Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File: 1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier: 4e6WigM7r43nL2/vR3AqRwbz2Zu25xHdxFK05VaFC3M=
Subject key identifier: 18:F5:71:B9:F4:11:4B:E5:8B:E5:CA:9B:7A:D8:99:DD:F7:37:E1:2E
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 0193568AC4BE21A06D76171BC3670B938BA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 01:02:35 +0000
Manifest this update: Sat 23 Nov 2024 01:02:35 +0000
Manifest next update: Sun 24 Nov 2024 01:02:35 +0000
Files and hashes: 1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: tobT7/3TiNOMmz7ZrfEoxJXgNz7R3ZW09ZUmBv7TrtY=)
2: 9-atg-Ye-a9VuJliRIyQGI_3EC4.roa (hash: iqcuj9i4tdkePAOz+ViJLaoXHvWRUm7WQoYpKU2vdQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:c4:be:21:a0:6d:76:17:1b:c3:67:0b:93:8b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Nov 23 01:02:35 2024 GMT
Not After : Nov 24 01:02:35 2024 GMT
Subject: CN=18f571b9f4114be58be5ca9b7ad899ddf737e12e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d7:fa:d3:28:aa:af:61:79:d5:d6:0e:41:89:
bc:6e:3f:03:50:26:d5:b7:08:52:3a:9a:1c:59:68:
dc:96:30:ef:91:c2:3e:22:38:92:f7:4f:c1:96:f3:
1a:48:3a:a0:b2:a1:6f:f6:92:b9:73:47:ae:e4:fc:
9e:3e:e1:82:94:84:c4:9d:44:a7:72:19:50:d3:da:
45:67:d5:a7:45:e4:76:f7:cc:43:dd:06:72:72:c3:
02:aa:6f:f9:e4:b6:b1:a9:54:39:e4:f1:87:e4:31:
eb:96:9c:cc:ae:90:a0:fd:6a:0a:3f:8c:cd:33:ec:
70:c5:50:ed:31:ae:13:c8:bb:fb:df:fa:8a:b3:d6:
c4:66:1c:c1:69:0f:93:1a:99:12:26:09:8d:51:7a:
ed:c2:88:d8:3d:10:c3:dd:16:f1:b3:40:81:85:8d:
7e:48:85:4c:76:53:cd:78:44:bc:c4:09:9e:7c:66:
2e:a7:38:fc:39:4a:9d:13:23:f2:05:18:c8:7c:7e:
fe:0a:d4:79:31:77:f3:84:4d:39:c9:2c:08:77:27:
7c:00:77:c2:2e:e8:0e:31:54:58:30:d1:01:b6:10:
f3:43:c9:8c:4d:85:e7:a8:d6:2a:44:c9:bc:9c:37:
ea:6d:54:e1:9e:fb:d6:47:18:ec:d7:4e:9d:80:14:
55:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F5:71:B9:F4:11:4B:E5:8B:E5:CA:9B:7A:D8:99:DD:F7:37:E1:2E
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:37:4d:96:3c:e2:d9:18:eb:8e:60:f0:80:7c:c8:09:7e:59:
38:28:33:71:4e:2a:4b:4c:f6:a9:03:7b:4b:73:80:34:fa:a1:
57:10:31:14:ed:81:ab:15:a0:f2:e6:58:8f:b4:91:74:d9:07:
f6:87:0c:79:be:65:6f:2b:c3:d3:35:33:b0:e8:af:b4:4b:6c:
07:51:3c:f7:7e:7b:f6:61:51:7f:a1:43:16:85:94:0c:31:c5:
51:bb:d4:8a:eb:2b:3d:1a:ee:83:ee:70:8b:4d:9a:cf:00:8a:
bb:23:8f:10:92:41:4e:12:90:0c:ff:3b:76:f3:1c:eb:e3:32:
16:dc:61:52:05:d0:ac:68:e8:09:64:53:1d:f2:6c:83:a4:ef:
77:d9:7d:97:00:70:8f:a6:8f:59:a0:9b:40:88:f7:e9:ee:79:
ba:f3:8f:79:98:ca:fd:13:fd:15:e2:37:66:3e:b4:86:d0:52:
e9:9d:ad:a0:f0:b7:96:31:ed:62:d4:23:12:2f:81:fc:90:37:
83:f9:af:b7:52:98:81:cb:31:86:d6:c5:b0:b0:3d:a7:a9:a4:
94:44:6b:71:c5:14:e3:85:28:63:62:5e:64:93:5e:c8:b4:3e:
16:a9:6d:82:da:0d:37:78:b6:13:ae:08:4f:c5:15:19:07:e1:
f7:71:00:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:53:21 2024 by rpki-client on console-ams.rpki-client.org