Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
File: 0tzocORzw1QnPonF5OLtPgwGk1Y.mft (raw, json)
Hash identifier: l1HTob39EREf15NinN+711tnWHu2WoXFdaTp/R5Y2Nc=
Subject key identifier: 7D:A3:46:AB:62:F3:4B:EB:46:C2:57:61:0E:B4:69:79:AC:DF:82:29
Authority key identifier: D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
Certificate issuer: /CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Certificate serial: 019405A130424FA55B7913E819418881350D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
Manifest number: 0823
Signing time: Fri 27 Dec 2024 01:00:37 +0000
Manifest this update: Fri 27 Dec 2024 01:00:37 +0000
Manifest next update: Sat 28 Dec 2024 01:00:37 +0000
Files and hashes: 1: 0tzocORzw1QnPonF5OLtPgwGk1Y.crl (hash: FKxKTBifOGdAn+0HbZwi5KzXdTZyG3mOC8C5dN2lxIc=)
2: cwE96DdtPA9UFoEk0S1oqTvNRoI.roa (hash: IdztfzoBKAV61CrJ70BD5e2+dLlP3i9mD3+mpPqBcvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 01:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:05:a1:30:42:4f:a5:5b:79:13:e8:19:41:88:81:35:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Validity
Not Before: Dec 27 01:00:37 2024 GMT
Not After : Dec 28 01:00:37 2024 GMT
Subject: CN=7da346ab62f34beb46c257610eb46979acdf8229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6a:17:13:7d:31:8b:71:91:74:23:55:9a:c4:
42:8f:be:6b:9b:16:29:98:61:c0:a8:20:c2:2f:1f:
9a:81:b9:94:62:54:3d:d5:94:d9:7d:6b:09:f5:ba:
50:50:78:60:36:11:fe:63:8e:22:c4:21:12:c1:5d:
88:b1:6b:52:86:bc:2c:3d:3e:56:0f:85:e1:43:89:
43:3d:9a:eb:df:c1:ce:b4:26:9c:d9:9b:8b:72:2a:
64:82:1d:99:28:28:cc:b2:4a:fe:29:70:13:b5:3a:
d0:e3:72:90:7c:1c:d2:77:7f:bf:b5:d8:73:cf:a4:
1a:b2:26:da:4e:11:a0:68:f7:de:16:81:a6:f4:5f:
4f:e4:c6:16:3b:3a:7e:b3:f9:70:c2:33:e6:8d:a0:
4b:a8:69:b9:8c:2b:f6:1c:e7:db:54:ec:25:73:40:
9e:c8:93:8c:b4:ad:57:03:b4:cc:b9:f0:04:7f:03:
d4:45:4f:e4:4a:8d:93:27:d8:0a:12:fc:90:f5:31:
42:85:5a:2f:c4:0a:04:76:b0:a9:4b:05:e4:01:83:
35:be:4a:ed:2f:49:93:f4:06:28:48:fe:d3:d6:82:
74:8b:e3:f6:6e:69:96:7b:59:3b:5d:d7:6c:8b:72:
73:b2:53:ed:87:f5:af:55:e9:d2:05:24:3f:4e:c1:
0a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A3:46:AB:62:F3:4B:EB:46:C2:57:61:0E:B4:69:79:AC:DF:82:29
X509v3 Authority Key Identifier:
keyid:D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:58:fb:97:09:71:5e:c8:50:69:62:f7:4b:0a:eb:91:41:d5:
6d:cd:1e:4f:bd:5a:fa:b6:4b:e7:fc:d7:44:f7:d9:54:b3:bf:
9e:85:af:ed:52:ae:de:47:9b:3a:e2:95:ab:55:2e:f4:4e:1e:
de:2b:de:07:7f:13:9a:c2:aa:fa:18:9d:82:b5:6e:6a:11:3a:
4c:79:ee:4a:cf:23:df:84:da:a0:50:58:8a:74:30:c9:6b:c2:
8a:ee:4d:87:50:a7:39:b7:63:64:c3:18:72:d0:91:6a:d9:ce:
a3:16:b9:b8:9a:1b:8e:e7:4c:6c:9d:9b:77:6b:fc:98:35:aa:
9a:8f:59:9a:7d:a0:45:10:f2:0e:f3:ce:84:b0:72:84:a1:a1:
4a:d0:9e:53:81:17:35:e7:f2:45:65:5d:b0:0c:75:fb:1d:6f:
23:e5:20:74:a9:8a:45:2d:e0:0d:0c:a8:7b:17:26:2c:ab:f0:
cb:24:7e:74:00:79:ca:67:0d:e2:27:4b:85:3f:c8:ea:ab:03:
47:2b:1f:6a:7c:52:0b:f0:1b:d2:3b:40:21:d0:7b:e4:71:96:
38:a0:77:01:2d:2f:98:e9:f0:f6:6d:5d:50:f6:7f:83:67:ee:
42:52:e2:44:09:40:93:bf:33:d4:15:ac:8e:96:35:d0:b7:a0:
fe:0f:33:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 11:06:35 2024 by rpki-client on console-fra.rpki-client.org