Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
File: xTG2PRGmzC0c5p4TEch6waanBzM.mft (raw, json)
Hash identifier: Vvf5x31hduc+EdaBrKwgWdh6PH/OTBMCN54dVfRXTB8=
Subject key identifier: 5C:97:35:45:ED:AE:74:23:21:F2:F2:65:F8:D4:72:C6:E1:62:99:67
Authority key identifier: C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
Certificate issuer: /CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Certificate serial: 019358779080F28C29B20232B1CD79A30FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
Manifest number: 0BF5
Signing time: Sat 23 Nov 2024 10:00:50 +0000
Manifest this update: Sat 23 Nov 2024 10:00:50 +0000
Manifest next update: Sun 24 Nov 2024 10:00:50 +0000
Files and hashes: 1: kh430Vnkr4XKM4T9B3-kUBrZjec.roa (hash: y0Fp/AIwNmXKomzVskUgNoiX6JAUnSGlSU9Ch7o0oWA=)
2: xTG2PRGmzC0c5p4TEch6waanBzM.crl (hash: tul2fANg6j+fyU9V5xrf4V3De3i7PS53L/eEjL2lpEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:90:80:f2:8c:29:b2:02:32:b1:cd:79:a3:0f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Validity
Not Before: Nov 23 10:00:50 2024 GMT
Not After : Nov 24 10:00:50 2024 GMT
Subject: CN=5c973545edae742321f2f265f8d472c6e1629967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3a:3c:c9:61:59:46:c1:a6:34:a4:9e:a9:c8:
19:86:4a:61:bd:87:8f:2b:c5:b2:69:57:67:e8:51:
49:73:3a:9e:94:56:1b:10:ae:27:28:af:eb:19:0a:
48:9e:97:c8:13:21:24:43:35:d3:e2:3d:c0:5c:31:
67:d7:64:64:e9:d7:6f:f0:c9:83:8f:89:94:e4:78:
42:b5:b3:28:e6:5c:ee:ed:ba:09:c9:77:fd:f4:a2:
fe:4c:c7:23:b2:e8:95:56:75:47:3b:ea:26:ec:99:
10:99:4c:54:ca:6a:8d:0c:9b:03:29:87:1f:eb:38:
2f:55:60:39:d1:60:f2:6b:76:81:ea:06:a4:09:91:
c0:c4:0b:bd:74:c5:94:6b:92:c2:fe:0a:4f:41:43:
d0:7c:04:5d:aa:fa:c6:f1:5d:ef:9e:3d:dd:df:45:
93:57:41:07:5f:df:eb:71:ef:dc:36:e9:05:fd:f2:
2a:90:f8:08:6a:b5:84:fc:5e:35:e6:a2:55:e9:60:
04:5c:a7:a5:72:d7:2a:2d:71:a0:5e:21:07:28:46:
3c:ee:d2:c6:31:97:6d:31:e5:57:d9:6e:9a:0d:a0:
b1:24:79:ec:54:b3:95:98:73:51:bb:41:93:24:5c:
a2:af:a9:54:38:e1:1e:68:85:bb:9b:9b:99:51:d1:
e7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:97:35:45:ED:AE:74:23:21:F2:F2:65:F8:D4:72:C6:E1:62:99:67
X509v3 Authority Key Identifier:
keyid:C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:8a:57:f2:e6:e3:89:51:d9:f1:c9:5f:ea:4c:01:8a:90:f4:
f0:70:e0:d7:28:26:53:17:7c:cd:fb:b4:94:97:82:e1:f2:4e:
80:b3:42:f7:8f:b4:2d:3d:2a:f8:6c:d4:94:b8:76:9b:5f:d5:
13:6b:e9:1c:3d:14:54:fa:5b:91:79:db:8b:90:a3:82:52:6c:
9b:19:34:b6:44:a8:2a:0a:7d:6b:60:88:f9:9f:69:da:34:45:
0f:4e:aa:33:16:74:20:e5:e1:3e:f6:23:69:cc:71:73:6b:f2:
25:59:df:e8:dc:38:12:6b:14:6b:26:90:27:ce:20:23:8d:22:
ee:10:98:e8:f7:aa:ce:f9:b0:e2:4b:ed:b2:83:ae:71:ef:a1:
36:ff:95:41:bc:46:ba:6c:5f:98:72:10:f4:0a:1a:ad:ee:d4:
a6:2f:97:dc:06:25:e8:0c:a4:7a:08:d9:df:5a:89:db:3a:a9:
1c:c7:8d:15:2d:01:7a:16:06:3c:2e:04:6e:f7:b2:38:22:99:
02:30:1d:97:e6:f9:94:34:9e:44:98:ff:3e:de:ee:60:31:0b:
cc:b9:5d:37:83:0d:9a:91:22:73:41:9e:2a:ee:f9:61:12:e4:
a7:13:cd:cb:41:e7:f2:7a:5f:f9:2c:5d:4e:d7:e2:73:84:b9:
32:ac:73:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:04:52 2024 by rpki-client on console-fra.rpki-client.org