Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft
File: StFxca6oV2xDHGN0GGkcnB9VdRY.mft (raw, json)
Hash identifier: ln/ZtnPVz9UHTB0ROSTIWeLERdMU9V39cWhUVhyZYYY=
Subject key identifier: 56:7F:CC:D0:67:CD:E4:25:CB:5D:C4:1D:66:CC:04:AB:13:FB:7C:CF
Authority key identifier: 4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16
Certificate issuer: /CN=4ad17171aea8576c431c637418691c9c1f557516
Certificate serial: 019356893F8F6CBD8803136FC44C587C6784
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft
Manifest number: 101D
Signing time: Sat 23 Nov 2024 01:00:55 +0000
Manifest this update: Sat 23 Nov 2024 01:00:55 +0000
Manifest next update: Sun 24 Nov 2024 01:00:55 +0000
Files and hashes: 1: G7gVwVXii22RXwJKcVnc_SMZKWY.roa (hash: VlYK/wnqQ1qd2Izg3dNb1XL9QZCbLJGOYARwKM5vHTY=)
2: StFxca6oV2xDHGN0GGkcnB9VdRY.crl (hash: UWR2ewaE+SQlcbgiVGG71wJUvRgojoOFGMYX/Fb5Yf4=)
3: YUFY9mvYdB3Xx2RWIT4grQiriag.roa (hash: U+46VBnxC+B7995CbHyXO9ZYez1THqQjhgOhX/JPDJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:3f:8f:6c:bd:88:03:13:6f:c4:4c:58:7c:67:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad17171aea8576c431c637418691c9c1f557516
Validity
Not Before: Nov 23 01:00:55 2024 GMT
Not After : Nov 24 01:00:55 2024 GMT
Subject: CN=567fccd067cde425cb5dc41d66cc04ab13fb7ccf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:53:3d:64:48:23:63:6a:61:66:ff:65:29:c0:
7b:a3:84:96:00:57:cd:aa:6d:10:cf:09:e4:09:cc:
41:11:cc:f8:85:c5:9a:8d:4e:46:3e:be:fd:be:46:
35:e7:a2:ce:76:02:2b:26:dc:b1:a6:18:12:c7:64:
66:aa:84:5f:e7:99:a8:46:20:a5:91:00:cb:89:9b:
0d:08:5f:ac:15:2f:1d:0a:b9:bb:77:7c:c6:74:f9:
b4:39:8d:dd:61:3a:60:87:92:da:76:61:fb:ce:04:
9b:23:ee:f4:f0:17:54:f9:6a:84:3d:d2:d5:22:fd:
b4:e3:f0:94:bd:cf:3a:85:75:36:5e:af:16:ff:64:
d3:97:97:65:d8:cb:79:53:8e:b9:46:5a:1e:71:91:
eb:cd:5c:e3:ce:4a:58:a7:0b:60:13:76:cc:4c:66:
20:a9:e8:46:fb:5c:40:f1:33:8e:26:9c:3f:b0:dd:
fc:ec:a5:5a:b0:4d:d5:11:5e:b4:a8:b9:fb:34:d8:
e0:65:d9:0a:48:c2:8a:36:0d:0f:ee:d1:9d:3f:82:
89:6c:18:a9:0e:b5:60:de:df:70:47:25:9e:19:1d:
ca:5a:66:e1:98:9e:2a:2b:2f:6b:de:f5:b9:ed:49:
64:fe:36:ab:89:14:d6:2a:c9:2f:5b:04:0f:ee:b0:
c8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7F:CC:D0:67:CD:E4:25:CB:5D:C4:1D:66:CC:04:AB:13:FB:7C:CF
X509v3 Authority Key Identifier:
keyid:4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:59:40:a9:84:a4:a8:7b:7f:bb:3d:0c:17:1d:e9:c3:66:a6:
0f:69:07:8c:60:7b:c7:2a:00:a1:8f:a7:6e:a8:ac:ce:55:72:
2b:a2:5f:77:2e:62:44:0f:43:52:77:1f:f7:cf:85:ee:6c:ee:
06:63:83:b0:77:f3:42:b1:7f:fd:3d:a0:2c:42:c7:84:f4:4f:
e4:f7:e1:78:9c:b1:da:72:54:9f:35:e9:6c:d1:70:0d:60:c4:
fa:e4:b9:0f:80:8c:39:60:85:7d:9a:45:3e:28:89:f0:e6:ee:
72:72:10:03:e1:38:49:50:61:b1:0b:69:26:ae:f9:a7:17:03:
9a:00:1e:49:f3:0f:2a:99:e5:3a:fa:38:44:65:90:58:9b:2f:
3c:10:df:97:63:ec:49:6c:be:ba:09:5f:cd:82:1f:e5:0d:28:
ce:20:0b:48:b0:0c:1c:07:4f:90:a2:5d:a8:80:6d:82:b3:0e:
66:87:7c:b0:76:24:36:9d:68:79:50:b5:8e:c0:13:aa:27:e7:
08:2e:a8:84:0e:4f:db:41:48:c3:e1:f0:7a:77:59:f3:8f:10:
b9:c0:46:d2:4e:11:85:3a:dd:7b:98:cf:a9:9f:92:bc:d1:48:
6e:ce:e6:ee:61:f9:08:1c:5d:1b:92:27:74:71:dd:ea:d7:36:
cb:b0:6c:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:53:14 2024 by rpki-client on console-ams.rpki-client.org