Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
File: tLC71kRVeO28e6a1v3ypNo0kF78.mft (raw, json)
Hash identifier: X1AZi22g1P2JsSAXxZIzJ5tPshmc6Au2a3OeOh/pv6s=
Subject key identifier: BA:CF:B3:D1:0B:33:1A:9D:F8:46:7E:0D:4F:F3:D8:E4:28:28:66:FA
Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Certificate serial: 0193587754DB8273114F3867A026B5EDB60D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
Manifest number: 09D4
Signing time: Sat 23 Nov 2024 10:00:35 +0000
Manifest this update: Sat 23 Nov 2024 10:00:35 +0000
Manifest next update: Sun 24 Nov 2024 10:00:35 +0000
Files and hashes: 1: 1-crK62LTeJejNPx2YtXDITsjqa0.roa (hash: FbnpOmSinW4wlfWcVBkjxTJTpjduzLFixryXzMS3yRI=)
2: tLC71kRVeO28e6a1v3ypNo0kF78.crl (hash: Ntbn8Jg3mi6dqjMtT1GUqSRCG7vBO9NHjVHvOTfNTro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:54:db:82:73:11:4f:38:67:a0:26:b5:ed:b6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Validity
Not Before: Nov 23 10:00:35 2024 GMT
Not After : Nov 24 10:00:35 2024 GMT
Subject: CN=bacfb3d10b331a9df8467e0d4ff3d8e4282866fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ea:1d:51:45:86:de:3d:4f:f3:7c:07:3f:71:
05:e9:3c:2f:5b:7a:cd:80:c3:51:7b:6b:f7:af:f2:
bb:1a:cb:58:36:31:6f:f5:bf:7b:4c:4f:76:7c:d3:
07:6f:eb:4b:ec:3e:15:af:f5:4d:67:65:93:53:44:
19:cc:1d:13:b9:14:cb:ad:28:ad:f0:3c:c0:ee:61:
63:77:73:68:01:68:d5:0d:a3:5b:23:63:11:14:3c:
63:a4:1d:ef:43:c3:de:44:fd:43:69:c1:65:8f:43:
ae:7f:96:a7:64:73:4f:a5:ee:20:6d:b8:31:3b:90:
31:a1:a5:82:65:a9:f4:71:f3:0d:3b:a5:42:f4:87:
41:f7:7e:82:5e:d6:e6:41:89:4d:dc:8b:ef:30:64:
6f:6e:e8:24:c5:8d:91:44:4d:9e:37:cc:14:cb:e3:
3b:43:5a:e2:eb:05:e5:68:ca:ab:98:98:e5:c5:1f:
74:c5:3a:d6:64:18:04:bf:d4:dc:ac:c8:b5:82:86:
39:53:a7:a0:c0:c8:5d:34:c7:0b:d0:1a:3e:49:d0:
a5:98:8f:19:bf:16:d6:cc:3e:6b:05:50:8c:e7:46:
44:4c:65:33:e1:21:6d:35:8e:c1:95:e3:94:5e:12:
1d:4c:1e:d8:45:d1:5f:88:7a:d1:70:19:db:3e:9b:
2e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CF:B3:D1:0B:33:1A:9D:F8:46:7E:0D:4F:F3:D8:E4:28:28:66:FA
X509v3 Authority Key Identifier:
keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:24:43:cd:f6:fd:71:e6:9a:d5:c4:f2:4f:38:6a:cb:09:6f:
13:23:09:db:5d:45:53:f7:93:53:17:36:dd:4d:99:48:5c:d1:
72:46:66:f8:d1:3b:91:5e:4b:bf:2e:69:cf:cf:db:c1:88:d4:
18:1b:dd:0c:3f:98:af:30:71:98:85:14:94:15:56:a4:9d:22:
e0:39:c5:7d:ba:d4:06:a9:89:2d:1b:af:d9:83:a3:3b:e7:49:
37:91:ee:2c:0b:bc:a7:c2:09:1d:5e:64:ff:a6:e1:82:15:5b:
04:07:34:35:e3:fa:ef:d5:c4:f6:6e:bd:ce:01:d4:16:9c:cf:
93:f7:03:77:18:88:cf:7e:f2:59:26:77:8d:01:aa:d8:e1:f2:
af:ea:49:aa:de:55:c3:23:be:fb:c5:85:93:ca:be:dd:9e:0c:
df:1b:e8:a3:63:82:40:41:5d:3f:01:e3:a0:28:cd:b9:84:eb:
8b:7d:58:eb:80:91:01:e4:cd:e1:bc:a0:be:0b:1b:d8:e2:24:
09:66:bd:e1:25:4f:db:11:4d:57:a2:f6:37:0c:e9:43:20:cd:
af:26:97:79:67:cd:c1:ac:37:a1:d7:97:d5:16:cb:55:8f:46:
b8:46:01:39:87:3d:7e:ce:99:0b:63:eb:91:9d:54:37:26:08:
cf:3b:c4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:13:11 2024 by rpki-client on console-ams.rpki-client.org