Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json)
Hash identifier: Z7Xtph5uwyk3T4Bd2Pq7+0TBBCjr0/Z4Drx44tAGHEs=
Subject key identifier: 22:F2:E6:42:B4:2D:F5:13:D3:E5:A8:DD:29:6F:9A:77:47:A8:6D:53
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 0193550894B4CF9B1661412383D542359CFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
Manifest number: 0BBA
Signing time: Fri 22 Nov 2024 18:00:45 +0000
Manifest this update: Fri 22 Nov 2024 18:00:45 +0000
Manifest next update: Sat 23 Nov 2024 18:00:45 +0000
Files and hashes: 1: J115rPepxn5pIj5m2gjQGIf5kXA.roa (hash: 8bXTwYx5cQyLGGG/KfEx1T/45FRcGWYDTrIaxfI9EcQ=)
2: JwsBYh_aH8RoDjQ3CP0cSEx8JVg.roa (hash: b24csn55EUPHuTkte7BM9hJHh3yC6WZItOxlB8PHHTg=)
3: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: QmIZZn8alIz02sWwMoEyNubDHcQYC1RX6QZ1h51PgrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 18:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:08:94:b4:cf:9b:16:61:41:23:83:d5:42:35:9c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: Nov 22 18:00:45 2024 GMT
Not After : Nov 23 18:00:45 2024 GMT
Subject: CN=22f2e642b42df513d3e5a8dd296f9a7747a86d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:89:09:30:b1:e9:49:76:2d:49:2c:01:70:fc:
71:4a:e8:af:e0:75:ef:3a:fb:54:bf:fa:55:d4:4e:
c6:56:d6:72:e4:10:b8:f4:ce:57:f3:8c:c7:67:f7:
be:17:90:d9:98:ea:03:a4:8d:0e:82:b6:79:7e:56:
67:2a:ae:26:40:ce:99:9b:b8:61:21:be:1a:90:69:
b2:bb:92:7f:81:d2:e2:b1:e1:bd:0c:a9:2a:19:6c:
cf:ae:f3:72:54:40:b6:2e:1e:81:ce:9e:3c:83:db:
f9:80:5a:66:8b:c5:04:13:0d:e6:09:78:6f:ed:a3:
c3:58:ba:d2:e6:cb:92:3d:72:66:5b:d1:68:42:4b:
9d:dc:4e:67:6a:d9:ae:af:79:f8:92:94:e0:fe:a6:
67:4b:6f:ab:35:b3:5d:47:a4:4d:f5:4f:81:25:f4:
81:ca:c4:ec:a1:bf:7e:39:13:0e:46:12:d4:a7:89:
66:a2:f0:14:74:c2:5e:bf:8a:e7:0e:34:d1:33:bd:
ac:07:87:07:55:58:f0:14:b4:2f:6a:0e:c7:35:87:
06:83:ad:a8:fb:9a:46:32:70:16:6b:c3:af:08:3b:
0b:34:81:fb:06:eb:48:5e:14:6f:62:a4:7b:16:94:
3a:3d:02:73:9d:e5:1a:d2:f6:73:be:07:fe:22:59:
ea:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F2:E6:42:B4:2D:F5:13:D3:E5:A8:DD:29:6F:9A:77:47:A8:6D:53
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:56:56:55:eb:90:0a:1d:1c:51:e0:9e:3f:23:9c:25:ec:3e:
df:8b:d2:7f:33:c5:f6:88:62:ca:96:5b:3e:99:39:ca:8f:a0:
26:5e:de:29:e7:ef:ac:5e:df:27:1a:a7:54:c6:e8:e1:b4:77:
9a:d7:3a:e8:f2:2e:34:ce:38:40:2e:46:64:39:53:cd:a6:d9:
39:6d:e9:81:8c:9f:9f:c0:f0:b7:7c:44:fe:f3:92:e0:9c:7f:
fd:f4:07:69:ba:e9:bc:db:d8:e7:c0:a0:28:47:7b:40:1b:29:
b1:b4:74:34:32:cf:49:e9:ad:38:7b:59:f2:da:df:7e:06:31:
81:46:eb:83:f1:91:f4:41:d2:69:4c:33:ba:21:7a:9b:b7:4b:
c5:73:22:20:8a:22:b1:00:d3:62:57:59:81:d0:e0:89:12:74:
46:c6:cf:0f:ad:67:06:7d:71:40:da:ef:a9:04:00:54:b6:23:
e4:79:1a:ce:c4:83:fc:70:78:02:a1:f8:ec:1e:00:c5:53:eb:
51:88:fd:1c:43:cb:b9:4f:40:58:41:62:26:24:1d:fa:7d:4e:
d8:d9:38:b2:0d:5c:2e:c5:08:31:3d:77:a5:92:6a:af:37:5c:
64:df:62:4c:2d:c8:2b:c8:db:5f:56:43:ca:36:bf:1c:37:c5:
03:78:39:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:36:21 2024 by rpki-client on console-fra.rpki-client.org