Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
File: aYfUeTXhE31URCbbUojhKpwCWsI.mft (raw, json)
Hash identifier: hNp3+LPRZ1yARm2vvvnCw79wvU69gy3hXSmmz/Ky+Ww=
Subject key identifier: 5E:F2:6A:89:70:F6:D8:68:B8:90:FB:17:6C:D9:31:41:51:4B:A5:D4
Authority key identifier: 69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
Certificate issuer: /CN=6987d47935e1137d544426db5288e12a9c025ac2
Certificate serial: 0193579BC09A8FFDA9B1752F90B5D39214B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
Manifest number: 0B36
Signing time: Sat 23 Nov 2024 06:00:45 +0000
Manifest this update: Sat 23 Nov 2024 06:00:45 +0000
Manifest next update: Sun 24 Nov 2024 06:00:45 +0000
Files and hashes: 1: 41OSN5RVla3NV8CQwlckXdV91d8.roa (hash: U/U20M8vMZS7whCpFE2GATMdSYrkwq69FieDxNU4528=)
2: aYfUeTXhE31URCbbUojhKpwCWsI.crl (hash: 0LlsXCICHdU4kZ+3oQE30zLFN7uaxgAsDnIfzAbEa6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:c0:9a:8f:fd:a9:b1:75:2f:90:b5:d3:92:14:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d47935e1137d544426db5288e12a9c025ac2
Validity
Not Before: Nov 23 06:00:45 2024 GMT
Not After : Nov 24 06:00:45 2024 GMT
Subject: CN=5ef26a8970f6d868b890fb176cd93141514ba5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fd:bf:53:87:b2:4d:f1:82:92:76:62:3c:73:
16:6b:99:e4:79:b1:c8:98:d1:4f:82:26:6a:e1:60:
1c:5f:58:78:16:96:9e:c8:72:63:02:eb:db:3f:17:
8e:14:15:d8:25:80:68:02:35:60:2f:84:c8:31:5f:
75:f5:b2:8d:19:c0:e0:8a:21:e2:6d:ab:21:84:65:
a4:d9:05:af:a8:c2:cc:50:a4:c5:8f:6d:78:ec:b4:
30:67:ae:d2:92:24:81:6c:c5:75:e9:4c:2e:cc:3a:
06:09:5f:10:90:df:08:d0:ed:8d:3f:41:63:43:44:
78:00:96:d2:5a:3e:cc:ae:38:71:fd:0a:7a:3f:98:
42:63:3b:4a:37:1e:62:08:97:25:ad:d5:95:06:1a:
57:94:36:46:7b:87:d6:3c:30:fe:39:97:bd:ed:f4:
fc:d0:81:f4:07:d8:d5:bd:8e:13:74:f0:3f:90:65:
42:6e:11:87:75:43:18:8e:63:21:45:78:a8:c1:0c:
b7:4a:1d:75:9f:d3:a1:c9:c7:00:2b:34:07:5c:6f:
a0:10:34:5b:91:24:ef:d9:d5:2b:1f:52:b1:b0:be:
54:86:6a:9c:a6:c9:17:54:dd:98:78:f9:54:67:4a:
e1:21:19:2e:ee:ee:ff:aa:f8:89:ec:31:26:07:7b:
18:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F2:6A:89:70:F6:D8:68:B8:90:FB:17:6C:D9:31:41:51:4B:A5:D4
X509v3 Authority Key Identifier:
keyid:69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:fa:40:a0:a0:17:95:3e:d3:15:1d:78:26:b2:66:e8:be:77:
9b:7f:d5:98:da:95:55:93:68:64:58:ff:fa:9e:41:24:f2:f6:
7d:7a:9c:dc:b9:40:b3:d9:2f:e7:69:52:bd:73:a6:1f:d6:d1:
8c:aa:bf:81:93:53:c1:90:da:06:e5:ee:6f:55:de:47:7b:7c:
5f:13:99:13:d9:6b:5c:76:95:7a:91:16:6e:62:21:eb:cd:5a:
05:31:22:7f:f0:c9:10:5d:c8:40:5e:5a:ec:95:da:f2:08:68:
75:4e:64:8f:c6:fb:70:19:80:f4:dd:2d:94:01:a3:0d:8c:03:
f8:a3:01:45:c3:64:36:17:50:03:91:38:7e:16:4c:a4:40:ec:
fd:79:8b:87:92:0f:52:85:50:02:13:8a:a4:62:87:f8:d1:84:
80:63:07:9c:fe:e9:52:fc:94:58:80:ba:c0:83:56:bd:2f:07:
78:d1:63:ca:17:3b:dc:cb:86:ea:64:7f:f1:c4:31:d9:be:df:
81:79:2a:83:37:ca:66:49:df:ca:15:dc:c5:70:98:79:5d:98:
3e:67:bd:9a:c1:d0:e0:11:c1:16:ae:ab:ca:bb:7e:a3:3b:f9:
e5:87:a5:0a:11:8c:72:22:a5:8a:6e:60:8e:60:7b:13:c5:0d:
18:cb:21:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:52:36 2024 by rpki-client on console-ams.rpki-client.org