Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: VbsPlWtye0d+re58uNi3blhV0iKGmx38shIdaZx+mbo=
Subject key identifier: 9A:8A:CA:F8:BC:9E:24:E3:71:E6:69:1B:36:1F:13:A1:85:F3:57:5F
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 01935878F73DC1EB6B65F198F26151B85933
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 070A
Signing time: Sat 23 Nov 2024 10:02:22 +0000
Manifest this update: Sat 23 Nov 2024 10:02:22 +0000
Manifest next update: Sun 24 Nov 2024 10:02:22 +0000
Files and hashes: 1: GIIn6gB4WGyrYi8kevc6logItv8.roa (hash: eSiKQ5MZghqoynGvXHrSXL8lZ1c2qiggIYyLtEJ6EOs=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: iGRdXpQ7C+VbujA5a0sOTqNOcgMHQ9cMijkqE89Dxj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:f7:3d:c1:eb:6b:65:f1:98:f2:61:51:b8:59:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Nov 23 10:02:22 2024 GMT
Not After : Nov 24 10:02:22 2024 GMT
Subject: CN=9a8acaf8bc9e24e371e6691b361f13a185f3575f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9c:5f:3f:17:eb:51:86:54:57:07:3f:63:2f:
2d:65:d1:c5:54:43:92:1d:2e:91:b6:98:0f:af:71:
f0:ce:a8:41:d2:19:20:57:ed:e2:49:4c:00:f8:74:
05:75:be:bf:4c:30:7c:62:48:20:1e:a0:c7:51:39:
6c:4a:34:d2:79:47:09:fd:94:e4:e4:28:1e:81:cd:
df:e4:07:90:ee:d7:92:f2:f4:b2:56:95:ad:35:77:
c2:6d:ce:80:14:6c:f0:46:26:40:1f:b9:86:e7:11:
50:4e:b0:a5:0b:70:f5:24:9f:be:f8:b9:aa:f5:a2:
11:74:95:eb:8a:22:80:0e:da:25:87:19:00:0e:1d:
a5:d1:8b:46:12:94:bc:18:0a:ce:d0:97:34:7c:91:
ef:e2:5d:7b:ca:dc:2f:ed:77:5c:6d:f8:ec:3d:2d:
aa:dc:7e:af:b9:07:36:a2:19:c2:f4:8d:1a:57:3f:
63:d1:4e:6e:18:f7:03:09:d9:ba:e1:9f:ce:6a:4d:
1c:13:2e:47:bd:d7:31:84:e4:58:dc:38:7b:07:17:
7e:f3:b3:e3:87:25:3c:b6:3c:cf:f2:b5:6b:87:77:
46:3f:4c:b8:05:7d:9d:39:c7:f4:06:f6:1b:04:1d:
c3:70:ce:61:19:b8:27:20:fc:94:67:be:e1:5d:58:
13:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:8A:CA:F8:BC:9E:24:E3:71:E6:69:1B:36:1F:13:A1:85:F3:57:5F
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:1d:a5:d2:61:4f:fb:7b:38:79:ac:b4:a3:9e:41:9d:6d:38:
63:29:29:5e:66:f6:2d:34:e9:94:51:3f:b8:95:8d:8d:25:5b:
9c:ce:52:a6:ba:7c:0b:ac:06:c8:76:59:2b:5c:fb:be:98:57:
05:5f:58:ff:82:93:6f:e6:48:78:b5:a9:e1:7f:1f:ef:c3:45:
c5:65:e0:d1:dd:b5:b5:8d:e0:66:e3:ac:62:4a:d9:51:7d:ba:
6d:19:d4:02:f3:43:af:60:ea:e6:64:68:92:e4:97:dd:2a:10:
9e:1c:19:a9:9b:2c:b9:53:10:d9:0a:94:4d:a7:34:8d:fe:26:
12:85:c2:80:2d:47:3e:f0:40:5f:b9:ac:2b:4e:61:97:d5:66:
d4:df:fa:19:75:22:9d:22:25:c1:30:ca:25:0b:b3:c4:40:37:
c9:ac:c2:0c:a8:94:7e:ac:72:43:62:ca:93:1b:ff:3e:b2:af:
26:c3:c6:92:3d:ab:62:0f:48:bf:1e:d7:8a:46:ae:b7:05:8d:
46:9c:50:7b:0c:f0:ab:94:fe:4c:30:80:20:14:6b:30:f1:fb:
9c:c6:9b:74:6c:8b:51:d3:48:ba:69:0b:2c:cf:c1:ff:4c:7e:
e8:cb:99:0f:8e:43:66:bd:64:4d:ae:69:c4:67:5a:2e:1c:74:
c1:a1:60:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:04:27 2024 by rpki-client on console-fra.rpki-client.org