Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
File: sxagaE0dOLrPQzjCsB2ztBNw60U.mft (raw, json)
Hash identifier: yJHDwMGYFHWTj8xcDQq35xjHCiP7ogXSY3z5RJnxqdg=
Subject key identifier: D3:3E:F5:B7:C2:11:B3:1B:D3:42:26:74:32:4F:C9:A6:96:3F:4E:C5
Authority key identifier: B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
Certificate issuer: /CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Certificate serial: 019356F7155084070C4D0B526FACD785FDC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
Manifest number: 01EF
Signing time: Sat 23 Nov 2024 03:00:53 +0000
Manifest this update: Sat 23 Nov 2024 03:00:53 +0000
Manifest next update: Sun 24 Nov 2024 03:00:53 +0000
Files and hashes: 1: Y717pl9BTJWAKJZV1BXpTchdGNQ.roa (hash: BhyofvsztgjGfLZRw//pE6fSaNKjZn/o1hkFW0q2nLk=)
2: sxagaE0dOLrPQzjCsB2ztBNw60U.crl (hash: hiyJ83b1maYWprc1utBRaRZYSV3S/Y7YPG1meEnbmu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f7:15:50:84:07:0c:4d:0b:52:6f:ac:d7:85:fd:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Validity
Not Before: Nov 23 03:00:53 2024 GMT
Not After : Nov 24 03:00:53 2024 GMT
Subject: CN=d33ef5b7c211b31bd3422674324fc9a6963f4ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bc:65:36:af:49:89:40:4c:b6:96:d0:ed:87:
82:68:91:3e:a5:be:66:8f:89:2a:e9:51:2d:78:b6:
64:65:90:ed:bc:25:1f:8e:a7:c4:dc:7f:b3:2f:9a:
84:d0:b4:6f:47:9e:93:ba:7c:8a:a4:0c:ae:4a:9b:
37:35:b6:3a:74:ec:ce:17:d1:3a:be:9d:72:bb:ba:
06:e7:28:42:5a:83:55:b5:6f:8a:8e:5c:7a:eb:49:
14:87:dc:3e:87:4e:2d:13:5c:c4:61:c2:e3:5c:13:
62:72:3e:0e:5f:3d:04:be:b1:98:99:95:cd:a3:b9:
2b:6e:93:bf:11:75:0d:51:54:93:f5:57:12:17:2a:
3a:2e:b7:88:7a:3b:d1:19:38:aa:b6:63:02:f9:7c:
20:42:0d:7a:19:ff:c8:09:8b:f8:4d:c7:44:2a:f2:
bd:54:fb:69:c6:df:01:a3:79:d8:47:0a:eb:5b:cc:
58:8f:09:d1:bf:1b:52:fd:d3:47:64:3c:3c:a1:b9:
cf:8a:8f:5e:88:57:dd:63:ac:15:73:16:3f:b3:0d:
25:cd:b5:2a:c0:c1:6f:47:28:d4:ca:dd:81:d6:e5:
1a:d0:ca:e2:32:3b:60:95:a3:ae:14:05:e2:8c:e9:
9a:5e:c1:b7:8d:41:9b:8e:89:46:8d:1c:38:07:e2:
60:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3E:F5:B7:C2:11:B3:1B:D3:42:26:74:32:4F:C9:A6:96:3F:4E:C5
X509v3 Authority Key Identifier:
keyid:B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:8e:af:66:75:9a:b2:be:15:b4:53:72:2a:3b:60:3e:65:b0:
54:8e:d0:23:27:f3:b7:ae:01:a2:4a:d5:5f:9a:bd:f4:f4:50:
55:bb:fb:f4:66:d6:ef:04:a8:d6:02:37:d7:fe:29:bf:dc:24:
e2:ba:dc:87:ca:94:db:52:cb:ed:73:c9:87:55:b9:7a:a8:ed:
f6:63:66:d1:d3:28:32:77:d2:d9:83:af:2a:15:88:75:e2:31:
c6:f1:df:63:cf:cd:42:73:29:e7:70:f1:f0:a7:d2:5b:f7:a9:
35:1a:8e:aa:44:57:ae:0a:46:22:e4:6e:0a:1c:6d:7d:62:48:
1c:a9:d4:85:ec:53:cf:47:fa:2b:3a:ba:0d:5d:53:f4:5c:78:
82:55:1b:cd:bf:75:c5:3d:57:8d:4d:60:7d:63:6b:25:96:87:
49:e6:27:c6:9b:45:3d:d4:cc:6f:fe:8d:8f:4e:4a:69:44:43:
dc:fb:f2:ad:14:8d:1c:af:23:d0:e5:19:d5:c7:e8:4f:24:bc:
3e:75:99:5a:70:5e:d0:d5:e9:2e:49:6f:38:72:39:34:f6:6a:
a6:db:9b:86:5f:1c:6a:85:4e:84:d0:2d:da:fc:02:07:8c:22:
d9:79:72:e7:15:2b:70:a6:3c:0b:be:e8:b9:e8:a3:ad:56:eb:
0f:4c:48:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:13:37 2024 by rpki-client on console-fra.rpki-client.org