Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: +UdZji0Z8V3brm/+UaClFaN31fheCkH6L75gmLxvBdA=
Subject key identifier: 49:1B:65:E7:52:42:8B:3C:96:3C:49:68:ED:38:EC:73:9E:FA:A9:C2
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 019358E514EBCDBC8687FDEA15E26AEF5D27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 11E5
Signing time: Sat 23 Nov 2024 12:00:28 +0000
Manifest this update: Sat 23 Nov 2024 12:00:28 +0000
Manifest next update: Sun 24 Nov 2024 12:00:28 +0000
Files and hashes: 1: Mv0ndK2HEF88sVwPUYiBgBgLL24.roa (hash: PA2B36LXk4gz3xeGksqWvMJPb0JcjgVXEcggY8FS4ec=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: f+gaZ674CA1+BTxmI9RB3HqmevwzUImMa69BeILUx/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:e5:14:eb:cd:bc:86:87:fd:ea:15:e2:6a:ef:5d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Nov 23 12:00:28 2024 GMT
Not After : Nov 24 12:00:28 2024 GMT
Subject: CN=491b65e752428b3c963c4968ed38ec739efaa9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ff:48:73:52:be:51:8e:20:f0:22:26:fb:d5:
8d:b5:61:4d:19:41:cd:2b:41:0d:ac:b4:2a:61:f7:
01:8a:eb:e3:fe:0b:11:53:ae:f0:c5:7e:c0:12:39:
6f:f2:b1:23:79:40:e0:69:d3:6d:93:eb:8d:62:e2:
bb:a2:68:1e:03:6c:94:4f:51:7d:d1:86:d7:aa:f6:
67:49:ab:c1:15:03:cb:cc:09:31:f0:5c:b8:8b:e1:
4e:0f:76:82:15:39:7c:a5:81:79:59:17:97:41:f6:
c8:81:16:bc:56:21:52:93:90:ae:dd:7b:72:02:df:
5a:03:97:f6:b3:c7:b1:c7:69:29:8c:7d:6e:f1:c7:
a3:0d:87:67:a9:49:95:b7:8d:df:a2:16:66:ed:2d:
7e:8c:76:1f:aa:ec:a2:1e:9e:cc:97:2b:6e:30:f2:
4a:0d:40:5c:b7:9d:04:ac:df:c1:f8:68:37:c2:36:
0f:ff:a9:65:d0:b5:9e:ea:51:91:4c:3f:81:a2:70:
3d:10:ef:fb:b0:4f:24:b9:bc:7f:6b:8c:b5:62:1d:
db:a5:2b:46:f0:db:4c:c7:77:87:cf:7a:6c:29:32:
83:be:ff:e1:d9:75:bb:ed:54:87:32:9a:38:77:45:
d9:cd:f2:89:4a:36:d6:3d:a6:a8:bc:10:2e:ec:1e:
ba:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1B:65:E7:52:42:8B:3C:96:3C:49:68:ED:38:EC:73:9E:FA:A9:C2
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:d5:82:59:79:e1:b4:9b:c7:43:2c:40:1b:ac:89:b6:3c:9b:
ff:15:ba:ee:b1:20:8d:db:09:6e:55:cc:41:f9:12:0f:ae:b7:
26:57:2b:85:f2:7f:4d:58:62:0a:6a:48:fc:66:f5:ed:c3:7f:
00:5a:14:fa:23:81:c1:a7:40:9a:7f:8f:d9:e2:3b:75:7e:ff:
b7:9a:e2:13:22:60:28:04:e6:71:73:0a:97:c2:a4:08:01:cf:
dc:b7:06:48:2d:ae:df:41:22:88:35:87:86:59:97:b7:59:47:
1f:0e:99:14:01:da:b7:e1:38:ba:73:f8:bd:ef:36:22:e9:a3:
28:1f:72:8a:7b:11:da:00:51:ee:61:54:41:05:58:21:eb:4a:
bc:1e:89:b4:49:5a:2e:03:84:de:75:fb:bd:58:36:31:c7:45:
97:74:06:61:fe:78:e8:4f:38:42:86:90:cd:2d:e0:ac:70:52:
4e:6e:4f:2a:a2:ed:d4:87:5c:42:3a:bc:7a:00:ef:24:dd:6b:
dd:c1:12:b5:5b:0f:ee:16:88:de:69:b4:cd:fa:86:00:83:1b:
9b:52:2d:fd:04:f7:e7:37:65:22:bf:67:76:80:66:76:8f:ee:
02:4b:4b:e2:b8:ba:66:e2:a8:bb:bf:ee:f2:9e:3b:5b:b3:5b:
cf:db:cb:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:16:31 2024 by rpki-client on console-fra.rpki-client.org