Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
File: 3OVg8OyFDainwPjW84JRAtTeSs4.mft (raw, json)
Hash identifier: NGtau0lyz7BE0/fwXeJqeUz2iBedast4hiXtTP6E7/U=
Subject key identifier: 4B:E5:BE:3C:DD:F1:95:E5:5B:F3:BC:20:65:B0:C1:4F:A1:72:0D:E2
Authority key identifier: DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
Certificate issuer: /CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Certificate serial: 01940646EF0A704AE7A6C295E3150AD4C11A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
Manifest number: 13CC
Signing time: Fri 27 Dec 2024 04:01:39 +0000
Manifest this update: Fri 27 Dec 2024 04:01:39 +0000
Manifest next update: Sat 28 Dec 2024 04:01:39 +0000
Files and hashes: 1: 3OVg8OyFDainwPjW84JRAtTeSs4.crl (hash: hWtjly/wumY4+Q4Bt0i2XMDBLolShd7A6V1yGLyWbTI=)
2: qFml8DUiLOYSpc35VCsPyfgK3G0.roa (hash: tpKPY4d14p0c2/l+5FxC0Rzd4m4G9QxcBpfkzmlm+AY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:46:ef:0a:70:4a:e7:a6:c2:95:e3:15:0a:d4:c1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Validity
Not Before: Dec 27 04:01:39 2024 GMT
Not After : Dec 28 04:01:39 2024 GMT
Subject: CN=4be5be3cddf195e55bf3bc2065b0c14fa1720de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:73:21:0e:92:cc:e4:4f:52:da:a6:d2:26:64:
68:1f:17:08:27:07:68:71:01:9b:b1:ce:1d:6a:8a:
95:ad:9c:6a:6e:7b:51:39:5e:5a:6b:d2:fa:37:c1:
34:c2:c4:39:84:6d:96:82:1d:80:a8:d3:05:1f:b9:
7d:90:c0:1f:d8:2c:55:46:e4:14:fd:b3:d9:b1:4b:
de:36:3a:87:11:3e:b4:2c:6f:c3:1f:ec:a3:28:d8:
2e:24:64:2f:12:3c:f8:56:9d:9b:c6:7e:d9:d4:37:
0e:8d:ac:af:83:ef:97:f8:b8:f7:6f:9f:2c:31:3e:
0e:61:04:3c:18:46:e9:35:21:91:9a:70:2e:e2:bf:
eb:88:34:9f:5b:75:79:07:a9:2f:32:20:29:cc:8c:
ce:50:fc:c8:c9:74:6a:25:d3:6c:28:6b:86:82:7f:
40:2c:6a:de:48:ea:85:99:c1:4d:8c:15:67:0c:2f:
5b:47:91:51:03:8a:7c:39:66:dd:b6:ba:94:1f:1a:
84:46:46:87:bb:a5:38:8b:fb:6a:1e:7c:b8:1e:9c:
73:2b:f0:db:15:e7:44:07:d2:2a:f4:49:61:cc:7e:
c0:9b:63:7a:43:28:1d:c1:d9:31:d1:0d:97:0f:fe:
36:6d:ed:f1:1b:f4:35:ad:4f:80:d4:1f:27:ec:ab:
2c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:E5:BE:3C:DD:F1:95:E5:5B:F3:BC:20:65:B0:C1:4F:A1:72:0D:E2
X509v3 Authority Key Identifier:
keyid:DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:3e:84:62:8a:b0:f6:27:88:08:96:44:08:2f:2a:04:8e:20:
48:59:11:36:c1:14:77:5e:28:ba:a9:70:9e:dc:17:99:5a:e6:
13:a9:38:6f:94:3f:2a:2d:17:37:59:15:f5:b1:ad:19:cf:78:
67:33:e0:98:f9:1f:c6:71:29:67:ed:cc:d1:d4:12:9e:14:a4:
3a:1e:15:dc:ad:cf:80:a8:1c:7f:3b:55:ff:a0:94:71:cb:bb:
09:2c:47:93:d1:d6:63:8a:e8:de:82:45:8b:de:a5:35:a9:28:
bf:69:bc:1f:3f:47:37:3a:a4:70:e4:09:54:2e:3c:d4:d6:e1:
60:e5:b9:62:e8:d5:84:b8:f6:22:e7:26:aa:47:1f:4d:35:41:
02:c2:4e:ba:3b:d7:4a:3c:f3:8b:3d:28:19:64:ce:87:08:4d:
59:78:16:5e:1f:80:12:8b:67:c0:92:71:a3:46:ac:a4:dd:e5:
ed:f1:3b:5a:d2:d2:2d:0d:31:a1:1a:14:a5:96:11:0c:bd:bd:
49:e3:f1:fc:a5:93:af:cb:89:86:67:f8:42:50:ec:ec:62:4e:
00:d5:62:14:26:47:e2:4e:56:81:ce:07:5b:db:6d:45:7d:f3:
15:05:0d:cd:05:54:19:fd:cc:da:e1:7e:c4:c9:0a:d8:49:48:
31:ff:27:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 09:59:17 2024 by rpki-client on console-ams.rpki-client.org