Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
File: IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft (raw, json)
Hash identifier: xFpAhAd23+r3jseInwd/Fk+UEu3qxZ4U9If8DgGKf3M=
Subject key identifier: 02:57:B2:41:AC:D8:EF:E4:36:43:49:E3:FD:43:B2:41:7F:BA:05:8D
Authority key identifier: 21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
Certificate issuer: /CN=2101b6388d6435f54990905382b41dc9675fd490
Certificate serial: 0193557627C0F962DA4AECDC3B8010B80ECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
Manifest number: 0200
Signing time: Fri 22 Nov 2024 20:00:26 +0000
Manifest this update: Fri 22 Nov 2024 20:00:26 +0000
Manifest next update: Sat 23 Nov 2024 20:00:26 +0000
Files and hashes: 1: 8s3dvDOpKfKvysldwSVNhlHHXQ4.roa (hash: juhFAO3xvhev7E4Eo7gSkAfpubSKRHb6ORQ71ihMHf0=)
2: DlYq05wytPP026tbGQaRWPlCYbI.roa (hash: BSSoaJix6Z5XPsODi88fEh5BOANuu1KrzHVQ2eeS1Io=)
3: IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl (hash: iTtZLEJiGsD76ZC7nxoYl912ewsZrwWbLsXKFrPm9P4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:76:27:c0:f9:62:da:4a:ec:dc:3b:80:10:b8:0e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101b6388d6435f54990905382b41dc9675fd490
Validity
Not Before: Nov 22 20:00:26 2024 GMT
Not After : Nov 23 20:00:26 2024 GMT
Subject: CN=0257b241acd8efe4364349e3fd43b2417fba058d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b6:fd:bf:d2:42:79:11:59:0a:0b:97:ae:c0:
c3:11:98:b9:7e:f5:36:c7:c6:34:8a:58:1c:7b:67:
a5:6e:fe:bc:e1:5e:4f:2b:0b:fe:d9:24:96:77:d2:
8d:0b:61:7b:6b:19:0c:5e:0a:02:10:0e:e1:0e:ba:
ac:8b:cc:df:7a:20:7f:3b:ca:82:54:8e:79:85:b0:
2b:56:f2:93:5a:cd:92:69:d2:19:16:7a:3c:b1:04:
88:74:33:b4:fa:65:6b:a6:6c:ed:39:ce:26:26:95:
01:59:03:bb:3e:1b:ce:90:e1:81:ba:02:1e:13:68:
31:96:f9:bb:c7:db:5d:6e:72:38:0d:af:93:ca:13:
4a:86:22:b8:68:29:c2:95:43:19:91:7f:2c:55:47:
e7:83:af:4b:31:2d:94:b7:68:00:2a:ce:fc:47:c8:
f5:8b:51:81:13:04:05:42:77:ad:c2:d2:a7:3b:4b:
98:ef:ff:e2:a9:8b:e2:d0:08:0b:16:e4:f7:0b:b0:
87:22:a9:ed:5c:01:c1:dc:3d:da:37:fa:f6:82:b0:
9a:bf:3a:d9:98:5a:06:d0:14:22:09:69:ee:3f:90:
b9:ff:a1:86:69:e4:34:7d:5b:23:12:c7:ca:77:49:
01:ea:42:26:69:87:18:a0:15:43:85:56:e6:43:e1:
c2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:57:B2:41:AC:D8:EF:E4:36:43:49:E3:FD:43:B2:41:7F:BA:05:8D
X509v3 Authority Key Identifier:
keyid:21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:a5:44:c3:59:c1:d0:1f:f4:9c:43:79:2b:74:50:92:9c:d9:
51:fb:d3:a7:00:24:b4:1d:e2:42:f4:79:94:01:ac:e8:61:8c:
ae:a2:e2:3b:4b:3f:0d:2d:32:b0:0e:53:8d:c3:87:7a:7f:d9:
f1:60:c8:56:35:16:12:ec:64:1b:22:7d:74:89:ac:51:87:87:
2d:4e:f6:bf:f6:45:5a:0f:c1:af:be:a7:b2:b3:d3:3d:99:2a:
2e:3a:8b:c3:eb:0c:4c:cd:1f:0a:c8:dc:f5:68:40:02:44:0c:
34:6d:76:36:66:3b:07:4f:b3:f0:f0:77:8d:fc:9e:4d:dc:c7:
75:c8:46:c0:f4:12:68:cf:48:c8:5d:f1:83:6a:71:06:ef:ee:
09:d7:65:0a:47:4d:f2:40:28:c9:07:dc:82:3b:4d:a5:5e:73:
be:c4:26:26:fd:68:1e:ba:32:fd:eb:61:e5:af:f3:d1:20:73:
24:9c:ad:2f:c9:e2:e2:4b:a9:dd:e7:92:35:05:36:75:1f:ab:
7a:92:2c:8b:fd:3f:43:dc:52:ae:bc:f6:e6:e8:58:f4:f3:da:
cc:ff:9e:ee:13:12:bf:bf:e8:d1:df:4f:cf:6e:03:e1:57:f8:
68:ff:61:8b:05:c6:da:68:d6:d4:28:fb:e0:89:bd:db:90:e8:
25:85:53:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:22:33 2024 by rpki-client on console-ams.rpki-client.org