Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: zSaZJjcID/e4h6MkPz8FkX9LqMaeNbdVquX3bsuXhPM=
Subject key identifier: B4:AE:47:90:7B:86:B5:CC:A1:A6:39:6B:03:73:CD:9C:DE:8A:D7:2F
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 019357D27298DC262AC1137450F90215BB9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0828
Signing time: Sat 23 Nov 2024 07:00:29 +0000
Manifest this update: Sat 23 Nov 2024 07:00:29 +0000
Manifest next update: Sun 24 Nov 2024 07:00:29 +0000
Files and hashes: 1: f1-8DtxwacrQ9nW7DJjOTsUukQY.roa (hash: uDn7X0l0ZolgFOMi8Plw0obaEdrI956f0R4B6FzuemE=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: puz9s2VJKxQZwWxU7GzEV24kAUEqVjRoWTB9Go4nPV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:72:98:dc:26:2a:c1:13:74:50:f9:02:15:bb:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Nov 23 07:00:29 2024 GMT
Not After : Nov 24 07:00:29 2024 GMT
Subject: CN=b4ae47907b86b5cca1a6396b0373cd9cde8ad72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6b:6f:87:25:1a:78:23:32:b9:23:29:8b:0e:
94:9b:6c:1e:31:ff:89:b4:57:60:dd:d1:cf:b3:58:
11:95:9f:a4:9a:a2:0a:67:56:02:81:3c:36:53:34:
20:28:80:19:b1:c3:6e:14:c2:07:07:66:8b:71:32:
2d:9d:81:33:6e:66:8e:39:8d:8a:53:b8:82:ac:dc:
18:60:1e:e8:05:90:55:3d:3a:6b:b3:25:bb:8a:5c:
03:2f:aa:b8:eb:a7:d2:d5:a1:54:8c:28:56:ae:46:
b5:20:1d:61:4d:3c:fe:a4:2b:c5:63:25:40:35:c8:
1a:07:69:b6:4f:d2:c8:b4:3f:d0:a7:c7:a8:51:73:
50:98:fa:e5:f3:09:bb:85:05:06:7c:65:dc:e8:d0:
af:f6:93:9b:63:f1:2d:72:65:7d:54:f5:c8:7f:3d:
79:db:c3:c5:7d:cb:af:fd:71:d9:99:72:86:ba:5a:
25:4b:82:45:09:10:5d:5a:d4:17:ad:9d:2f:8c:8d:
a0:e9:cd:67:4f:65:23:2f:46:44:ab:ad:12:1e:74:
d5:ae:e9:b7:c1:76:cc:27:8d:b2:10:a4:a1:17:23:
86:2e:11:d8:cf:33:be:e5:62:68:2c:a5:a4:ac:6a:
73:c9:48:be:64:af:55:60:86:16:f5:cd:31:0b:5f:
32:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AE:47:90:7B:86:B5:CC:A1:A6:39:6B:03:73:CD:9C:DE:8A:D7:2F
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:bc:c1:71:2f:2b:f1:ce:ff:67:8b:f2:a7:3e:5b:8a:55:9f:
b3:dc:bd:18:92:57:cf:8e:45:47:5c:8f:5d:6e:43:f8:6c:b7:
85:5a:ae:77:02:03:9d:99:7b:df:79:1e:b6:82:62:3f:4c:67:
ea:6d:af:03:ff:40:e1:be:d7:dc:7c:cb:67:92:e7:e7:0d:43:
97:d6:f2:78:9b:0e:0f:eb:95:b8:88:c0:bb:64:ae:27:c5:d9:
3b:f8:f8:93:00:35:b0:1e:57:22:86:f7:d3:53:14:8f:5a:c2:
c1:1d:65:e8:99:aa:60:e8:4d:56:c6:d4:ab:38:a1:3b:90:72:
d0:52:87:ed:35:46:20:95:f3:40:15:e2:da:6a:dc:13:19:fb:
e0:33:2c:94:6a:ab:03:e2:23:2a:63:e1:7d:63:a9:a0:aa:1d:
65:e7:0f:ec:5d:fe:08:c3:e2:a4:22:93:5e:0f:97:a7:f1:a4:
9d:55:df:af:6b:40:5e:d6:35:c9:4e:aa:21:63:22:1e:4c:0f:
cc:40:92:ee:75:3a:ff:00:18:b9:d8:37:45:69:61:aa:d8:54:
b8:66:13:09:af:84:96:95:31:14:c7:9a:04:37:fa:62:83:1c:
09:f0:78:77:8b:9e:ab:4d:11:f9:1c:c6:1e:53:0f:15:84:9b:
44:94:2c:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:53:36 2024 by rpki-client on console-ams.rpki-client.org