Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
File: ddoOY-skfZoLE7TLNt1nJJkgu8o.mft (raw, json)
Hash identifier: jwgAgbwRB0MkYuTPw1FZFkdh1UWCc/1EJdkRlebOJ4k=
Subject key identifier: 23:C2:8B:58:76:B3:1E:10:7E:90:EF:E6:78:47:83:4E:72:AF:33:52
Authority key identifier: 75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
Certificate issuer: /CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Certificate serial: 0193568936B4FF4E5A57F76DC056049BBBE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 01:00:53 +0000
Manifest this update: Sat 23 Nov 2024 01:00:53 +0000
Manifest next update: Sun 24 Nov 2024 01:00:53 +0000
Files and hashes: 1: HlXOIbwnlqsiIcAV5W6jHSDRAmo.roa (hash: iF68mxmUle1okW+yaOHPriABfb/+Zsqbh8cB6DT009w=)
2: ddoOY-skfZoLE7TLNt1nJJkgu8o.crl (hash: qwYsfTDkrUsnZicoKk8zyM0XyLxhuiQvbEIdyzjyu3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:36:b4:ff:4e:5a:57:f7:6d:c0:56:04:9b:bb:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Validity
Not Before: Nov 23 01:00:53 2024 GMT
Not After : Nov 24 01:00:53 2024 GMT
Subject: CN=23c28b5876b31e107e90efe67847834e72af3352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2b:21:a4:c3:35:5d:21:64:c1:23:51:cd:e3:
30:5d:27:c3:48:92:9e:60:ac:2e:bf:a8:01:2b:52:
31:76:2e:54:0e:7a:f7:91:bf:b7:25:85:2a:35:25:
b8:6a:8f:02:0e:fa:fb:4a:b5:63:b6:5f:aa:7c:f6:
00:cb:0b:92:14:cf:60:c1:88:12:77:06:eb:93:a4:
fa:cc:f8:00:6e:45:92:34:bb:9a:7a:b8:67:1c:f2:
e8:3d:e7:13:21:75:67:69:2e:95:8f:e6:0f:7d:d1:
f2:c7:dd:1e:81:5b:3a:d9:70:ec:21:7b:fa:a4:09:
10:8f:a8:a6:e8:1f:32:1b:3a:8b:ba:59:9f:fe:bf:
4b:56:05:48:74:e9:64:26:71:8a:2b:0e:37:91:25:
ee:fa:b1:11:ca:31:d3:0c:a9:be:4e:66:ef:07:21:
5c:2e:18:99:b6:1f:8f:1b:ff:b5:34:84:c3:14:eb:
e4:c1:17:be:a4:f4:9c:26:2c:99:9e:98:e4:e0:3d:
a9:9e:25:b4:99:86:06:9b:1b:49:1c:e9:67:19:1d:
fb:35:93:36:2c:5b:3d:6b:90:32:e0:cf:0e:bc:f5:
f0:2a:f9:14:58:14:7f:6c:0a:53:21:0b:f9:27:68:
04:ba:a7:23:46:9a:d0:d9:3e:e7:7e:74:10:07:e3:
20:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C2:8B:58:76:B3:1E:10:7E:90:EF:E6:78:47:83:4E:72:AF:33:52
X509v3 Authority Key Identifier:
keyid:75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:1e:31:90:e2:69:1d:e3:bb:c6:36:eb:b9:39:e6:4e:b5:ab:
d0:d1:62:a1:4d:95:57:be:a8:29:a0:07:f2:18:e9:dd:8d:e3:
13:42:93:ab:c3:24:1e:48:a8:51:f6:72:9d:da:4d:8a:39:03:
72:b6:b6:22:0c:68:38:4f:55:b0:d8:76:60:dd:53:0b:77:17:
b0:a4:e4:a1:32:b5:e1:02:3a:fe:8d:19:5d:89:76:2f:d0:c3:
23:91:ac:91:a1:33:12:82:f2:a4:68:33:96:e7:e2:8e:c6:4e:
3d:81:05:56:fb:4b:19:27:eb:e6:68:12:69:51:5c:ea:71:bc:
b8:fe:ce:44:d9:73:e9:c3:e8:c0:b0:6e:14:ff:08:1a:b4:28:
57:2d:50:75:32:e6:e5:e2:48:4b:df:b6:45:28:3e:05:1b:45:
73:0b:6d:8d:a9:7c:ac:ab:38:b4:16:77:b9:eb:00:c8:b2:6a:
de:4f:7f:13:55:35:de:da:71:78:1d:00:cd:93:93:0e:61:63:
b5:60:f3:28:d6:0f:62:06:fd:55:c9:4c:5f:c2:7b:ad:50:81:
24:c5:4b:27:e0:98:7c:4e:bd:9e:23:d4:4a:36:ae:c5:6c:c4:
0e:d1:b9:40:07:55:92:7f:49:1a:93:53:d4:df:55:c8:50:9c:
96:1a:34:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:45:44 2024 by rpki-client on console-ams.rpki-client.org