Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: qwPl4qRL5Iltwddav+jJHE7RMcoqbeI6mAk/7BazrDQ=
Subject key identifier: 85:A7:B6:98:FB:F2:66:BB:A2:1B:4B:A3:77:79:9E:2E:9E:F4:6B:6B
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 0193549C83EFCA465A6CCCC7E118F8B822BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 136E
Signing time: Fri 22 Nov 2024 16:02:43 +0000
Manifest this update: Fri 22 Nov 2024 16:02:43 +0000
Manifest next update: Sat 23 Nov 2024 16:02:43 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: H8LvHl89nugokiQJ3B2H1vJeg4fEOH0L7YjHaNnQeg4=)
2: 6WADeq1-eaFim86apghPQ1IChDs.roa (hash: fHtgavEVhg0ZTuHS1Pm9Dvh0fgRDFAX/HPNMXV+T4XU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9c:83:ef:ca:46:5a:6c:cc:c7:e1:18:f8:b8:22:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Nov 22 16:02:43 2024 GMT
Not After : Nov 23 16:02:43 2024 GMT
Subject: CN=85a7b698fbf266bba21b4ba377799e2e9ef46b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:38:b2:bb:d0:b6:ae:86:51:68:4c:8f:f6:e9:
f6:b3:6d:25:39:04:2f:19:5b:c2:0e:38:6a:47:02:
23:65:6a:df:30:cb:3d:94:d7:39:22:60:f0:16:5f:
27:81:8f:f1:c7:55:fa:bc:16:93:33:45:06:8c:cb:
c1:6b:86:c4:6d:ae:a1:8d:02:80:fe:35:d5:4e:87:
c1:09:92:3c:a4:1c:a7:ae:d6:8c:9d:a2:ad:a2:2f:
22:fc:47:c1:96:e1:f3:c1:f4:39:e1:4f:53:f8:b3:
3f:ca:2f:ee:26:bc:11:48:02:06:98:76:99:7c:c0:
23:9f:c9:ab:8d:2c:50:69:b1:ca:a7:aa:30:13:83:
22:10:cf:3a:09:6f:70:70:43:f4:54:ff:91:7d:d7:
ae:dd:f9:29:7b:13:8e:e5:ff:68:04:bd:83:71:bb:
c3:76:a5:52:5b:05:10:a8:22:38:00:fd:00:41:ed:
03:c5:78:b5:1c:38:a4:0d:dc:58:30:9b:06:12:94:
15:b3:f6:72:a3:7f:9e:4b:11:c4:d3:bd:bb:2a:cc:
47:c3:f9:15:d5:14:a9:cc:45:fb:2f:34:01:5d:a7:
0e:f9:dd:af:5b:9a:c0:20:e1:a0:eb:45:4c:3f:d4:
2b:43:30:f6:4c:53:3c:28:73:a0:94:d9:b4:0a:1d:
e6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A7:B6:98:FB:F2:66:BB:A2:1B:4B:A3:77:79:9E:2E:9E:F4:6B:6B
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:c9:59:ed:63:49:2b:8b:20:23:de:95:84:14:07:d3:7d:b4:
a5:0b:f8:a7:e0:88:f5:59:83:18:3d:2c:be:a4:6f:75:16:d3:
b5:1d:ee:12:b9:95:14:c0:01:2c:f4:b5:12:17:76:81:e0:28:
79:f0:d5:66:d5:98:fb:ab:3c:2c:b3:c7:0c:cc:e8:3d:8a:2d:
15:fa:61:b2:fd:bb:83:51:c7:84:32:88:f6:74:aa:71:b6:de:
23:60:d3:3d:09:7e:7a:60:83:53:bd:83:9a:11:bd:51:f7:99:
3d:65:6b:34:23:77:4f:af:be:b4:af:0d:72:0d:45:a8:d5:9b:
c5:dd:c7:47:b1:0f:12:88:81:94:a1:4e:02:79:62:5c:b1:29:
1a:0f:66:9d:7c:07:35:0f:4d:ee:10:3f:87:8d:4a:99:fa:39:
43:f9:df:6e:f1:14:a0:2c:58:5e:a6:5a:5e:d2:71:3d:52:e5:
47:09:de:fd:0c:59:ef:f4:1d:f3:34:12:20:6d:50:a3:41:ac:
f4:4b:64:f3:69:dc:e5:22:4e:0d:20:e3:fc:cc:2b:32:d8:fb:
d4:6e:26:df:d2:38:66:78:e4:a0:00:c7:96:96:92:c1:8f:a5:
8c:99:3d:51:ba:8d:33:e3:aa:dd:bd:06:a0:36:b8:4b:21:27:
47:7f:9c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:25:14 2024 by rpki-client on console-fra.rpki-client.org