Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: waQqOcoW+K+oEXn82Z1wXO3/M2chOYzxsri+uz+dFZc=
Subject key identifier: C3:B9:88:6B:21:31:03:67:FC:83:B4:B2:A1:33:B0:8C:27:D2:BC:AA
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 01935508335129DA53E2EACA02B211A0E83A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 069B
Signing time: Fri 22 Nov 2024 18:00:20 +0000
Manifest this update: Fri 22 Nov 2024 18:00:20 +0000
Manifest next update: Sat 23 Nov 2024 18:00:20 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: hcCuGAor4MG5WmWQD8eCUJUMi8UNIM32QgY94X4QYjg=)
2: JnCeM_UrHxSagSWeEYKuxVT_RsE.roa (hash: Nqc0kLRKWhdceFL4S+WkkPQoNAcD+SOL0v5npMpEC18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 18:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:08:33:51:29:da:53:e2:ea:ca:02:b2:11:a0:e8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: Nov 22 18:00:20 2024 GMT
Not After : Nov 23 18:00:20 2024 GMT
Subject: CN=c3b9886b21310367fc83b4b2a133b08c27d2bcaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:93:3e:4b:5d:b8:3e:7c:41:8c:74:89:4b:59:
b9:9b:69:f4:ec:63:da:2e:ed:24:c6:3b:fc:19:e1:
bd:29:e3:79:44:f0:59:70:8a:4c:c1:b1:9f:72:e7:
8d:99:01:04:2c:f6:f4:bf:8c:2b:66:50:cd:b1:b2:
35:3b:d6:36:b3:4d:27:d1:fc:a5:22:11:e4:1e:97:
5c:4f:46:1c:8e:d9:1e:f7:49:f1:4e:f5:5d:62:a0:
6d:e2:c2:e3:a3:4f:d2:4a:35:eb:e9:6b:e9:48:f7:
8e:7e:e1:98:cd:34:85:3b:df:33:07:a1:55:fc:d3:
ca:8b:a2:a7:50:a9:6d:a1:ec:c2:30:47:10:22:51:
4e:68:76:1a:70:2a:c3:0d:39:5a:a9:4b:07:f7:7d:
42:91:bb:37:bb:e6:ab:44:a4:f8:2f:cc:e0:ff:2f:
10:6b:48:45:a5:70:d3:c1:da:a9:f2:b8:ce:5b:d7:
ae:66:44:10:c2:42:d1:0d:b9:d4:e1:f1:f6:8b:a9:
6d:ae:ce:c9:ef:7f:25:d7:67:9f:e0:c0:e5:23:5c:
de:1e:01:ea:59:a3:78:86:4b:ad:2d:f4:b1:f7:e6:
85:5e:d2:b9:71:61:9a:00:23:a7:94:6f:be:71:40:
92:92:6b:01:26:6b:ca:e2:4c:14:11:c2:ad:36:1b:
e9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B9:88:6B:21:31:03:67:FC:83:B4:B2:A1:33:B0:8C:27:D2:BC:AA
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:99:b1:c5:52:15:09:c0:03:53:8f:e1:74:ef:86:49:38:11:
50:ec:7d:ca:f1:81:5d:f9:9f:c5:6a:2d:f6:a3:4b:b7:0c:b2:
46:18:72:d1:d0:9d:7a:bb:9b:f7:c9:ec:60:41:91:6b:aa:e1:
cb:20:f8:78:35:86:f1:8f:82:9a:2b:24:06:c1:a4:66:4e:44:
86:2f:23:ed:14:f1:bd:0f:8d:60:a7:3f:d0:41:dd:9c:83:f0:
f9:66:1b:44:7d:5f:75:11:10:66:69:e4:21:03:be:af:a9:b4:
27:c6:97:1e:1c:70:1f:76:35:84:68:35:ca:39:1b:1d:fe:d0:
ed:dc:34:c9:d3:05:ba:76:88:0d:f5:e4:c7:e9:dd:8e:67:ff:
e5:e6:35:6d:89:a2:ca:58:b5:f7:32:bf:e0:71:6d:94:b6:0b:
b7:76:8f:23:e0:10:6b:be:df:c7:19:6d:a5:d6:06:42:ad:33:
b1:93:53:2e:22:5c:50:56:f0:56:9e:41:97:68:a3:cd:ba:74:
04:de:7c:c7:8e:12:69:00:f9:f3:f3:60:67:f6:bf:b2:28:c8:
a4:ef:3e:29:ad:75:c3:e3:aa:55:bd:0d:54:d7:7a:9d:e6:18:
fa:53:d0:a1:2c:29:0f:34:9e:44:b2:d4:40:30:db:28:f8:ef:
fb:0a:d5:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:20:48 2024 by rpki-client on console-ams.rpki-client.org