Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
File: UFrRf0xiDVjUU9X218kjP84SZJk.mft (raw, json)
Hash identifier: YfxnewtNk6zGJ8DKpM4EEKXon2omgpbzEnffURqcfik=
Subject key identifier: 45:B5:B8:BB:CC:B4:8D:FE:40:D9:17:91:9C:D4:18:09:4D:F1:CE:1D
Authority key identifier: 50:5A:D1:7F:4C:62:0D:58:D4:53:D5:F6:D7:C9:23:3F:CE:12:64:99
Certificate issuer: /CN=505ad17f4c620d58d453d5f6d7c9233fce126499
Certificate serial: 01936BC7D907E94939517BC0B0E7A40E7D50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
Manifest number: 0404
Signing time: Wed 27 Nov 2024 04:01:19 +0000
Manifest this update: Wed 27 Nov 2024 04:01:19 +0000
Manifest next update: Thu 28 Nov 2024 04:01:19 +0000
Files and hashes: 1: 98sJMxwYpOFNo1ngvKhvoqkSorM.roa (hash: nRTwT2ccVlkxJ4XL5g8B2if9Z+u4yMkN5iJ0YCEguaI=)
2: UFrRf0xiDVjUU9X218kjP84SZJk.crl (hash: RiCGk/Nmbf+H07p2Jt3uMbJh6GN6Uaglz7WYZiSSVN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 04:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:c7:d9:07:e9:49:39:51:7b:c0:b0:e7:a4:0e:7d:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505ad17f4c620d58d453d5f6d7c9233fce126499
Validity
Not Before: Nov 27 04:01:19 2024 GMT
Not After : Nov 28 04:01:19 2024 GMT
Subject: CN=45b5b8bbccb48dfe40d917919cd418094df1ce1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8b:a5:35:62:b9:03:7c:39:c0:33:d6:e5:16:
1d:14:c3:ba:5d:34:4b:41:0e:38:e1:3e:67:d5:b5:
6f:19:b6:18:82:d9:b5:be:30:f4:17:8e:41:8e:a1:
f9:3c:31:7e:f3:0c:90:83:35:fa:9a:ac:23:64:b8:
44:41:1d:35:32:29:cf:6b:eb:71:25:dd:0d:da:2d:
aa:11:ed:d8:8f:8b:01:aa:4b:6a:13:56:3a:9a:e1:
9f:5c:5d:ea:00:ed:8b:7e:0a:ec:00:16:1a:96:7f:
0e:ac:6b:d5:bc:ea:f5:a3:fa:b4:d1:81:3c:32:3b:
fc:a0:34:cc:5a:42:4a:0d:b4:51:c3:87:f2:d1:fa:
2f:4f:f8:fb:37:31:38:44:94:9b:c6:54:0b:d5:3d:
0e:49:f6:8e:22:d2:72:07:71:6a:09:49:96:0c:bb:
2f:75:9f:dd:8d:0e:c4:1c:f3:48:06:d2:5a:0a:82:
9b:7a:28:00:d7:90:13:c6:35:ee:df:cb:b6:d2:6e:
18:5c:c9:c5:58:89:ec:a0:d2:89:80:40:92:d1:c1:
23:f9:b4:73:7f:fc:93:97:1f:0f:17:a9:b5:98:d8:
a5:e2:9c:75:9f:d3:ef:fb:78:73:a9:8f:62:06:19:
7a:b8:46:d0:13:17:cc:7d:35:17:5f:c7:6a:6f:2e:
b1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:B5:B8:BB:CC:B4:8D:FE:40:D9:17:91:9C:D4:18:09:4D:F1:CE:1D
X509v3 Authority Key Identifier:
keyid:50:5A:D1:7F:4C:62:0D:58:D4:53:D5:F6:D7:C9:23:3F:CE:12:64:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:5c:f0:0d:7c:f5:64:39:92:c7:d2:94:23:f2:7c:47:be:8e:
74:f8:95:e0:32:f0:b0:de:65:8d:35:bb:8c:b7:93:52:53:89:
65:ec:45:2f:7b:ff:2c:5d:51:89:5f:d9:ae:7e:03:ab:1b:ce:
d6:e7:34:38:ea:3e:d0:fa:7e:80:4e:2c:19:e6:07:86:62:a9:
e2:29:3a:9c:c5:98:40:91:6c:6a:37:1e:b4:48:59:b1:c6:f1:
33:22:c3:bd:c8:8f:2e:ff:71:d8:d4:d7:bc:35:a3:92:0a:91:
8e:94:02:63:ae:23:25:19:d0:07:f0:5d:d1:ba:77:7b:ac:c1:
aa:47:90:3f:41:90:98:e2:69:11:77:39:7c:e9:8b:b3:30:c4:
c7:0a:7b:98:b3:be:ca:98:01:71:44:a2:97:c3:e9:9c:39:61:
6b:44:d3:24:b7:37:33:8a:d0:0e:b6:bb:e1:66:16:72:ae:69:
63:7a:da:69:6b:b5:3c:22:45:c2:f9:9b:de:b5:cb:03:b8:8e:
d1:0a:71:8f:06:77:32:b3:ce:aa:bc:95:67:89:6c:89:a7:8a:
e6:4c:79:86:72:18:8e:26:fa:ba:e3:23:86:06:4d:5d:6a:ea:
b1:29:f7:bc:b9:04:80:56:47:d8:61:f9:8b:f0:a6:69:a3:38:
5a:6d:9f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 10:39:36 2024 by rpki-client on console-fra.rpki-client.org