Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json)
Hash identifier: z2x12CG0pkvlaMaZ1YMgz54gMBhKNFUD1qyltydYqFI=
Subject key identifier: A3:6D:C7:98:A6:38:D1:57:7A:F5:CA:52:26:B5:48:03:B5:71:0B:F7
Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be
Certificate serial: 019351D07216F3CD9C4A473A2B31C2C3617A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
Manifest number: 0BCC
Signing time: Fri 22 Nov 2024 03:00:35 +0000
Manifest this update: Fri 22 Nov 2024 03:00:35 +0000
Manifest next update: Sat 23 Nov 2024 03:00:35 +0000
Files and hashes: 1: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: 3J6vBkZ3AXsxL11zgEBChZ31Kfx1JrTPLF+ChIJIvVE=)
2: _Y8CXxWQXCx60kx34wzvwcPiND4.roa (hash: K1df3+nprg2E+DL4nyKtfbz1t/nI4savr4ymfB12WOE=)
3: oyyimdUDIRHklKAxJbbZcxc7pAU.roa (hash: 3I5ZqXgKXKubGhqzITL1QGecRubtmyYRohfJGKub0RM=)
4: rIaJuOye-KwMQizwOMJmgYsq7U4.roa (hash: swzf2w7YkekDJOCAUcDooLBgfpMJrExvcuugV5bkr2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:d0:72:16:f3:cd:9c:4a:47:3a:2b:31:c2:c3:61:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be
Validity
Not Before: Nov 22 03:00:35 2024 GMT
Not After : Nov 23 03:00:35 2024 GMT
Subject: CN=a36dc798a638d1577af5ca5226b54803b5710bf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:bb:e3:a0:bc:1f:1b:c3:4c:30:4c:61:0e:96:
ef:b7:73:eb:7b:af:a0:c1:44:b5:26:fc:80:30:68:
f3:55:68:de:ff:d9:76:51:6c:f4:b9:74:15:d7:01:
bb:0e:2b:71:ab:33:e9:67:b8:a1:ab:fa:98:75:4f:
82:52:f6:a5:c4:11:15:47:1d:9c:a8:5f:11:94:04:
2b:80:ef:74:e2:b2:bb:3d:b5:8b:2e:be:ed:4a:cf:
98:83:18:a7:5a:8a:4a:0f:a0:73:94:13:52:e4:56:
b4:29:fd:a7:d9:0c:ce:72:a9:6b:a4:52:42:5a:7b:
d3:0e:f1:ff:88:31:c2:21:c6:7c:7e:e2:95:69:db:
34:18:9f:9c:a7:00:5a:84:5f:10:7e:a6:8a:f0:6a:
a3:bb:44:8e:da:6b:40:47:b0:12:4f:24:70:ed:49:
d1:75:b3:b1:fc:b8:4d:ea:dd:f1:2a:c6:23:1c:50:
7e:b9:02:85:f0:22:ae:90:cd:79:d5:eb:21:f9:44:
73:f6:e1:d6:31:7b:09:b4:d8:80:0f:09:00:05:c5:
8d:3b:8b:a1:09:89:ec:fd:d7:3d:03:f5:60:46:e1:
8a:8d:10:42:29:c4:4d:b3:df:be:ed:07:26:bf:b0:
f1:bd:2e:e2:10:fd:29:b9:91:c5:8c:be:08:bb:67:
77:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6D:C7:98:A6:38:D1:57:7A:F5:CA:52:26:B5:48:03:B5:71:0B:F7
X509v3 Authority Key Identifier:
keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:d7:0e:4c:9e:9a:3a:c5:e2:45:4d:31:09:05:3d:3d:c2:f2:
dd:c6:75:0e:0a:ca:45:c8:9f:12:a0:18:ec:bb:55:e9:39:e8:
07:72:d9:5b:64:5f:cf:b6:1b:69:8e:d1:04:1b:4a:a8:21:e8:
9f:d1:b4:4d:21:89:9e:d8:3b:02:aa:1e:c2:ba:55:83:31:f8:
6f:6c:62:d4:5c:79:e2:14:bd:a1:d0:5f:33:5a:f9:f8:1f:a1:
ff:7a:6a:f4:f5:2a:9c:60:72:36:05:8b:71:f7:ce:a3:b1:e7:
e6:d4:b2:2d:e7:8e:ff:2b:c7:04:2f:b7:f1:fb:49:42:52:02:
31:3f:dd:61:13:03:e8:f3:b5:ca:3a:61:32:d9:97:5d:76:df:
e5:eb:1e:d7:22:b0:ce:02:23:62:5c:88:e9:ba:71:a9:e8:33:
69:fe:80:c8:79:8a:a8:e3:3b:85:b7:d1:e3:49:a1:d1:f5:15:
d9:c8:7a:cb:dd:26:a6:54:b0:d0:66:6e:02:87:78:48:f7:65:
68:cf:24:75:be:ca:22:bb:ad:4f:9b:c6:c1:48:75:8a:13:e4:
cf:25:27:78:30:03:c6:76:9d:b0:5c:43:c8:31:21:57:03:98:
e3:6e:6a:13:43:86:bf:c1:bd:e3:6e:18:29:6e:d6:d0:b7:74:
8c:4f:c5:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:58:12 2024 by rpki-client on console-fra.rpki-client.org