Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
File: aVu9VCkSpm_uajQSijqM9wl9xps.mft (raw, json)
Hash identifier: xdxSTaIOHLBXYsRxz3qqeMwgpvB4JcA2/ig3WUHHHMU=
Subject key identifier: 13:B5:92:64:B1:F5:CC:28:C3:D1:AB:01:C4:F5:F6:4C:F3:87:4A:13
Authority key identifier: 69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
Certificate issuer: /CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Certificate serial: 0193579B93522CE562508E2849FA67D22F0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
Manifest number: 038B
Signing time: Sat 23 Nov 2024 06:00:33 +0000
Manifest this update: Sat 23 Nov 2024 06:00:33 +0000
Manifest next update: Sun 24 Nov 2024 06:00:33 +0000
Files and hashes: 1: DxiPkO6ibPdAUr2P78QorUqel1c.roa (hash: WNJA461CD6DfESCQGaD+4JpVI8LaEV6Ywt7YZdu6guM=)
2: aVu9VCkSpm_uajQSijqM9wl9xps.crl (hash: 20njl8NaLYIBNuNCKtGA8LOc9uYmouo0g5AL06dHuho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:93:52:2c:e5:62:50:8e:28:49:fa:67:d2:2f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Validity
Not Before: Nov 23 06:00:33 2024 GMT
Not After : Nov 24 06:00:33 2024 GMT
Subject: CN=13b59264b1f5cc28c3d1ab01c4f5f64cf3874a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d3:70:60:f5:90:a2:e5:dc:15:fa:a9:76:2c:
99:ad:f9:b7:bf:8f:fc:04:d5:5d:55:1d:56:57:e3:
4f:ae:2c:48:b0:46:2c:91:ed:4d:7d:61:2c:98:9d:
e5:4b:be:1e:7a:1e:08:c2:34:c8:78:32:18:b7:87:
3b:ce:3b:fa:b2:a3:b5:a8:9c:16:6c:6e:7c:80:f8:
09:38:b6:8f:99:5a:f7:3f:7d:2e:d1:11:fc:90:4e:
4c:10:db:04:20:2e:27:61:f2:1c:ae:57:a2:e7:7d:
80:17:1b:f3:a5:75:d6:69:90:ae:65:cc:15:14:03:
72:ea:76:bf:9f:36:d2:a8:26:31:3c:66:67:d0:93:
14:3b:62:38:62:47:4a:7b:ab:97:7f:2b:34:cc:8b:
88:c3:2c:66:b8:9a:37:b9:8f:43:41:5f:18:5c:78:
24:c8:49:59:8d:ac:40:bb:63:3b:e0:c1:69:e6:db:
6b:fb:45:0e:6d:b3:77:55:b3:6a:e5:19:5c:bb:2f:
4a:51:2a:34:2e:66:62:93:52:8b:9f:d8:35:95:c0:
8d:85:8c:68:96:70:25:fd:2f:00:d8:74:b8:f5:bb:
1d:0a:d6:ca:0f:b0:45:7e:ff:8c:4e:21:a7:d7:c3:
22:61:b1:2e:22:3e:71:df:56:c5:96:e3:f2:27:37:
74:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B5:92:64:B1:F5:CC:28:C3:D1:AB:01:C4:F5:F6:4C:F3:87:4A:13
X509v3 Authority Key Identifier:
keyid:69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:28:b1:0a:23:75:8d:1f:fd:bf:c2:84:42:b1:1f:8f:8b:db:
70:b8:1b:23:61:80:58:b0:ff:e0:b2:32:f5:0e:f3:47:67:5c:
e5:04:14:5d:75:bd:55:c3:50:7a:f2:2d:ca:e4:63:d1:26:a7:
71:ed:a8:51:e6:a0:89:a7:22:1a:d3:39:ab:90:45:6d:d0:77:
43:d2:db:39:f3:31:30:81:1a:c3:92:d7:12:36:7c:7a:3d:ca:
53:08:04:cf:1f:32:ba:e5:d0:f3:91:17:b4:1b:4b:80:4b:4f:
10:aa:f0:f2:54:82:7a:4d:ce:c8:b1:a7:7e:cb:ac:35:aa:fa:
2f:48:32:1e:f9:3d:bb:32:13:6c:4c:9c:7a:f5:94:b8:3d:75:
71:a8:6c:80:fa:7b:db:9d:04:7f:f0:10:e7:f6:fe:37:dd:28:
9a:7b:ca:e6:61:4f:2c:46:ed:39:80:76:8e:98:a6:ce:d1:05:
4f:7a:e5:24:a5:55:19:c9:b0:a5:8c:3e:49:fe:a9:96:63:72:
56:2e:d9:20:1e:1c:96:c6:dd:52:89:81:be:b5:7c:3e:3d:5f:
0b:84:52:65:fa:79:ed:f4:00:88:c2:68:8d:b6:db:90:26:6d:
3f:a4:f5:83:9c:b2:e0:91:80:c4:ce:bc:4d:d6:94:2f:d1:32:
bb:6d:44:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:54:26 2024 by rpki-client on console-ams.rpki-client.org