Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: EPA9oQy8087/1qOunnO8DB+TX0ORYQdTROKVr0yvRFA=
Subject key identifier: 66:CD:E3:5B:07:F3:91:4D:F2:A8:DF:AF:EF:A4:01:41:57:D7:28:B5
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 01935878F9578178ED2BEC94A8CB65CEEEF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 0B85
Signing time: Sat 23 Nov 2024 10:02:23 +0000
Manifest this update: Sat 23 Nov 2024 10:02:23 +0000
Manifest next update: Sun 24 Nov 2024 10:02:23 +0000
Files and hashes: 1: 4P2Gq5UJz1BpP53RNgSrID73Rv8.roa (hash: CxxuQfr3Q7JiKJmYD+10OwONSIo1mDGcV/plyzKA+xc=)
2: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: dbol4bQEnNHb2+b23fAaYCd7JnjZ0XoXxmU1bH4VWk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:f9:57:81:78:ed:2b:ec:94:a8:cb:65:ce:ee:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Nov 23 10:02:23 2024 GMT
Not After : Nov 24 10:02:23 2024 GMT
Subject: CN=66cde35b07f3914df2a8dfafefa4014157d728b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:39:a7:3e:f1:5e:15:11:f2:a7:f5:00:8f:8a:
53:3b:1d:08:30:ab:a0:dd:33:67:e7:f1:8a:ea:90:
f9:51:04:ff:c1:e9:8f:bc:ef:e5:4b:c4:88:c9:09:
05:67:a0:cc:98:32:2d:15:28:65:7a:16:00:dc:45:
4a:e8:7a:a7:a1:fc:8b:62:fc:6d:69:e7:70:f3:3c:
1b:c4:61:3b:f2:99:ba:3b:3c:fd:6f:d3:87:d4:fa:
87:96:e5:5f:ba:01:89:f1:03:be:d9:e4:94:1f:3a:
75:f0:b1:cd:7f:3a:94:26:cd:13:45:15:45:92:62:
49:53:34:0b:7f:48:e7:2e:1e:84:f9:1c:08:94:b6:
30:8c:9f:36:3a:cc:7b:46:cf:f7:71:ea:c0:70:76:
a6:95:30:fe:76:a5:f6:48:8d:9c:44:82:2b:3f:5a:
2c:d9:91:3f:28:26:e4:ea:5e:df:cd:8d:c9:03:b8:
ad:42:e7:44:e6:72:72:ae:85:27:ac:18:60:20:9e:
a3:77:99:df:1a:fa:00:8e:17:de:37:b7:ff:4c:1c:
bc:04:c9:4d:28:ff:21:87:d7:e9:66:33:f2:e2:16:
ce:28:87:a7:98:bd:ce:b9:1e:73:4a:ad:7c:52:f3:
2a:38:d6:65:32:58:61:b1:35:e4:3d:ca:bf:be:ed:
b3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:CD:E3:5B:07:F3:91:4D:F2:A8:DF:AF:EF:A4:01:41:57:D7:28:B5
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:f3:37:c2:3e:94:1d:69:bc:80:f2:ad:5e:e4:0d:13:db:41:
c1:b5:68:12:c3:bf:96:ac:bc:f3:8c:11:82:b0:56:bd:6e:ad:
fc:5d:26:26:9f:53:88:9e:00:8b:71:a9:76:64:f7:ca:52:b5:
fc:58:1f:90:c0:9d:a5:22:94:70:b2:9d:b0:89:31:a5:9c:7d:
c9:07:09:19:f2:b6:46:80:59:59:08:91:cb:c5:24:cc:7b:77:
e9:87:52:6a:32:dc:69:bb:64:05:9b:38:9b:bc:9e:3a:ab:fc:
53:45:66:fd:21:2a:43:d3:3c:e7:b2:af:98:c8:e3:44:f1:3d:
f6:f4:1d:d6:82:58:29:42:bd:63:ca:be:75:6f:e0:6a:9d:e4:
b1:8b:13:3f:a9:1c:7b:27:5c:1b:fb:85:c3:0a:83:57:c2:6a:
9e:d9:d9:a7:46:6d:b9:99:94:1b:c4:17:9e:5f:4f:80:46:4d:
08:30:42:9e:b3:14:fd:9f:1a:5a:a7:6a:e8:ed:b4:28:53:e8:
d8:9e:22:ff:b9:86:d3:03:7a:98:79:c0:60:ca:44:54:18:34:
3d:c3:78:d4:4b:f6:81:1c:67:f3:9f:87:f2:a4:80:51:d6:2e:
f5:da:19:19:44:fb:aa:9d:1a:ee:6b:cb:fa:73:46:e6:f4:2b:
97:94:19:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:04:51 2024 by rpki-client on console-fra.rpki-client.org