Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
File: CgIUob8dOv0t1msjqZcxBrXTFso.mft (raw, json)
Hash identifier: NIg/zcY9vLBQT8pNjOapAcH4md3xIS+BgGjvf8o0p5Q=
Subject key identifier: 7B:93:3B:A0:C4:EB:3B:9E:0C:8E:09:E0:27:DE:D7:C5:D3:02:E2:65
Authority key identifier: 0A:02:14:A1:BF:1D:3A:FD:2D:D6:6B:23:A9:97:31:06:B5:D3:16:CA
Certificate issuer: /CN=0a0214a1bf1d3afd2dd66b23a9973106b5d316ca
Certificate serial: 019352ADCFB4A2454C79F035A02089027FF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
Manifest number: 0E50
Signing time: Fri 22 Nov 2024 07:02:22 +0000
Manifest this update: Fri 22 Nov 2024 07:02:22 +0000
Manifest next update: Sat 23 Nov 2024 07:02:22 +0000
Files and hashes: 1: 3b14DR1J9u8tpc8Fn7bytJ5P0_M.roa (hash: h5hPwqu0mfSalpodW6J/oz+2ZrLRL5DP0X5TxMWOzck=)
2: CgIUob8dOv0t1msjqZcxBrXTFso.crl (hash: BG9CWnn/6qoq1qJRzekSyKSzSW2Kj56kRBu/TvvsfAg=)
3: U5dmkgQ-q2Eg8iJB2CpuDNnc3i8.roa (hash: Sif7eYaVBLP2WcOTNq5mDmNlfWQjNAQKKOsiC1wPico=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ad:cf:b4:a2:45:4c:79:f0:35:a0:20:89:02:7f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a0214a1bf1d3afd2dd66b23a9973106b5d316ca
Validity
Not Before: Nov 22 07:02:22 2024 GMT
Not After : Nov 23 07:02:22 2024 GMT
Subject: CN=7b933ba0c4eb3b9e0c8e09e027ded7c5d302e265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3c:fe:2e:36:6a:63:b2:78:55:a3:82:15:7d:
c5:76:dc:4e:a7:1b:02:f3:b5:58:64:f0:5f:ea:2e:
eb:82:b5:17:0e:55:fb:f7:22:cc:57:f9:ab:dc:53:
a0:f3:07:86:a0:e7:aa:d9:0d:01:a0:2b:3f:ce:e7:
98:47:f1:c8:6b:ce:2d:2f:5b:5c:4a:96:6f:f0:81:
62:10:8a:f1:23:59:d1:c2:a1:22:b6:4c:c4:31:e6:
0e:5a:bf:cb:90:b4:25:3a:3a:28:87:a8:42:bc:7a:
05:d5:8f:af:5c:e6:1a:90:2b:92:b5:8b:32:22:7c:
0f:56:ae:5c:ba:af:85:64:80:98:07:1b:32:e4:17:
57:36:6d:84:fa:a1:d3:33:3e:01:b4:bd:33:4b:30:
e0:a5:1d:36:2e:1b:b6:6e:14:57:81:34:25:c8:57:
92:75:cc:70:ea:5a:f6:0d:96:b1:fa:5f:5f:6b:ad:
22:99:9b:15:93:70:cd:a0:75:d9:f1:62:73:85:5b:
56:44:e7:14:41:4a:b1:1c:88:76:68:68:87:f7:70:
0e:71:3a:96:66:7e:71:4e:57:15:d5:80:56:01:c8:
f0:6a:54:e8:e6:b5:23:15:8b:59:26:b2:03:50:75:
da:1d:91:06:d8:ab:dc:4c:8d:99:c2:51:79:ce:48:
d9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:93:3B:A0:C4:EB:3B:9E:0C:8E:09:E0:27:DE:D7:C5:D3:02:E2:65
X509v3 Authority Key Identifier:
keyid:0A:02:14:A1:BF:1D:3A:FD:2D:D6:6B:23:A9:97:31:06:B5:D3:16:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:64:f3:14:1b:b5:ae:04:d0:01:78:80:6f:ce:c4:7c:5e:46:
4a:f3:dd:aa:e6:c7:6b:6e:98:9a:65:bc:78:32:95:29:5a:ac:
0a:59:0f:fd:22:d6:d7:1b:fe:b9:60:dc:f3:46:02:a6:1b:ef:
8c:78:db:ff:1a:c0:55:83:5b:24:3b:01:fc:3a:f0:66:ee:a7:
03:51:64:91:85:73:81:29:6f:39:2e:8b:cf:50:bf:63:42:29:
02:4b:82:27:b7:06:86:39:9a:ad:69:b2:27:9c:3c:53:ae:e5:
fc:32:0f:b2:7a:96:8d:a2:7a:38:3d:df:ac:8e:0e:df:0f:56:
f5:c6:2d:6d:8c:01:e9:19:90:ad:3a:93:87:21:a8:c9:f3:62:
1c:cc:af:a2:44:08:fc:39:71:99:16:2e:7b:0b:2e:e0:ed:f5:
2e:3b:a2:df:ff:31:44:8e:4f:34:9d:f9:2e:b6:42:11:64:2a:
71:36:df:be:ae:85:72:59:e4:5e:20:e6:7c:b1:7d:f7:02:5f:
d4:43:13:78:f7:1a:ad:8a:2b:54:7f:30:3b:39:68:ec:6c:f6:
9f:67:9d:ad:68:8c:65:e2:7e:18:11:67:37:23:9d:2a:5e:da:
2b:ba:44:bb:fa:18:81:0f:b4:a1:59:75:18:c1:dd:31:3a:ee:
75:c6:a1:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:08 2024 by rpki-client on console-ams.rpki-client.org