Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
File: fzP8QNLgMzu8e96rK9hZlUMBwPE.mft (raw, json)
Hash identifier: M4+wG47uc7dULPUhPLXfhApkRbXwSMx85fL31d28edQ=
Subject key identifier: A2:B7:1E:7B:9D:08:10:1F:14:74:AC:B3:94:D0:DF:24:6E:4E:4B:57
Authority key identifier: 7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1
Certificate issuer: /CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1
Certificate serial: 01936A0F968A8E2D55D3B5841B35AD02EB2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
Manifest number: 02C3
Signing time: Tue 26 Nov 2024 20:00:26 +0000
Manifest this update: Tue 26 Nov 2024 20:00:26 +0000
Manifest next update: Wed 27 Nov 2024 20:00:26 +0000
Files and hashes: 1: AF8ZuSp5Q5SBiaIzDtc232grrWg.roa (hash: 56Zihk5xvnu0SDecj/48nJIqti4UQXy5BuD3sDXIbLM=)
2: fzP8QNLgMzu8e96rK9hZlUMBwPE.crl (hash: XFwYOf7kTM2TsdesdN6Nc3onpivRdMVI7UAXYu5BENc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:0f:96:8a:8e:2d:55:d3:b5:84:1b:35:ad:02:eb:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1
Validity
Not Before: Nov 26 20:00:26 2024 GMT
Not After : Nov 27 20:00:26 2024 GMT
Subject: CN=a2b71e7b9d08101f1474acb394d0df246e4e4b57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f0:c9:62:e8:4e:83:b7:5f:8c:45:d3:0a:54:
d5:d2:15:2b:5f:b6:9b:93:49:e1:dd:16:d1:7c:f9:
24:11:35:a9:b7:be:df:a7:fc:78:18:1c:cb:63:d1:
01:7f:b6:cc:b7:ae:5e:75:43:f7:4a:d8:ed:07:12:
22:6b:0b:91:56:4e:9a:1f:8c:d8:54:3f:ef:4e:11:
a8:c4:86:29:d6:50:61:64:5b:1b:be:2c:32:68:9c:
88:79:d1:31:fe:8a:3c:21:54:cf:80:75:3e:fe:18:
64:e1:c5:be:78:67:ee:b2:a1:ce:0c:7c:b6:75:82:
64:f9:c1:f4:14:47:8b:0c:96:1b:f5:f9:1e:9a:0a:
25:b7:0f:fc:d7:76:53:2c:0b:5f:40:11:c6:a3:c2:
f3:42:bd:6e:6b:a9:ff:54:07:12:ad:aa:78:1e:53:
75:e1:dc:04:20:a7:f3:bb:0f:3c:64:b7:0c:96:9b:
ef:d9:b6:c1:ba:d4:45:a0:ff:1e:eb:94:90:f5:dc:
e5:aa:a3:ba:e2:f6:18:f0:78:86:21:4b:ce:93:37:
33:ff:60:74:66:eb:64:c8:c2:ec:34:1c:c7:4a:14:
e3:e1:a5:e4:e4:6e:e8:53:e5:03:ef:dd:0d:b9:7b:
74:20:44:86:5d:83:77:3a:84:e6:74:39:13:36:c6:
e5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B7:1E:7B:9D:08:10:1F:14:74:AC:B3:94:D0:DF:24:6E:4E:4B:57
X509v3 Authority Key Identifier:
keyid:7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:fa:c7:8e:b3:b0:f2:b2:bf:5f:fb:88:4d:42:f6:51:d6:54:
00:11:96:ce:84:37:c0:11:26:69:c8:a4:1f:ec:c0:90:c3:ea:
38:5c:72:04:a1:7f:67:df:f3:01:10:05:db:6f:d3:a2:52:50:
7b:6e:59:b5:80:12:7d:5b:2a:94:8f:2b:01:c2:d4:2b:4c:f6:
35:21:c9:7c:48:e0:be:e3:08:9f:c8:68:f9:31:66:4c:35:db:
39:6d:cc:70:d3:8a:69:ac:c1:c1:10:e1:1d:cd:42:ef:43:03:
e1:72:e3:35:ea:35:a5:26:55:e1:1d:8c:dd:d2:46:17:97:48:
88:a6:2a:1f:23:46:0c:b1:c6:49:e7:19:1f:ac:15:85:31:66:
18:70:5e:bf:e1:02:4f:76:3c:a0:f9:ef:fb:73:26:78:7c:77:
3d:35:bc:9c:e7:92:13:41:05:32:8a:82:ff:61:93:d0:89:2d:
c9:0f:6e:02:86:79:8b:3d:92:6e:1b:e6:05:f8:af:52:cd:26:
db:1b:97:56:ff:cf:d9:1b:5c:a4:50:56:0f:7f:67:6f:93:0e:
07:9b:d1:55:af:93:38:cc:a4:11:41:61:e8:2b:a8:fa:1a:db:
b8:f6:48:75:a8:ea:3f:33:d5:95:ef:0f:20:cf:62:14:58:89:
e5:ff:c6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:33:03 2024 by rpki-client on console-ams.rpki-client.org