Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: MFpXsLZzBMm/QqA3kmXDte8cs6/veLq1MSIpqy9cn/4=
Subject key identifier: AC:9B:2D:5C:20:56:7F:30:B8:9E:55:3D:00:C2:74:79:BE:BC:AB:5E
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 01935575FA2B662800A80EDF41878B468C0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 137E
Signing time: Fri 22 Nov 2024 20:00:15 +0000
Manifest this update: Fri 22 Nov 2024 20:00:15 +0000
Manifest next update: Sat 23 Nov 2024 20:00:15 +0000
Files and hashes: 1: 8JSnL1o1krs-qUtA3GNg1Xi8Xx8.roa (hash: uTfkwIbsB+D6FuzfMxDGNLgbV8GH0uLFu2Avu2B5x8s=)
2: _eUDzg0RJwetAIsupsf57gkXNCU.roa (hash: erjN++9Ic/DEvenjdsgYjYt2ndx/BN7iu5pwXHRVU7g=)
3: jNNwfj4yCG6tAQvKNBKNyotT3Uc.roa (hash: YnWj2zXlzP2G3Zw5FE5Oh0YIdFiyicA2GGgtxLrY7lU=)
4: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: UjAPAAVwiW2yd3ZoAaQGQdlKzPlYkAkAUQrzvuWG+Cw=)
5: pMByhVGlYn4u1lExMrPNu_PGBQU.roa (hash: OdMgHyTNBXDp41oFTQ5iCHY5C5pmc7yo+39IsSuXs8c=)
6: qT9ZHUsdvNDY6AhehIeolu2i56Q.roa (hash: fr/udsajG/LLi4nVStLf/Q9khi42dVNvjizjsUc6t5c=)
7: rMOBAALq6tryvM_UQk2g2-ujM5o.roa (hash: K97ANRD1ak8zwmnhCg2CSlDKtJfFacavdBC/gQgNSEI=)
8: z-rObA3advC75JTZGeTb3FAxVrg.roa (hash: mRSOW7OAuxft7mV4y8tWKtl4aZcfp0rfmOwg5bDi3Uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:75:fa:2b:66:28:00:a8:0e:df:41:87:8b:46:8c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Nov 22 20:00:15 2024 GMT
Not After : Nov 23 20:00:15 2024 GMT
Subject: CN=ac9b2d5c20567f30b89e553d00c27479bebcab5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:81:43:a4:54:0e:d3:19:ff:19:e6:e4:48:0e:
97:97:2b:ad:db:92:bd:8b:08:4d:b8:b8:6b:c5:b8:
b7:b0:0b:6d:7e:30:d4:30:0b:e1:27:bf:f2:ef:98:
98:f4:a2:6b:86:ed:a8:ed:19:e8:fe:d7:69:29:13:
45:fb:20:d4:c4:48:17:db:8b:e8:5e:16:cb:be:cf:
73:f2:81:a9:e8:af:d2:a3:62:33:fc:ac:93:a3:a0:
dd:76:f2:86:63:32:8f:6e:7c:00:5b:c3:4b:71:17:
10:2b:4d:85:2f:db:1d:e4:f7:b9:82:96:5b:b8:31:
4b:b3:be:51:0f:1b:11:c6:43:20:27:bb:be:38:6f:
ce:f8:07:23:e6:5e:14:77:4e:6b:38:89:42:ad:08:
f5:ab:21:79:40:d6:4f:94:86:87:90:99:aa:e4:65:
65:aa:a2:00:4b:e5:b7:25:88:38:2e:fd:91:4a:6f:
c7:ce:7d:b3:ec:4b:32:24:b4:8a:7d:bf:c3:50:16:
dc:0a:50:ab:89:55:6f:d9:67:5f:b4:74:e9:23:52:
e8:c5:35:b0:9c:23:df:06:5a:7e:ba:49:5c:ed:f2:
77:4c:44:e5:43:dd:3c:7d:24:75:ca:a7:e7:b6:dc:
7e:f8:d3:fa:15:13:a7:d4:b0:3b:50:ef:3a:f0:2b:
84:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:9B:2D:5C:20:56:7F:30:B8:9E:55:3D:00:C2:74:79:BE:BC:AB:5E
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:df:02:81:82:16:f2:a2:00:e1:11:54:05:c5:50:80:ac:3f:
4c:bf:d6:2e:09:87:dd:28:c9:06:e1:99:e2:5c:38:c0:b2:58:
3a:df:0f:dd:3f:cc:fa:4c:54:c9:11:7f:33:ed:56:43:5e:f9:
71:8e:77:02:a5:29:ac:2a:e0:51:6a:3d:f3:6c:3e:9f:63:e6:
21:af:eb:55:5f:59:23:9f:d3:1b:cd:4c:9b:26:7d:ec:25:26:
26:34:67:b2:56:14:fe:53:6a:03:12:b0:44:31:48:3c:30:17:
80:25:8c:29:10:dd:23:d9:0b:56:9c:f4:f3:5a:11:36:c3:3f:
42:3f:7e:1e:f1:61:91:0b:6d:e3:2d:be:d8:ca:23:0b:e6:55:
b1:a2:54:41:40:b4:7b:be:b7:b2:b3:18:d8:b9:4f:f2:dc:55:
55:cd:86:80:0d:14:6b:2e:13:89:d6:82:81:ec:37:57:dd:d7:
23:8a:32:bd:b9:f8:53:1a:f3:ac:7e:45:61:c3:fb:c0:b2:73:
74:5d:00:49:76:e4:03:3a:ab:6e:f0:33:fc:fd:b8:87:7a:a2:
c2:02:b7:b5:78:f3:85:be:26:ec:5b:58:d3:4b:76:9f:a8:97:
dc:13:e3:8a:b1:24:2d:f8:f8:ed:cd:13:62:8a:57:e3:7d:cf:
e7:23:93:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:37:41 2024 by rpki-client on console-fra.rpki-client.org