Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
File: 1onLcYkcbZS9nm8U8W5-N8LHKL8.mft (raw, json)
Hash identifier: I4DrqtoQ9g8xOPJpbDR6jJNYAPYhNXKpJevxqigMAns=
Subject key identifier: E5:3F:36:4E:E5:D4:8A:6A:60:D6:AD:6F:4F:8B:A7:D9:0F:CD:22:31
Authority key identifier: D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
Certificate issuer: /CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Certificate serial: 0193553F5C83B01CF56E1D92DEDB81B3316E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
Manifest number: 0125
Signing time: Fri 22 Nov 2024 19:00:36 +0000
Manifest this update: Fri 22 Nov 2024 19:00:36 +0000
Manifest next update: Sat 23 Nov 2024 19:00:36 +0000
Files and hashes: 1: 1onLcYkcbZS9nm8U8W5-N8LHKL8.crl (hash: /DVB/voU84m9FvoiEXnUZgsCkK2K/z2vn/OhfZ2Gq5I=)
2: TUjcnEO8sHjDGTWkyBL6P-fnKWU.roa (hash: rj3zFAt4PVghqM9OOrq0UBYHYdAmPvYnoAuYNr6HExk=)
3: lEheX6dz9U-BByINJMk6nEh5p7w.roa (hash: LU3LLCoUqfV+tqkFTNz+Z0E/RXSoquB45VKhUmEyrPw=)
4: smUXqEoBASmp9npQfz_QDG9Z4zw.roa (hash: CBtqIq7YD85/Q5a4eS+pbOsQdhOxzGUIA/wpywIb3zg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:3f:5c:83:b0:1c:f5:6e:1d:92:de:db:81:b3:31:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Validity
Not Before: Nov 22 19:00:36 2024 GMT
Not After : Nov 23 19:00:36 2024 GMT
Subject: CN=e53f364ee5d48a6a60d6ad6f4f8ba7d90fcd2231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7e:72:db:f9:31:52:bc:c2:c8:b3:9e:97:dc:
3a:77:a2:69:e7:0c:ce:86:ed:ab:75:ae:de:cf:66:
0c:d4:45:a1:01:12:79:20:e1:55:88:cf:76:cb:16:
5f:10:a8:88:8a:bc:b8:fa:93:34:31:94:26:83:d8:
ea:26:d4:7a:5e:98:a4:88:be:e6:02:06:4e:be:8f:
fe:22:27:b7:40:5e:84:4e:99:fc:f4:a3:2f:3b:1a:
ef:ad:79:68:3a:32:8f:7e:f5:89:dc:37:b5:c9:22:
d2:98:a3:15:c6:af:01:7b:23:dc:40:e4:49:15:0d:
da:45:e8:3d:27:bc:21:a1:69:fa:34:d7:ed:ee:7c:
ca:47:99:e4:85:36:55:d5:4c:5a:f6:03:95:1d:24:
ef:48:a5:bd:a1:4b:94:85:b9:71:08:7a:6e:15:1c:
56:37:88:b4:9f:7d:cc:85:aa:d1:95:b5:47:9c:e9:
c6:0d:32:65:52:37:ad:df:16:7d:10:37:4d:f6:c6:
21:60:a2:18:7f:e5:8e:2f:53:99:83:c8:34:0e:f2:
a2:33:f4:6c:d2:2c:4f:d4:20:e4:77:b7:52:9e:ad:
03:15:fb:59:e4:fb:6f:c6:5c:8a:0f:fc:cc:fa:b9:
70:7c:85:80:70:88:78:67:c7:7d:d9:5a:ca:41:aa:
a5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3F:36:4E:E5:D4:8A:6A:60:D6:AD:6F:4F:8B:A7:D9:0F:CD:22:31
X509v3 Authority Key Identifier:
keyid:D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d6:6b:86:da:27:20:d2:99:f7:18:9f:39:29:d6:37:7a:b1:
9f:de:97:3a:29:8b:7c:a1:20:29:0a:fe:d4:d7:51:7f:c3:09:
9d:a0:27:ba:e5:67:71:f4:b8:66:c2:82:df:79:0f:51:ed:75:
37:f4:e9:78:0e:7b:2e:2b:15:6d:f9:01:8b:94:66:cf:9f:8a:
19:5a:ad:5a:68:e1:78:b6:47:50:d4:53:e0:a4:5f:60:e7:cc:
59:bb:02:3d:d6:83:15:cd:87:c0:ea:f2:1c:0e:f9:c0:0b:f5:
3c:a2:08:47:16:ec:bd:81:46:b3:59:d8:0a:6c:9f:57:1b:e0:
4c:7e:33:29:5c:79:a1:aa:34:9e:77:56:6d:10:be:1f:1e:2e:
1d:86:32:97:b9:85:47:fc:a0:16:c2:d3:30:b9:67:15:c4:27:
9e:8d:57:f1:46:b6:7d:5c:ef:6c:fb:49:e4:0a:4c:63:52:22:
5b:b0:58:2c:13:1c:a6:ab:ee:0b:07:26:fe:9d:34:91:c7:83:
11:38:81:e2:fc:52:49:0f:0d:ba:00:77:3c:78:0e:10:fe:d5:
91:cf:72:fe:89:4f:a1:1e:b2:fc:ee:13:04:f5:92:f5:23:88:
59:78:2f:ce:e8:af:a6:22:5d:26:61:8f:40:20:a5:b4:13:2c:
be:22:82:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:53:50 2024 by rpki-client on console-fra.rpki-client.org