Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
File: 2iTzVyHKMag-L26TfhdAjm57LGE.mft (raw, json)
Hash identifier: uFQwlZGrpfMfom/1G0Pu5RnU8rrDEq/7lPP8bHoN9Lk=
Subject key identifier: 0D:7B:F2:9E:A8:26:DB:92:3D:8C:C8:A2:10:5F:D9:8D:A3:C6:3B:08
Authority key identifier: DA:24:F3:57:21:CA:31:A8:3E:2F:6E:93:7E:17:40:8E:6E:7B:2C:61
Certificate issuer: /CN=da24f35721ca31a83e2f6e937e17408e6e7b2c61
Certificate serial: 019406474823F2EC7A726CACB6E521E55078
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
Manifest number: 13CF
Signing time: Fri 27 Dec 2024 04:02:02 +0000
Manifest this update: Fri 27 Dec 2024 04:02:02 +0000
Manifest next update: Sat 28 Dec 2024 04:02:02 +0000
Files and hashes: 1: 2iTzVyHKMag-L26TfhdAjm57LGE.crl (hash: mraUDhkzEesOAwExXCISbRt6aE/710kzbKvyhkuqlfE=)
2: NXAeb9IWUwyD7uJoDFhdlItryvQ.roa (hash: wnXj0dBxbPaa8Mn1Jw3F82zVQWHyblMHNktXthU6r5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:47:48:23:f2:ec:7a:72:6c:ac:b6:e5:21:e5:50:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da24f35721ca31a83e2f6e937e17408e6e7b2c61
Validity
Not Before: Dec 27 04:02:02 2024 GMT
Not After : Dec 28 04:02:02 2024 GMT
Subject: CN=0d7bf29ea826db923d8cc8a2105fd98da3c63b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:85:bb:5e:65:e6:e0:95:a8:5c:ae:d9:34:f6:
74:73:60:66:06:f7:e7:22:34:af:79:ee:e2:53:58:
bf:b4:35:53:e9:16:f9:fd:9f:b0:88:5c:f0:d8:6d:
43:3a:4f:02:03:5d:7e:03:47:bd:59:b1:54:d4:03:
b8:bd:e3:81:17:8b:47:2d:64:1d:31:b6:b8:83:84:
6c:63:f2:ea:82:92:b9:55:e9:be:40:3c:b6:7e:a0:
be:64:48:16:da:f7:ab:d7:c5:0f:e5:87:5b:2a:84:
cb:6a:d4:e6:1e:60:02:50:ab:c3:74:99:7a:43:54:
f1:e2:92:64:25:85:c4:60:a8:31:95:b4:34:02:b8:
bf:3e:1d:e5:22:70:f9:62:65:5b:91:ab:11:11:9f:
12:22:d0:f0:6b:57:a2:fd:48:39:b9:e3:17:49:be:
c1:3e:f7:6f:74:26:43:aa:5b:8c:45:48:bc:6b:1c:
1e:54:54:a3:c8:af:cb:a7:c1:53:f8:a6:b7:9d:0c:
08:b6:ea:41:ae:2a:5c:fd:50:d1:9c:60:b2:a3:2f:
ad:ea:1f:cb:3f:eb:d0:01:1f:b3:5c:1d:e9:8c:9f:
86:78:0c:eb:0c:a8:32:e2:58:d3:af:4c:1f:d2:30:
cd:09:09:57:e0:1a:64:fa:5d:2a:6a:4f:85:5f:12:
65:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:7B:F2:9E:A8:26:DB:92:3D:8C:C8:A2:10:5F:D9:8D:A3:C6:3B:08
X509v3 Authority Key Identifier:
keyid:DA:24:F3:57:21:CA:31:A8:3E:2F:6E:93:7E:17:40:8E:6E:7B:2C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:c1:76:a7:dc:60:5f:e3:3a:0d:72:d0:17:46:66:c5:f4:fe:
bf:18:35:b8:a7:5c:bf:1d:46:e9:1b:49:4b:b2:17:d8:b7:d2:
8e:e1:e1:c1:f4:50:41:a4:d3:9b:da:ea:41:4a:fc:bd:0d:ce:
fe:34:9e:15:8c:4f:e0:33:89:f0:29:4b:cc:64:20:ce:87:d9:
e8:9f:b3:fe:22:be:8e:37:29:d2:77:5e:02:29:8f:81:66:9d:
3e:b9:ae:4a:3a:75:4f:d8:29:f1:d2:7b:11:78:4a:fd:93:b4:
fa:f0:5e:42:90:2b:7a:0a:4f:1b:fe:29:29:de:c3:e4:7d:1e:
43:43:8c:26:0d:b1:f2:5d:85:fc:21:77:a9:b4:e0:c5:3c:51:
f6:e3:f9:22:f1:3b:e2:25:6e:9e:80:0b:a7:ba:92:95:b7:00:
4b:98:e1:1e:f2:89:4c:0a:09:0c:51:e8:53:68:75:80:7b:8c:
cc:7c:00:99:da:53:d0:06:e2:71:8d:21:9d:37:11:52:d2:a0:
a5:65:11:12:e0:7a:8a:da:e9:47:35:aa:04:33:18:9c:d2:b1:
5a:ea:f3:4f:16:a2:c2:cf:39:46:86:6d:06:e8:7b:4b:0f:ab:
b9:dd:b0:ac:32:3a:19:99:88:70:4f:54:00:3c:f0:10:32:3d:
67:da:15:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:01:55 2024 by rpki-client on console-ams.rpki-client.org