Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json)
Hash identifier: yOIrZRJTJNmwdp8bhKtVN9fPcDS6iV8sqmlbDsjPFE4=
Subject key identifier: 16:2A:50:2C:ED:8E:B8:25:B2:40:35:02:B4:D4:45:E2:AD:40:F1:46
Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Certificate serial: 01935689184A57B7B344BF472E0F3D002C31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 01:00:45 +0000
Manifest this update: Sat 23 Nov 2024 01:00:45 +0000
Manifest next update: Sun 24 Nov 2024 01:00:45 +0000
Files and hashes: 1: IjezXCFAn1MVflvOCKrv9Gq9ttk.roa (hash: Sf1Lr7IW0S9n24sCOm8gb9hfbHcsLw35GWcYNpfz8WU=)
2: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: 0u+0QhGXdvBLiMfJCa0Gf8CUkMpgiiCms07Sq5RDVIU=)
3: rDM520aTTlf7RtdU9N1mL3iav9w.roa (hash: zbpBBtgx4yndLzOS4TZX/Es285c+OAH1HuwRS/InNLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:18:4a:57:b7:b3:44:bf:47:2e:0f:3d:00:2c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Validity
Not Before: Nov 23 01:00:45 2024 GMT
Not After : Nov 24 01:00:45 2024 GMT
Subject: CN=162a502ced8eb825b2403502b4d445e2ad40f146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8c:82:8d:c4:28:63:a5:54:d4:f5:7d:68:cb:
c7:cd:43:f8:7c:ed:b1:ac:86:2d:af:09:fc:dc:79:
b8:0c:fb:fa:94:4d:53:be:8f:1e:36:4c:db:0e:1e:
48:f7:89:9c:4f:0e:e3:52:a2:45:c5:d7:c4:77:6a:
6b:fd:03:cb:45:42:8f:de:27:4c:a9:33:2e:60:dd:
d1:63:99:3c:39:89:70:b8:f7:4e:22:23:07:58:73:
d3:33:70:a0:df:60:91:74:ce:41:3d:78:7d:66:20:
e0:f5:e7:f4:7d:9c:65:af:d7:65:8e:e0:29:63:85:
d6:dc:82:4c:53:18:5d:b4:d9:ee:32:e7:6b:22:ee:
ae:e6:1c:b6:72:ec:07:ff:33:8c:e6:fb:7a:30:f0:
5b:16:d3:d9:4f:a8:bd:68:82:e7:ac:8d:f4:67:0e:
e4:c4:07:e4:c6:52:27:e7:04:15:88:94:eb:1a:77:
75:de:e8:ad:a8:55:42:39:d7:f5:0b:d8:97:2c:aa:
ba:39:ab:ab:6c:35:01:05:f9:b5:52:89:68:c8:c6:
fc:41:5d:ec:8e:80:43:6e:86:31:89:3b:db:eb:7c:
8d:1b:68:a9:94:2d:25:d9:1b:a4:a4:60:19:99:f1:
2a:10:f2:0f:2f:48:1d:59:1d:c6:7c:13:a8:f6:99:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2A:50:2C:ED:8E:B8:25:B2:40:35:02:B4:D4:45:E2:AD:40:F1:46
X509v3 Authority Key Identifier:
keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:ab:65:13:df:4a:fb:f9:d9:04:4c:68:80:1f:88:79:53:00:
c9:59:76:c0:47:2d:2b:55:e9:99:3a:ff:16:4c:44:2b:2e:0e:
54:0c:a2:77:5c:10:d4:7e:68:41:81:b6:50:d3:82:ce:59:d0:
57:8e:20:12:00:0e:25:f3:29:7a:d2:ed:11:f3:ea:9d:90:02:
b3:3a:20:2b:05:af:8e:00:bd:fa:05:69:e8:2c:6a:26:2a:d2:
ad:d8:a4:27:c4:9a:5e:0d:79:28:29:55:67:9d:76:e4:46:f9:
67:e8:0b:7a:90:9d:77:77:57:ea:87:9e:c4:95:79:28:8d:b3:
25:cd:c8:cf:7b:41:a4:5e:11:54:0e:41:4e:05:bf:6c:03:c8:
66:a6:fc:53:3f:b1:0d:86:eb:22:fa:d3:50:1c:6a:ca:48:0d:
b3:0b:62:03:2a:7f:02:01:33:41:dd:ed:3d:bd:06:14:cd:55:
97:f2:6e:ad:67:02:14:4a:f1:d4:a0:a1:c0:73:34:48:2e:d7:
36:10:47:4c:f4:ef:24:f3:a9:7f:f9:4f:15:93:de:c4:b3:82:
11:62:32:49:f9:db:5f:d9:97:fe:d3:cd:71:af:22:a3:d6:0b:
0f:0e:38:7f:45:6a:0a:23:b1:59:bf:5f:fc:41:c1:33:4d:58:
d2:85:6a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:37:09 2024 by rpki-client on console-fra.rpki-client.org