Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
File: bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft (raw, json)
Hash identifier: Yv8lmF7PTxJar0nH5fqmsKBDgpZsUhb+n7TJg4TuJ4U=
Subject key identifier: 2E:FC:E7:D4:CB:7D:C9:17:FA:AA:0C:AE:3F:86:9A:B0:C3:0A:76:F0
Authority key identifier: 6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
Certificate issuer: /CN=6df293212d25d4863e386b9c480ddc9be738124f
Certificate serial: 01936933F46C8E6BF992E521396548C7EA81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
Manifest number: 130D
Signing time: Tue 26 Nov 2024 16:00:32 +0000
Manifest this update: Tue 26 Nov 2024 16:00:32 +0000
Manifest next update: Wed 27 Nov 2024 16:00:32 +0000
Files and hashes: 1: bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl (hash: LV8Sov8GN3SJRMMWzwjRNiEdJpl01f2GNwy/GN5Xv/g=)
2: jb700Gs5b4yEUCTAp9yYumXev0g.roa (hash: 4qvduo6uscNLKZyZ8wzCKzUZ73+k62rHXv4ydbVgmQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 16:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:33:f4:6c:8e:6b:f9:92:e5:21:39:65:48:c7:ea:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df293212d25d4863e386b9c480ddc9be738124f
Validity
Not Before: Nov 26 16:00:32 2024 GMT
Not After : Nov 27 16:00:32 2024 GMT
Subject: CN=2efce7d4cb7dc917faaa0cae3f869ab0c30a76f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:78:6b:df:d7:29:24:c8:85:16:c6:a9:d0:aa:
7e:e9:50:88:0c:57:f8:bf:dc:70:69:c6:44:0a:4f:
30:ff:af:1d:85:63:cf:ce:fd:60:84:65:94:68:47:
ea:b5:50:c9:98:24:60:9f:77:e4:35:c0:02:60:41:
e0:4b:fd:ba:8f:f3:9f:70:f8:03:97:a3:09:59:8d:
be:aa:65:e8:3b:4e:cb:76:56:16:bf:79:62:69:33:
3b:12:6a:06:b5:eb:ac:99:07:a5:72:40:a2:d9:cc:
c8:4e:de:8d:29:90:0c:21:35:37:dc:3c:df:e0:a7:
d5:be:e9:10:2b:e4:3d:3b:ae:39:8a:98:d7:2e:48:
45:b3:66:c8:48:1c:8e:e2:1f:53:0b:a8:03:45:d1:
a1:89:38:f1:5c:2f:5c:50:96:f4:d5:46:b2:a2:8f:
ae:b7:a6:01:09:6d:df:0b:aa:42:ca:12:6d:47:ac:
e4:2b:43:f2:b1:9a:ec:ea:ec:71:68:66:55:ee:b2:
b0:10:35:6e:3c:09:d0:87:a0:02:ef:fb:9b:2e:34:
12:f3:3a:02:71:99:9c:08:5a:f0:e9:d7:13:b4:02:
02:1b:30:90:12:99:39:85:d8:32:75:96:69:a8:cb:
ed:80:01:b7:2c:76:f4:4e:40:b9:f2:f9:cf:3a:d6:
79:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:FC:E7:D4:CB:7D:C9:17:FA:AA:0C:AE:3F:86:9A:B0:C3:0A:76:F0
X509v3 Authority Key Identifier:
keyid:6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:9b:13:da:c5:97:fe:d4:86:2f:4b:98:fc:6a:59:7f:20:0d:
58:a8:dc:17:bd:5a:0e:55:0d:97:21:10:89:c0:73:60:d4:81:
15:88:a3:e2:c0:64:ba:b7:d5:d4:fe:eb:26:9e:b7:6d:a7:33:
1c:bf:db:fd:ba:5b:df:42:28:f3:fd:65:7e:eb:2e:5f:31:7a:
96:35:23:b7:06:4d:6d:03:00:20:c4:f7:8d:e3:b1:4f:54:66:
ab:2b:50:48:20:3a:36:38:4e:cd:70:64:87:2c:51:f0:86:e8:
f7:57:df:42:f9:d3:b9:ab:4b:fb:86:30:4d:69:97:51:1c:48:
59:d7:65:75:46:8f:f4:02:3c:a4:f7:c0:a7:29:8e:9f:51:96:
b4:4d:7d:05:3e:13:35:62:1e:2b:f9:c3:e4:bc:3b:c2:ba:d0:
91:ec:e4:9d:c8:2b:b7:b1:18:59:69:85:66:45:a0:56:df:1f:
7a:43:c1:81:ad:af:b7:52:3e:07:17:c5:fc:40:27:85:77:fb:
b4:36:22:6b:1b:79:34:77:f5:6c:33:79:66:0b:04:4e:55:fd:
d4:e6:35:2a:7d:97:eb:64:10:f5:df:66:51:1b:a8:85:2a:1d:
6c:dd:b2:94:d9:f2:a2:5f:36:6d:cb:fa:ca:1f:66:c3:91:84:
6b:69:b1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 23:04:44 2024 by rpki-client on console-fra.rpki-client.org