Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: /lJJY1YycJCdFnsGiHQ8N3/w1IqgSPOO3RsstPB7uvM=
Subject key identifier: 8C:43:77:7C:44:7C:24:BD:3A:8D:26:26:1C:14:4F:4D:71:DD:57:BE
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 0193568A8B2D34690F65F603CF7FB7BE0338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 0DD3
Signing time: Sat 23 Nov 2024 01:02:20 +0000
Manifest this update: Sat 23 Nov 2024 01:02:20 +0000
Manifest next update: Sun 24 Nov 2024 01:02:20 +0000
Files and hashes: 1: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: Xli0l028p4S9CHN1nOTTHpOYhlh0oZjf6hZlNDZxydw=)
2: tEeZNp3eI83jWsZIpV-3sThjalU.roa (hash: EUmmDBXogt4WLO+q+we99vQ77vz+5IgPDK+VD8+PYsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:8b:2d:34:69:0f:65:f6:03:cf:7f:b7:be:03:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Nov 23 01:02:20 2024 GMT
Not After : Nov 24 01:02:20 2024 GMT
Subject: CN=8c43777c447c24bd3a8d26261c144f4d71dd57be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d9:fc:28:d4:0f:d2:5c:7d:04:58:2a:59:ab:
a5:af:97:7c:a4:12:4f:7c:92:f7:88:f6:a2:32:4f:
1a:71:5d:a3:8b:eb:9f:d6:48:6e:31:fb:1a:88:cd:
8a:d9:21:53:28:b2:25:dc:14:56:83:39:75:07:d3:
da:fe:c6:01:f2:6d:c3:76:d2:14:f1:96:df:40:68:
b3:cb:9d:33:4d:68:18:d9:b5:bd:01:c9:70:b9:be:
d6:f3:b4:8b:18:9d:0b:38:83:c7:9e:39:5c:0c:5a:
01:35:23:1c:1c:6e:ee:9e:ae:37:8c:66:dd:01:59:
49:23:e4:5a:43:10:4a:af:d9:e1:d0:95:d6:b3:b8:
19:fd:2a:62:49:a4:92:dd:fc:72:e2:e0:49:33:f3:
ef:91:53:56:56:60:4a:ad:d6:f1:1e:14:d3:94:85:
22:2e:9c:51:f2:ab:75:4e:3d:ac:9d:2a:e8:68:4f:
80:51:71:92:33:49:c4:15:93:15:be:55:4d:9f:e4:
94:9d:c8:f0:78:f3:98:23:48:3b:17:f6:c9:b2:11:
ab:e9:4a:a5:de:9f:bd:7e:17:e6:94:da:89:78:07:
23:e7:ff:6e:ac:43:ff:ef:e3:39:67:f3:f6:93:e9:
49:fa:ae:34:c6:57:9f:96:9d:b1:a8:70:83:46:48:
64:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:43:77:7C:44:7C:24:BD:3A:8D:26:26:1C:14:4F:4D:71:DD:57:BE
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:18:29:46:96:8e:8e:fc:f3:5f:8b:fa:51:09:34:0a:3d:34:
94:14:96:cf:e7:0d:d2:e1:25:16:85:aa:04:f5:63:c2:cc:50:
48:66:39:04:dc:6a:81:df:a1:ff:f9:0f:52:61:c5:73:c1:83:
e4:8a:ec:03:34:5b:ce:61:f8:0a:ae:31:d5:e0:7a:59:00:2b:
82:f7:df:e3:24:41:f8:34:0f:09:4d:d2:4a:c3:e7:cb:24:9c:
54:95:24:0d:08:41:f0:cb:5b:f7:2b:6e:d2:c4:dd:45:ff:3e:
91:7d:a9:43:59:ff:de:dc:7b:9e:89:19:3a:d5:a0:32:ef:ae:
bd:26:f4:3b:af:6a:e1:a2:aa:57:48:de:b7:f3:13:91:5d:89:
f7:df:69:e5:70:73:28:ef:ae:fd:2d:b8:31:75:c0:06:d0:d6:
e5:14:90:b6:3b:da:dd:d6:92:ce:1c:06:ca:5e:ef:a2:06:f6:
98:a5:09:2c:eb:b3:d2:6d:1d:cf:0c:24:34:97:0c:ba:2f:ae:
27:31:cc:20:ed:f5:76:71:d4:a4:2b:4d:d9:40:46:f3:9f:df:
b4:7b:f6:ce:6e:4b:2a:cc:68:4d:f6:78:5a:ff:68:5f:f1:69:
72:02:ea:c7:f3:4d:ce:4c:fd:fb:97:8c:a8:87:e5:30:8e:31:
d6:df:cb:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:55:15 2024 by rpki-client on console-ams.rpki-client.org