Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
File: y6AXGgLV5KdftAY1VFrgBkyMzK0.mft (raw, json)
Hash identifier: ouJ4dOc++J094ZlPUmVURceqmXiCCMaaNEHZ6YnaB7Y=
Subject key identifier: D4:DE:B7:03:97:20:A6:B2:FE:9D:1D:78:70:5C:DA:5C:EF:46:98:D7
Authority key identifier: CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
Certificate issuer: /CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Certificate serial: 0193640E685D25EB974B8905DEC09A9B1476
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
Manifest number: 1084
Signing time: Mon 25 Nov 2024 16:01:26 +0000
Manifest this update: Mon 25 Nov 2024 16:01:26 +0000
Manifest next update: Tue 26 Nov 2024 16:01:26 +0000
Files and hashes: 1: cLp5hwUc33CguDRyD4MCGPFVgeE.roa (hash: 0qIKJN4HadvzCJUdkqTDGN+x9C7SnyfWwPN9ybDldxI=)
2: y6AXGgLV5KdftAY1VFrgBkyMzK0.crl (hash: rTj28YgzdWthh/3d7hBd8Ai8+BVTamAaNBoOgYgOi7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:0e:68:5d:25:eb:97:4b:89:05:de:c0:9a:9b:14:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Validity
Not Before: Nov 25 16:01:26 2024 GMT
Not After : Nov 26 16:01:26 2024 GMT
Subject: CN=d4deb7039720a6b2fe9d1d78705cda5cef4698d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:64:1c:90:f8:c6:85:68:39:6e:e9:0e:8d:e8:
5d:d7:9c:87:8f:05:1e:55:fb:a2:bb:51:c2:82:fc:
7d:1a:0f:9d:58:52:71:e1:00:89:49:12:f7:ec:c7:
1c:52:77:f2:a6:2a:02:77:99:37:cc:81:49:b4:98:
34:04:35:86:3b:08:fc:3b:87:a7:67:44:5e:b9:cc:
62:0b:88:bf:84:25:bc:8f:ca:5c:2d:7f:2e:be:c3:
c1:5f:8d:ea:c5:d9:bd:68:69:12:54:01:e0:81:15:
54:d8:a1:ed:87:1d:42:2c:59:6f:02:81:d6:93:7f:
59:8c:95:8f:21:dd:80:40:02:11:e7:96:30:19:02:
94:9a:a9:0e:88:92:0f:0b:54:4e:a6:73:a5:94:13:
60:7a:65:5f:bb:e2:1f:d4:9c:19:a9:b2:28:4f:d6:
61:9c:eb:5f:7e:8b:dd:cc:9e:9b:bf:ab:a6:0f:e5:
28:e4:09:5d:b8:4f:7b:2e:ee:f2:38:92:f1:1f:d7:
e8:7a:d1:ad:32:74:52:17:8c:80:bf:d0:b3:6c:b6:
3c:ac:b4:b1:63:aa:f9:1a:80:15:7d:20:8d:71:f6:
e5:06:74:9e:82:44:1f:59:99:ef:88:bd:51:5c:e0:
55:ea:d4:f2:80:5c:19:de:9c:10:7d:05:5c:ed:56:
69:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DE:B7:03:97:20:A6:B2:FE:9D:1D:78:70:5C:DA:5C:EF:46:98:D7
X509v3 Authority Key Identifier:
keyid:CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:0c:87:6e:e8:9a:d6:d6:5a:2c:f3:97:e7:21:54:d7:75:98:
02:43:a0:d6:0f:3d:97:26:ec:57:a2:06:c0:81:e5:eb:c3:c9:
72:92:5f:c2:22:53:fe:ae:53:84:f3:29:e9:39:a3:96:9c:27:
bf:58:5a:f8:f0:d0:17:db:d9:d9:b5:bf:e0:7d:89:84:b2:51:
d6:5b:7d:ad:ab:0e:01:1f:4e:45:6a:b2:a2:27:7f:46:77:68:
3f:8c:d9:2e:b8:99:7f:cb:b0:4e:5a:63:23:a7:62:8b:cb:ee:
10:c4:19:3c:85:da:1c:71:f2:4f:6e:bc:b9:d6:f2:3b:1c:a9:
31:db:99:8d:af:48:3e:64:7c:57:9c:8b:0e:6d:ab:67:5e:18:
25:ec:92:73:6f:23:66:95:3f:c7:98:92:c8:22:b7:c7:54:5b:
cd:f0:2d:d3:56:a9:1d:34:1a:b9:c0:9e:2a:be:33:2e:74:2a:
dc:a9:54:ca:7b:e3:b4:c5:56:bd:44:68:6d:32:a6:fb:7c:e1:
e1:7f:a9:72:d6:53:d3:5d:11:3a:95:db:3c:a7:b1:ef:f3:f9:
b5:46:16:78:6c:b7:64:52:12:84:ce:af:b7:08:45:2a:22:29:
f7:5b:b6:04:b1:c3:bb:0c:ed:19:d0:95:89:2a:50:8e:7b:06:
e7:17:f2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:55:01 2024 by rpki-client on console-fra.rpki-client.org