Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
File: ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft (raw, json)
Hash identifier: EjPXF7SpryR4B+QhZu5JcXLjfuoea8TFeJ7gaOO3Nec=
Subject key identifier: 5C:53:11:41:39:56:0C:9B:A4:46:28:36:6F:3B:2E:7C:89:01:2E:0F
Authority key identifier: 65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
Certificate issuer: /CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Certificate serial: 019356F66CA5270C5B26F139B18F5D791EC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 03:00:10 +0000
Manifest this update: Sat 23 Nov 2024 03:00:10 +0000
Manifest next update: Sun 24 Nov 2024 03:00:10 +0000
Files and hashes: 1: OE-QvMqfDtOQdJSHeNiyZNJTG3Y.roa (hash: 9xkVuhOTECdI/SfwwadxNCyZ5d/tJeS0p+MthGXY/+8=)
2: ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl (hash: bbEAYhhR5xam3lWvuOske3xN7pd6R7pVArpCRVaWCh0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:6c:a5:27:0c:5b:26:f1:39:b1:8f:5d:79:1e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Validity
Not Before: Nov 23 03:00:10 2024 GMT
Not After : Nov 24 03:00:10 2024 GMT
Subject: CN=5c53114139560c9ba44628366f3b2e7c89012e0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:33:71:ef:53:42:ee:14:3d:c6:52:2b:83:73:
30:2e:66:01:0d:11:4c:a1:3b:c3:fe:d2:51:cd:3a:
d8:82:f9:c9:f2:68:6a:69:10:c0:c3:80:2a:06:50:
e3:1a:e7:49:d2:b5:f5:35:7f:e4:aa:0c:39:3b:69:
c0:3d:c0:e9:9b:d1:73:b4:18:01:ac:a0:84:82:22:
9a:be:8d:37:13:fd:42:9b:fd:51:d3:76:86:80:65:
49:62:66:a1:b0:5d:ae:44:a6:db:86:83:26:39:6a:
d6:f5:d8:eb:ce:dc:af:b4:bc:0e:54:33:52:a5:da:
42:d4:1c:8a:1f:d0:ee:50:19:6f:8b:7f:d5:da:72:
ff:ba:c1:c1:80:6e:5f:e1:00:65:d2:c3:88:ef:b3:
24:4e:33:d2:b0:5f:69:18:c5:a6:47:b0:8e:98:9c:
4e:16:78:05:78:90:6c:32:5e:29:ec:f9:80:87:05:
20:7d:83:ea:d4:f8:a0:56:af:27:bb:8a:5b:d2:6a:
3a:bb:e7:f6:fa:7e:6c:fa:31:90:ab:ba:df:15:d2:
b8:eb:db:1f:5f:a3:e6:2c:a8:dc:ba:8d:a2:bf:77:
f9:c0:1f:26:c4:9c:0a:c1:1a:e4:dd:c0:91:03:4e:
bf:70:4e:da:0f:50:65:3b:c2:ac:ac:85:94:1a:16:
66:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:53:11:41:39:56:0C:9B:A4:46:28:36:6F:3B:2E:7C:89:01:2E:0F
X509v3 Authority Key Identifier:
keyid:65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:87:a2:3d:d0:34:ae:24:38:a4:95:fb:f3:91:86:ef:1c:5d:
fc:49:ed:88:9a:81:c1:71:67:18:0e:e3:3c:2b:e1:c1:0a:22:
d8:e7:fc:85:45:d2:49:ad:12:42:3b:1e:58:3c:3b:26:f6:27:
ff:64:9e:86:50:24:86:03:67:63:0b:be:d3:b4:a5:c0:fc:11:
1b:fd:74:ca:3f:4e:76:45:e6:0c:92:50:96:8b:ae:ee:e5:2d:
33:90:bc:35:22:7a:d7:2d:d5:ef:07:bf:d5:5a:4d:c3:8c:e4:
77:2d:51:6d:87:a6:9f:e1:91:5d:d4:79:fc:1a:86:00:40:65:
a7:e6:55:0d:95:81:fd:7c:e5:04:b8:7c:bb:e2:f5:80:5a:dc:
9e:2f:50:9a:b9:31:f6:c7:b8:73:43:e1:a6:d7:59:a2:0e:a7:
2e:10:5b:5d:1a:03:be:22:01:6b:a6:17:ad:f7:c3:bb:ba:7e:
be:f8:84:55:ba:28:c5:fa:8d:23:c9:c6:47:70:4d:19:d1:13:
d4:50:99:ed:cc:6f:86:58:2c:75:96:42:5c:27:24:a3:77:18:
6f:f7:9b:89:a1:3a:6e:1e:10:7b:f1:ee:0a:94:8f:61:ab:b0:
dc:15:eb:40:78:00:ed:ce:94:81:cd:e7:9c:7e:e1:d8:ce:0d:
a4:f0:e9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:13:44 2024 by rpki-client on console-fra.rpki-client.org