Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: EPbDomB73WLk8D2s10E9NbpGKkHMO5x80VZF9S3e8Gw=
Subject key identifier: 51:E4:C0:45:EF:5A:8E:8F:00:02:B0:03:12:6E:F7:B3:FF:C8:E5:92
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 0193549C5840D3FE8D793A559BFB2E9CF2A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 0F15
Signing time: Fri 22 Nov 2024 16:02:32 +0000
Manifest this update: Fri 22 Nov 2024 16:02:32 +0000
Manifest next update: Sat 23 Nov 2024 16:02:32 +0000
Files and hashes: 1: EtD9tjnxvG1ujRuElYTC-TVQ9gY.roa (hash: 99dyRMFTAOm5RowurxvxiWu5uZvv3KYkPF+YQU2buug=)
2: gNQcOW_yCAL2NwzGGgDTxqvkgQs.roa (hash: 8a8aHQxaW3ZP0kD/Fa5p9M4vY3xy9TXcU8f+D1NY5EM=)
3: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: O7QQlwZvGLmn4sAwnj0HcBoqvu98enPrUnnSjAfa2KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9c:58:40:d3:fe:8d:79:3a:55:9b:fb:2e:9c:f2:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Nov 22 16:02:32 2024 GMT
Not After : Nov 23 16:02:32 2024 GMT
Subject: CN=51e4c045ef5a8e8f0002b003126ef7b3ffc8e592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6e:f6:f7:cd:55:6f:27:61:c3:49:f4:a9:8f:
41:32:4d:b7:a9:ed:6b:5f:3a:91:49:a4:56:e7:e8:
49:2c:2f:3a:8a:af:5c:95:ff:69:f4:6d:87:1e:b7:
20:c0:82:88:5e:2a:db:b2:e8:ab:be:c2:0f:34:bb:
c3:45:93:6d:de:2f:d7:88:15:fe:2a:b7:0e:60:4d:
e4:9f:75:6d:7e:20:ed:c0:80:c5:4d:6e:76:9b:47:
f5:22:33:27:fb:11:cf:4f:1e:4a:b3:21:c1:a5:bd:
bf:86:c9:61:8b:cc:85:93:10:c9:16:bd:59:20:39:
1d:f9:bb:93:b5:d1:04:d5:3a:df:10:98:57:16:07:
1b:4e:41:b3:87:d3:9b:1a:49:f3:9e:c2:a3:32:2e:
4a:84:1f:92:15:dc:d2:cc:92:9c:00:a1:2e:49:be:
b5:0c:b5:94:77:b4:e5:f5:81:d1:d7:73:2c:8e:0a:
7a:18:44:d0:8c:17:cb:5c:56:56:4b:60:48:ce:62:
3e:f2:c3:fa:79:69:12:dd:5f:d1:96:8f:0f:84:04:
b1:9d:2a:94:6f:82:ec:cd:13:7a:56:e1:37:d0:e4:
c2:88:78:b5:97:07:62:d0:ba:cb:7d:5d:07:14:f1:
02:0d:93:24:c7:eb:ee:d4:28:d7:84:c0:0e:33:b5:
b2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E4:C0:45:EF:5A:8E:8F:00:02:B0:03:12:6E:F7:B3:FF:C8:E5:92
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:80:85:3c:64:13:17:c1:05:d9:7a:0d:4d:d5:13:38:ec:57:
5b:33:7f:be:fe:00:fa:da:56:5d:b9:15:35:a2:5c:db:34:5b:
24:27:22:ee:fc:93:ea:29:8d:5f:6f:63:83:8c:ca:e5:92:3c:
89:67:ca:98:c9:9c:07:44:4b:e8:78:b5:69:e0:ae:5e:61:21:
b9:09:34:ff:56:8f:7b:82:57:05:3b:71:e1:81:17:fd:44:bd:
d3:56:04:32:f5:e1:30:ce:f5:a8:38:f0:64:67:e3:b2:78:92:
28:c8:10:9b:f3:8a:1b:16:67:db:a8:18:fa:fe:ca:5f:69:ab:
44:68:e6:92:79:dc:10:b8:90:d9:a6:14:5d:11:c5:30:69:63:
c3:c3:15:5f:64:5f:ec:15:34:5f:84:1f:4a:9b:6a:94:19:10:
57:18:07:2c:fe:7b:b0:b9:41:af:92:bb:e0:35:d3:ad:fd:d6:
cd:c2:b9:c8:27:72:39:9e:ee:f7:1a:34:0c:00:27:50:25:91:
65:72:ca:df:be:49:d8:95:ea:5d:3a:42:12:a7:94:11:65:ad:
24:ee:95:c9:7b:53:61:be:1b:ac:71:fb:05:32:a9:d7:eb:72:
45:55:7f:2c:79:a3:f9:69:ac:f8:1b:c8:09:a3:78:40:fd:74:
59:bb:96:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:25:41 2024 by rpki-client on console-fra.rpki-client.org