7gM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:d3:cd:c1:f4:62:61:9b:06:ec:09:20:90:0f:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Validity
Not Before: Nov 26 23:00:55 2024 GMT
Not After : Nov 27 23:00:55 2024 GMT
Subject: CN=682666f37648e12ea77615fc4efee1ddb0578c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2a:d8:74:c1:f5:41:3e:58:ce:e8:a8:c8:3b:
bd:ef:07:0d:15:f7:a7:d6:21:b5:d3:9d:4c:c5:26:
2d:34:32:33:c2:af:fb:78:8e:dd:ad:68:12:96:1e:
94:e7:e8:aa:c0:99:8b:f2:b6:40:a5:3f:ff:1c:6f:
47:34:51:2e:cd:76:9a:4a:ca:81:5f:f3:56:d1:04:
d1:b2:71:02:c9:5b:dd:96:ad:80:44:de:14:7d:a8:
49:a7:30:79:24:d9:5e:d4:6b:89:b5:b1:f3:36:43:
77:73:27:25:8b:a0:e5:4a:46:5c:76:23:f1:b9:29:
4c:87:17:73:0e:55:c4:69:85:6c:93:35:6c:5e:af:
09:9c:7f:6c:6c:9a:af:27:4c:83:dd:9e:4a:c1:af:
11:41:ab:74:d2:ad:0d:1a:2f:3d:57:73:62:f4:1b:
91:54:2d:9e:90:49:1c:2f:4b:a8:63:62:93:f8:ca:
9b:96:be:74:a9:2a:1d:4c:b3:d8:e8:c3:4e:b8:52:
64:3a:b0:da:be:2f:81:48:54:b5:d5:7d:a8:54:19:
d6:d6:bb:d8:14:5c:9e:de:b1:77:8c:41:3a:d8:51:
4a:72:91:ae:8e:29:e4:a6:d4:8f:6e:9b:56:b4:c2:
f5:f3:b9:2d:6e:71:1a:c4:59:a9:15:28:b5:b0:8c:
8d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:26:66:F3:76:48:E1:2E:A7:76:15:FC:4E:FE:E1:DD:B0:57:8C:15
X509v3 Authority Key Identifier:
keyid:73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:40:38:08:28:66:98:5a:30:29:72:8b:35:87:1e:94:7a:f7:
6f:b0:72:a5:4e:c4:a2:ed:7e:2b:64:c5:e8:d2:21:7b:c4:5e:
af:71:8e:bf:a3:5a:05:91:cd:d2:40:2c:e5:99:4e:31:f3:33:
5c:cc:2e:44:3a:c4:84:bb:b1:aa:7d:0d:a9:6e:19:7a:7c:e1:
c5:e6:dc:00:31:99:ec:0b:d8:da:22:e7:3b:5a:73:ba:25:e3:
44:3a:32:17:ac:2a:30:97:28:36:69:dc:6c:b8:d9:e3:48:9a:
3e:ab:cc:87:62:c6:6b:18:5e:44:d3:6a:d8:88:1e:9a:26:5d:
93:94:b7:b6:60:19:f1:bc:ea:ab:70:54:fd:fb:cb:b9:a7:e6:
58:9b:ab:96:98:47:ab:2b:70:29:28:2b:7a:78:6f:33:83:9f:
da:09:42:75:b5:00:4e:c7:b8:56:c5:5f:16:bd:65:4f:8b:ee:
88:ad:9a:8c:8b:a0:6f:d3:aa:ed:03:98:54:3f:37:76:24:12:
52:f0:65:15:e5:02:fa:8f:e5:8d:ff:7c:80:6c:43:63:6f:00:
62:bc:74:5d:75:c0:82:9f:94:df:09:79:a9:dc:d3:42:74:e3:
01:2c:11:6a:da:3f:75:dd:7d:9a:2b:d1:d6:82:6a:6a:e5:16:
8c:f3:85:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:24:16 2024 by rpki-client on console-ams.rpki-client.org