Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
File: sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft (raw, json)
Hash identifier: Q1pIcR6hVNYqfCT9D5vPW0hq4jMtaAb/0Jo4iUvP/fU=
Subject key identifier: 3C:6B:6F:33:2E:5B:FF:69:6F:D1:A7:55:E9:16:1D:60:E0:E9:66:F3
Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
Certificate issuer: /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Certificate serial: 019358776AC4582915007645CA446C21EAFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
Manifest number: 0855
Signing time: Sat 23 Nov 2024 10:00:41 +0000
Manifest this update: Sat 23 Nov 2024 10:00:41 +0000
Manifest next update: Sun 24 Nov 2024 10:00:41 +0000
Files and hashes: 1: NgR37ANmrNNE3A5AMvaae_t1K50.roa (hash: kc+REan9AHLTX7fNR4EhWFNE8aSR1vqbijjkQz1B1vw=)
2: sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl (hash: ar6bERlVbXtv0r6i8ny87EbMQuQzYEBT7lCpr/4A/H0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:6a:c4:58:29:15:00:76:45:ca:44:6c:21:ea:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Validity
Not Before: Nov 23 10:00:41 2024 GMT
Not After : Nov 24 10:00:41 2024 GMT
Subject: CN=3c6b6f332e5bff696fd1a755e9161d60e0e966f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:56:be:28:9f:c0:94:55:5b:09:b2:89:bf:84:
59:2e:aa:4a:7d:81:8c:8d:2a:43:9d:34:bb:70:12:
6c:62:4a:17:9e:51:db:e8:a2:a9:11:56:94:43:1a:
e8:14:11:81:fe:b5:27:39:bf:48:48:a9:dd:74:74:
59:02:40:e9:b3:e8:45:2c:e7:4a:a8:c0:8a:22:14:
ac:f4:58:5d:06:27:c4:a9:88:6b:65:11:74:7c:6a:
e4:40:d6:80:78:16:d9:8d:96:b9:70:84:74:35:2f:
aa:69:36:3f:35:ba:58:ed:88:73:ec:da:0a:30:c1:
bf:44:77:f6:67:f6:d0:e1:a3:dd:30:c0:ec:ce:cc:
e9:22:38:b5:79:ca:71:96:d6:37:e3:4a:35:6a:c7:
cb:fc:e1:53:f1:ee:6b:e9:09:8d:9e:af:dd:d5:79:
35:9d:d4:42:0b:a9:77:07:06:4e:44:15:24:77:1d:
46:8d:9b:62:0d:74:07:e1:0d:d3:76:90:53:2b:f0:
59:eb:e7:dc:6b:c7:2e:8e:65:9a:dc:91:95:48:ed:
f4:d3:d0:d7:af:fa:a7:de:57:88:ae:55:10:41:30:
2a:44:ad:d0:cb:b5:e6:06:f7:b5:d3:42:d9:09:cc:
f1:ab:5b:45:ff:4f:43:c3:c0:c9:fd:0e:8e:b4:e9:
cb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6B:6F:33:2E:5B:FF:69:6F:D1:A7:55:E9:16:1D:60:E0:E9:66:F3
X509v3 Authority Key Identifier:
keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:f8:f9:94:d6:6f:f6:64:69:d3:f8:f6:c3:77:cd:2f:76:29:
56:89:19:44:16:dc:34:93:d2:19:5f:b5:da:53:f1:b5:fb:24:
05:8f:4b:d5:88:4f:11:e7:02:e8:40:1d:3c:9f:83:77:a2:07:
ed:51:a7:fd:ea:42:cb:f9:56:c7:ee:37:84:41:9a:bd:e0:d3:
4a:96:3e:67:7f:a7:8a:44:e7:36:cc:f7:e6:5b:e7:bb:e4:fd:
91:c7:f4:39:3a:e2:66:1f:87:46:f5:3c:e0:06:9f:f7:2b:97:
76:cf:36:03:cb:df:f8:ae:b2:20:85:ac:4c:ac:3f:f3:2b:1d:
77:04:dd:e7:23:fe:ab:83:c4:07:de:41:23:20:02:d1:a0:13:
91:8a:20:18:38:10:b5:33:71:30:de:5c:3c:59:6a:59:8c:71:
e0:26:42:8a:45:0d:ef:4b:7c:cc:fe:db:7c:5c:66:38:5a:66:
57:9b:5b:04:d3:0d:1f:ed:b0:db:57:c4:d4:10:14:af:37:86:
28:9b:d1:ff:2c:c0:7a:79:b6:5b:7e:1a:19:34:cc:e7:45:4b:
cd:60:03:cd:50:43:2d:12:81:b8:9a:61:12:43:21:6c:ab:b4:
62:48:3f:bd:6c:22:54:a5:5d:a9:02:40:f0:85:60:48:75:49:
9f:32:7b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:03:53 2024 by rpki-client on console-fra.rpki-client.org