Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/v5nSPIJymoBJ51ZXdahkvDqigu8.mft
File: v5nSPIJymoBJ51ZXdahkvDqigu8.mft (raw, json)
Hash identifier: QgcQOSmWNZQgRNN1KGgwV6kSJk8U4UrEznwqqpkSxOk=
Subject key identifier: 8B:89:09:C7:DB:65:24:15:62:8A:C1:4E:27:F9:01:64:FB:3B:AA:07
Authority key identifier: BF:99:D2:3C:82:72:9A:80:49:E7:56:57:75:A8:64:BC:3A:A2:82:EF
Certificate issuer: /CN=bf99d23c82729a8049e7565775a864bc3aa282ef
Certificate serial: 019369D94600BCC0B61255105103BB6DCABA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5nSPIJymoBJ51ZXdahkvDqigu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/v5nSPIJymoBJ51ZXdahkvDqigu8.mft
Manifest number: 0411
Signing time: Tue 26 Nov 2024 19:01:07 +0000
Manifest this update: Tue 26 Nov 2024 19:01:07 +0000
Manifest next update: Wed 27 Nov 2024 19:01:07 +0000
Files and hashes: 1: OwvqdpOw1PPIZV7B3bZVg6x8s2s.roa (hash: b4sya34QQ9ov2U+79Jinh9oqFB8vbAgoxb+JyQTfCZQ=)
2: v5nSPIJymoBJ51ZXdahkvDqigu8.crl (hash: hahzsi8smoZ263HZOpZ9DIRTZMYI54LkBgopU9nGmGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/v5nSPIJymoBJ51ZXdahkvDqigu8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/v5nSPIJymoBJ51ZXdahkvDqigu8.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5nSPIJymoBJ51ZXdahkvDqigu8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:46:00:bc:c0:b6:12:55:10:51:03:bb:6d:ca:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf99d23c82729a8049e7565775a864bc3aa282ef
Validity
Not Before: Nov 26 19:01:07 2024 GMT
Not After : Nov 27 19:01:07 2024 GMT
Subject: CN=8b8909c7db652415628ac14e27f90164fb3baa07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:09:2a:71:8f:cd:d4:2b:c4:62:aa:fa:61:d0:
29:cc:e3:67:e8:02:65:ae:09:17:b3:f3:fe:66:2f:
22:45:de:85:05:b8:cb:87:89:0d:08:f2:e9:fc:b1:
88:eb:e8:f9:4f:85:96:16:e0:f1:d1:b2:fd:25:da:
27:3a:2a:02:04:f7:6b:31:1b:db:86:b4:d7:91:e5:
42:fa:78:4b:90:5c:2c:45:5b:9b:5a:ef:ee:4f:14:
1a:82:ef:e8:e0:ee:da:64:96:ff:48:c0:88:39:7f:
ce:bc:16:31:8a:d3:16:53:b1:0b:32:e8:46:b8:81:
1e:27:15:ca:33:c1:a3:6f:b6:82:cc:65:a7:30:75:
07:63:0b:f6:56:08:11:ab:0a:e4:d0:3d:1d:2a:67:
af:16:57:fc:c8:c9:d3:8a:d4:53:39:28:47:b1:f5:
42:24:40:4a:00:d7:4e:98:86:08:ce:df:17:d6:65:
08:e2:48:b0:ad:96:f9:4c:e9:7f:90:6b:93:30:e7:
95:82:be:29:e8:9a:49:32:65:f9:fa:6a:e3:4a:7c:
33:c1:88:b0:05:e1:d5:92:49:9e:69:3d:e4:83:4d:
0a:1f:ca:b5:8f:e4:2d:f6:89:c4:69:4f:79:dd:d9:
67:52:31:c7:70:15:c0:e9:2b:8b:6f:74:fe:54:ef:
e6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:89:09:C7:DB:65:24:15:62:8A:C1:4E:27:F9:01:64:FB:3B:AA:07
X509v3 Authority Key Identifier:
keyid:BF:99:D2:3C:82:72:9A:80:49:E7:56:57:75:A8:64:BC:3A:A2:82:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5nSPIJymoBJ51ZXdahkvDqigu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/v5nSPIJymoBJ51ZXdahkvDqigu8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2ad53a-f118-4a88-8c2f-987086ccab84/1/v5nSPIJymoBJ51ZXdahkvDqigu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:5f:ae:8a:95:a3:fe:da:19:1b:d6:72:57:35:37:8b:89:25:
d8:46:69:be:f8:32:e6:58:93:aa:bf:c9:3b:ec:84:f0:81:ea:
87:87:55:e9:82:92:e0:c2:31:d8:c1:72:6b:86:5d:0f:9b:8b:
b3:38:02:1c:e1:d5:8c:08:cb:bf:b3:a7:bf:8d:9a:dd:1b:0a:
36:e7:fc:5f:04:84:d6:15:3f:fe:34:65:23:d6:02:04:02:ef:
2b:29:f8:e2:f6:a8:c4:e0:26:d6:0b:f9:cf:0c:bd:11:66:37:
02:03:ef:17:84:ec:d8:e7:0c:11:3b:53:45:84:f5:8f:ad:85:
d4:e1:2d:41:59:6c:d7:65:81:28:99:c9:1d:ee:98:78:b5:9f:
f6:d6:eb:22:b6:2f:2c:41:e3:f0:15:ab:95:48:f2:a0:6d:5e:
94:af:46:78:51:e5:ba:37:de:98:84:66:86:1f:ae:05:df:b3:
e7:18:2f:49:06:9a:af:8c:f2:ba:57:fb:13:d7:22:8b:e0:99:
66:ae:b7:4c:63:0f:1a:d6:7e:51:44:3d:57:17:63:c2:d4:9a:
64:21:24:4e:16:8f:81:cd:ff:2e:74:24:0b:99:00:01:87:09:
94:29:20:d9:71:82:1e:aa:26:66:75:4d:4f:53:b0:e9:1b:47:
62:16:ae:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 23:15:59 2024 by rpki-client on console-fra.rpki-client.org