Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json)
Hash identifier: QxwxGsssHOI3tiB5lHQtZTEIeB/pyqeyNK9BYkY3U0I=
Subject key identifier: 5C:44:9D:32:44:59:E2:D8:4D:D9:E7:A5:D4:0F:62:6E:1D:DA:19:79
Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Certificate serial: 0192F0D38554F9B1991CB0A2971DB501A9A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
Manifest number: 016C
Signing time: Sun 03 Nov 2024 07:00:46 +0000
Manifest this update: Sun 03 Nov 2024 07:00:46 +0000
Manifest next update: Mon 04 Nov 2024 07:00:46 +0000
Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: nyz9YLuEV9YZ3fpZSS57RISxr2A/AxMj7Qx0QjmiirU=)
2: otOV2Kha4BBD0jNfnDoNUF1Q0Ww.roa (hash: 2vsa7yNSzL3L+wm/oGRGnr3A36z6oa1KPJJavXg30B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 Nov 2024 04:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f0:d3:85:54:f9:b1:99:1c:b0:a2:97:1d:b5:01:a9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Validity
Not Before: Nov 3 07:00:46 2024 GMT
Not After : Nov 4 07:00:46 2024 GMT
Subject: CN=5c449d324459e2d84dd9e7a5d40f626e1dda1979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:77:da:1f:2f:7d:8f:fc:04:71:60:21:a1:
fe:57:f8:5d:ad:6b:7d:eb:28:41:ba:50:8c:70:df:
79:7d:a8:1b:08:fe:a8:1d:3f:1d:37:7a:01:a4:73:
e0:79:57:0a:bd:d5:71:e7:7c:86:67:2a:1e:88:59:
16:a8:53:6a:44:4a:bb:bc:36:a2:ad:86:8e:6e:77:
10:1e:b7:e5:f5:f0:5d:84:c0:d5:a5:a1:e8:c0:7c:
35:57:7e:79:3c:89:a2:9f:7a:95:6c:26:23:31:86:
ce:3c:07:86:e6:ea:64:fe:8c:6e:66:b7:f6:8d:c6:
10:df:bd:ab:dd:4e:a0:79:d7:e8:3e:3c:39:1b:4e:
0e:03:6e:08:53:f4:f2:ef:45:7d:c8:ed:5f:9a:6c:
0f:f1:f6:ce:6d:e9:43:d5:aa:4f:d6:1f:c6:b3:db:
c3:1b:6b:77:01:ab:01:5d:7e:88:fc:97:2d:08:2d:
ed:cd:83:a0:a1:e9:6e:3f:d2:c2:91:55:e6:39:97:
5b:e4:ed:de:9b:44:a6:89:9e:d9:89:e9:bd:3c:66:
dd:0f:ed:65:ee:26:84:7f:aa:7c:38:36:39:e5:90:
40:f7:63:60:b1:5f:5c:03:c8:81:16:b6:5b:fa:bc:
d3:2a:9a:99:17:49:74:eb:07:87:da:22:0c:ec:67:
06:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:44:9D:32:44:59:E2:D8:4D:D9:E7:A5:D4:0F:62:6E:1D:DA:19:79
X509v3 Authority Key Identifier:
keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:23:cb:2f:40:ac:ef:ff:3a:c1:53:99:18:5b:6f:bd:78:a3:
7c:25:86:72:34:26:08:39:db:87:45:09:a3:a6:c6:84:69:8b:
3f:f6:10:6d:39:a4:75:06:0d:ee:b4:65:d3:69:65:57:cc:5f:
70:4c:1b:5d:16:07:33:f6:c2:43:d1:84:fc:83:61:43:af:ca:
f4:d9:21:19:59:9c:ef:c3:cf:5b:be:a0:96:15:3a:ff:02:23:
a3:36:33:61:3b:87:80:2a:3b:ff:9e:36:0f:cb:c3:40:d7:45:
9e:8e:c5:55:a6:70:c6:83:54:23:e9:47:d7:43:ad:d4:ca:54:
0d:d7:c7:bd:18:23:54:a8:f6:e5:aa:8c:4a:a5:b6:ee:85:83:
ff:43:76:32:0f:15:b5:b4:df:e5:cc:dc:6e:15:71:77:c2:71:
f1:f3:25:bc:bc:6a:37:92:aa:d8:36:92:8b:e5:37:9e:cc:1e:
d0:30:24:df:d8:ed:c9:d4:41:04:5e:27:28:c5:88:73:46:6a:
58:d7:ed:49:bb:c8:6d:5a:05:dd:1b:16:07:56:d6:d5:e6:f7:
fc:d7:f6:91:c1:7b:18:95:21:0b:53:35:7f:3c:2c:b7:79:f4:
d8:ff:c0:da:c9:7d:fa:2a:5d:72:d3:2d:11:cb:e3:cd:8a:7d:
e6:c7:aa:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 11:00:16 2024 by rpki-client on console-ams.rpki-client.org