Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
File: sxagaE0dOLrPQzjCsB2ztBNw60U.mft (raw, json)
Hash identifier: 76vLr6L1gNt/Jl0h9++2RXRHx8Z97VCjyNK0F3x2zBA=
Subject key identifier: B7:73:FE:36:7F:B0:D9:47:AB:20:69:31:CD:64:EF:14:C9:C0:C2:28
Authority key identifier: B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
Certificate issuer: /CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Certificate serial: 0191FB59FA3F83A7E2320F3539913D021D43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
Manifest number: 013B
Signing time: Mon 16 Sep 2024 15:01:03 +0000
Manifest this update: Mon 16 Sep 2024 15:01:03 +0000
Manifest next update: Tue 17 Sep 2024 15:01:03 +0000
Files and hashes: 1: Y717pl9BTJWAKJZV1BXpTchdGNQ.roa (hash: BhyofvsztgjGfLZRw//pE6fSaNKjZn/o1hkFW0q2nLk=)
2: sxagaE0dOLrPQzjCsB2ztBNw60U.crl (hash: p3rSbT0Z8Eko0SjwPGkXT+Qf+Dc7BaUC0R32418LO3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 14:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:59:fa:3f:83:a7:e2:32:0f:35:39:91:3d:02:1d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Validity
Not Before: Sep 16 15:01:03 2024 GMT
Not After : Sep 17 15:01:03 2024 GMT
Subject: CN=b773fe367fb0d947ab206931cd64ef14c9c0c228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:79:3e:1c:15:75:93:b0:16:12:4e:34:87:5f:
b9:76:0e:03:07:d9:62:61:6c:eb:44:8b:f0:f6:96:
cd:ff:98:78:a5:9a:27:dd:35:80:7a:ea:8d:89:09:
58:16:6c:21:77:6c:00:b5:ce:28:81:26:53:27:d5:
4e:89:f3:77:61:25:6c:f4:73:92:21:c0:7e:60:3f:
80:50:b3:85:30:1e:c5:b9:2b:39:ae:b4:a9:7a:d1:
7c:85:54:54:67:4a:6a:f4:a1:f4:5c:9f:0d:15:da:
28:8f:6a:53:00:d1:a0:9b:56:1d:c0:5b:da:26:03:
90:89:cb:4d:ec:63:aa:1e:a2:63:f4:f1:7e:92:5c:
a5:4e:eb:98:36:a2:4d:f0:5c:b8:60:6e:30:6a:e3:
2f:3b:a4:0a:7b:d5:31:4c:b3:96:cf:45:b0:5e:8b:
2a:c5:0e:83:f9:7b:d2:7e:aa:bc:41:bc:6b:71:80:
22:87:96:de:a9:e0:27:e9:d6:88:b4:cd:60:c1:bc:
8a:d4:f3:8f:9c:a4:c5:8e:3e:b3:4c:d6:54:c1:a8:
b8:5a:42:c3:af:a6:72:f6:f2:3f:f4:4c:26:4d:8b:
53:63:47:8f:96:78:e0:97:b3:9c:78:3f:55:e3:e4:
d3:c2:7a:75:39:e1:a3:85:3c:2d:7c:d6:c4:f6:71:
d1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:73:FE:36:7F:B0:D9:47:AB:20:69:31:CD:64:EF:14:C9:C0:C2:28
X509v3 Authority Key Identifier:
keyid:B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
df:7b:3c:bf:fe:ca:54:a8:00:da:17:68:62:65:e3:03:22:31:
63:a1:54:f4:fd:74:9b:43:b7:57:55:9c:dd:8c:cc:3e:e4:a7:
e9:21:1d:92:c0:8a:77:63:ab:90:67:b4:1f:d4:12:9f:da:18:
94:9c:e0:67:8d:5a:32:84:73:92:e3:80:02:18:d7:e7:0d:02:
1b:92:2c:ac:63:2c:63:98:de:99:59:47:49:d6:bd:d9:34:85:
ee:5c:80:18:72:70:ed:bf:07:98:09:da:2a:de:0e:26:95:cc:
83:49:75:87:d4:2d:9c:b5:19:64:8e:97:b9:34:f7:40:da:de:
47:08:17:5f:88:54:29:e8:6e:f1:22:eb:86:f3:72:a9:f4:7e:
57:b5:8d:15:5e:73:a8:01:0a:f2:4c:27:c3:4f:df:22:a6:6a:
c7:1c:e0:54:55:0c:65:02:6c:e8:f5:86:20:89:bd:28:19:63:
22:f5:b1:c7:48:e5:08:20:b4:cb:cc:80:f1:58:60:02:9c:ae:
48:0f:96:d6:26:62:36:4e:88:e9:fd:53:0d:e9:1a:84:ea:91:
ec:4f:cb:92:2d:bc:86:c4:90:b4:6f:f3:ba:1d:a2:d0:7e:70:
ea:1e:d3:ab:68:ef:ff:02:74:ea:68:1e:83:cd:49:a2:df:3e:
cc:69:d8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:33:20 2024 by rpki-client on console-ams.rpki-client.org