Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: kC/I1C5rAtzuDea6NbYh8YNWylYTxxl9GmCyK8+PT4E=
Subject key identifier: C6:B2:72:61:30:C5:5A:8F:17:53:C2:B7:96:CE:EF:D6:D1:97:DC:2A
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 019351627C3874F5C0DD62157E99C8FE3DF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 137E
Signing time: Fri 22 Nov 2024 01:00:28 +0000
Manifest this update: Fri 22 Nov 2024 01:00:28 +0000
Manifest next update: Sat 23 Nov 2024 01:00:28 +0000
Files and hashes: 1: KaI8oin1EUcu-B_eIIu8vmnbOJ4.roa (hash: WFBqg1tuDlnGchcozUAD54dXDeDcuvMJKR7/9fvmGn0=)
2: NMBwJqVYnrwi7lPhK-xV3AGZgrs.roa (hash: DB1lzj/1/vlfiI5mbL8CkZtKyTRU7o+OFiNG+aLSpU8=)
3: RFRttKdoAHPuBkrEZlZXbXFQCDI.roa (hash: gGkGkBM+DYy4S8qAI91zpZe5NXUANmPmai75nE63EwI=)
4: RSX63BjJyqBQfcSpzlJBIX1Z9Ts.roa (hash: TJkLDKZ70AtS1IDjPWPHEVucYhvi1Fv+HRhS1BRNtgU=)
5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: H7BM+/ERn384pfee3jbAwE5ZHp6iuH6HLNsIzSi97XI=)
6: bq7OP9TmXZiG_zQcEe6YI_hOgPY.roa (hash: SkabKxUOkBNHegBMTaI5mWA5c9sXNKrfgdNH/l3e+EQ=)
7: nTBHWmgxyhWcacNlVFSCYzx0xA0.roa (hash: ktRUk1RBVAT6WhF7x1dJLStdOgXq1auNj9IXSm1VZKA=)
8: qSO8GRUH7b27Z58Dz-ZviOrIRBc.roa (hash: BYoiyMB3TNm/JFz9s+6miGp5TQXiMuzo/vBJOuzjsoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:62:7c:38:74:f5:c0:dd:62:15:7e:99:c8:fe:3d:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Nov 22 01:00:28 2024 GMT
Not After : Nov 23 01:00:28 2024 GMT
Subject: CN=c6b2726130c55a8f1753c2b796ceefd6d197dc2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:27:fd:de:26:e0:81:68:50:26:b6:f7:59:07:
56:49:1c:e5:ad:12:76:d4:cb:cf:0c:6a:35:cc:07:
c4:be:5a:d5:35:1e:e3:49:cb:87:f4:2b:8a:6b:ea:
4b:3f:e9:98:2d:6c:13:4d:82:1c:d8:a5:0b:ad:be:
54:e4:2c:3b:2b:48:ae:24:d3:b8:e0:e2:e4:a9:a6:
09:7e:28:b1:b0:41:0a:3c:95:a9:1b:e1:41:36:16:
f6:03:ea:60:7d:d5:07:e9:ee:89:ee:85:e0:5f:70:
9c:16:af:40:97:fe:97:7a:bc:b7:dc:69:d7:4a:b2:
8c:9d:b2:3a:10:db:b6:d0:5a:9c:b5:82:56:6c:18:
32:d1:7a:bd:b5:4d:d1:2b:81:3d:aa:39:39:57:92:
53:b4:a0:39:57:a4:c3:d1:7d:60:ca:65:1e:79:9e:
51:1e:5b:55:b1:0e:71:dd:ee:f5:da:29:1f:2c:b8:
13:dd:9e:99:6b:31:e4:1b:35:46:2e:06:64:71:ea:
f3:16:22:3a:eb:6e:cb:b8:8f:8c:71:9c:41:e6:13:
92:01:4c:c2:31:08:83:88:aa:4a:c7:c7:81:c3:67:
94:d1:64:b4:6b:ca:8d:58:cd:ef:d9:43:5b:2b:da:
d3:27:c7:a1:9e:2c:92:cc:1a:69:28:51:03:d8:2d:
ef:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B2:72:61:30:C5:5A:8F:17:53:C2:B7:96:CE:EF:D6:D1:97:DC:2A
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:dc:a2:aa:c3:80:e9:24:35:5d:24:28:6d:ae:f7:2a:b3:eb:
a9:07:d3:3c:9e:5d:b3:ce:4b:cf:e6:18:de:0f:b1:0a:f4:e6:
a7:1c:1e:95:ab:8f:8e:d8:f4:78:5a:38:1b:26:ed:a9:81:76:
65:85:7d:5f:8b:19:95:c9:3f:73:c1:fa:b9:c2:24:79:9e:37:
87:8a:05:91:4f:8f:6b:cf:d5:59:58:c3:2b:f8:58:86:c2:48:
fe:39:90:ae:51:9c:92:01:1e:ac:1e:2e:02:e5:6c:83:13:c1:
db:58:9d:28:55:e5:ad:a0:a7:e9:f8:c9:63:92:68:9c:89:cc:
4d:ff:3b:2c:90:43:24:60:85:4d:dc:0f:f3:e5:f8:ca:08:69:
f5:60:46:5d:83:eb:cf:e8:a9:fe:88:07:71:e7:b1:3a:22:0a:
fc:fa:ad:e7:28:44:c0:73:21:a3:00:fb:7d:64:39:c3:90:df:
18:1f:06:65:a0:22:e2:de:92:ec:52:4a:88:e0:2c:e4:85:61:
95:6d:d9:85:a6:d6:c9:09:93:1e:63:72:01:fb:ae:1f:5d:d7:
7d:6e:ab:c1:9b:46:d6:6a:b2:62:e4:9d:c5:a9:6b:be:6e:73:
18:d4:b9:79:4e:30:c5:b4:8a:2a:b5:60:12:b6:57:c8:3d:06:
8c:0c:0f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:56:23 2024 by rpki-client on console-ams.rpki-client.org