Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
File: DyKg7jvG4y2JLt3iV8u3mRefLNY.mft (raw, json)
Hash identifier: zqA19LHG/fIQXRkcCmT5ng5ns9xwS9WT+aPK99HDxiw=
Subject key identifier: 5C:72:0A:8B:51:39:EB:3E:A2:DA:FF:4E:BF:9C:4A:01:CC:E7:68:EF
Authority key identifier: 0F:22:A0:EE:3B:C6:E3:2D:89:2E:DD:E2:57:CB:B7:99:17:9F:2C:D6
Certificate issuer: /CN=0f22a0ee3bc6e32d892edde257cbb799179f2cd6
Certificate serial: 0193549C1C45B8B4B70FB6653BAA04DFC5F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
Manifest number: 04DA
Signing time: Fri 22 Nov 2024 16:02:17 +0000
Manifest this update: Fri 22 Nov 2024 16:02:17 +0000
Manifest next update: Sat 23 Nov 2024 16:02:17 +0000
Files and hashes: 1: DyKg7jvG4y2JLt3iV8u3mRefLNY.crl (hash: 9ZALtMkaH1o81kdgSmMwO+6ekGleTA1tZa7IYfP3Xxw=)
2: M756CFoajzZ7V1XG1fTMzxvl25w.roa (hash: KJjH1GclAYagNm97oPho87bEuRKc9VfGaS4oX+NjnR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9c:1c:45:b8:b4:b7:0f:b6:65:3b:aa:04:df:c5:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f22a0ee3bc6e32d892edde257cbb799179f2cd6
Validity
Not Before: Nov 22 16:02:17 2024 GMT
Not After : Nov 23 16:02:17 2024 GMT
Subject: CN=5c720a8b5139eb3ea2daff4ebf9c4a01cce768ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:aa:fb:81:d3:44:f2:53:39:7b:40:0f:86:3a:
cf:9a:4f:9b:0c:00:ac:83:e0:e6:81:29:1c:3e:91:
74:fd:de:ba:3f:1b:55:0a:b0:34:91:6a:e5:ba:bf:
b9:0f:c8:7e:05:17:17:1a:6e:1a:f8:f6:f6:80:d0:
c9:22:0c:68:e5:0b:91:ab:f6:58:19:33:01:bd:6f:
02:1c:25:91:82:b1:43:b8:74:93:48:87:5e:6a:1e:
5c:ef:74:92:f2:45:82:11:dc:e2:ef:c4:d3:ea:23:
26:58:2a:b4:c4:f8:c3:76:f7:a3:16:61:79:a9:63:
f8:51:dc:d9:e6:55:c9:7e:78:3c:7a:5d:67:76:95:
d0:40:59:f6:cb:bc:7c:a9:5d:47:0c:b3:b4:7e:f2:
32:e7:ef:e8:df:b3:a1:ae:22:96:bb:f1:26:8f:68:
07:3e:86:37:dc:c9:5b:ef:c3:36:bd:ea:1f:c3:f2:
19:07:37:e1:13:cd:65:55:45:b0:c1:64:1e:f8:3c:
0a:a0:d7:b3:fe:68:2d:4d:99:0e:75:66:58:a5:ea:
31:85:c9:ff:55:c3:aa:8d:3c:e1:08:8d:2c:75:89:
0c:51:1e:95:05:ac:fb:d0:b1:c7:fb:9d:23:2b:bd:
4b:e9:b5:80:ca:b3:14:2a:d0:aa:e4:be:20:e6:39:
8a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:72:0A:8B:51:39:EB:3E:A2:DA:FF:4E:BF:9C:4A:01:CC:E7:68:EF
X509v3 Authority Key Identifier:
keyid:0F:22:A0:EE:3B:C6:E3:2D:89:2E:DD:E2:57:CB:B7:99:17:9F:2C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:d0:80:3d:f2:57:e1:0e:85:2c:2e:61:21:54:64:8c:34:47:
a9:e8:5b:04:2b:c2:d7:79:ab:90:c8:8b:5c:03:a8:10:3c:d5:
1a:bb:68:3b:85:0c:c1:dc:4d:8c:8d:bb:37:93:52:80:dc:d1:
4c:4e:78:a3:61:e7:6a:0e:bd:89:75:6f:38:86:e7:a3:fd:de:
03:83:c2:7a:84:86:30:c5:53:9b:87:63:d9:79:79:43:b1:57:
dd:38:b4:bb:3f:c3:03:fe:25:1d:dd:f9:cf:b3:75:09:c8:85:
35:39:d6:c5:14:e1:2b:54:87:4f:51:27:44:2f:0a:45:c3:ac:
93:ee:f0:50:83:2c:34:0b:10:10:b7:85:93:eb:d2:6e:61:48:
f3:53:10:b9:44:25:a8:3c:54:2a:1f:17:03:e5:b7:0c:46:6d:
9e:1a:1f:e6:43:77:13:28:5e:bb:83:33:43:e7:52:41:01:d0:
67:0e:82:ae:b5:df:3b:d0:39:7b:a8:fb:20:c4:42:09:d4:09:
bb:84:98:01:9e:d2:76:4c:18:6c:58:64:75:a6:52:1f:8f:47:
82:14:2f:d4:fa:2d:d2:9d:54:9b:24:d8:88:10:b1:9b:ca:f1:
fc:32:f4:87:e2:de:79:8a:ef:9a:78:f5:6a:ed:36:17:28:29:
09:0d:b7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:21:11 2024 by rpki-client on console-ams.rpki-client.org