Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
File: OneLgrqpeIoayvLsNothmB71HfI.mft (raw, json)
Hash identifier: OUB8ZL7iOqHk1/qO6+FgQHdPSrDu19xaWVW03D2Gi9Y=
Subject key identifier: 78:ED:51:08:AA:A7:0F:3F:92:5C:DA:F2:96:DF:1F:E0:8D:36:49:3E
Authority key identifier: 3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
Certificate issuer: /CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Certificate serial: 019366A0A2C791DD77FF90A53D133EAB4884
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
Manifest number: 137E
Signing time: Tue 26 Nov 2024 04:00:23 +0000
Manifest this update: Tue 26 Nov 2024 04:00:23 +0000
Manifest next update: Wed 27 Nov 2024 04:00:23 +0000
Files and hashes: 1: OneLgrqpeIoayvLsNothmB71HfI.crl (hash: ps/15vmMIYLRKpmwhgKX9elfYrgV79WaIIGHb+H8ofM=)
2: aVOPdRX_Dypk-hOLchWu_lkImko.roa (hash: 40FT+Hsvc4fpU5ILCdhPgm8q2mwRUfXK+E3RwGVfDuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:66:a0:a2:c7:91:dd:77:ff:90:a5:3d:13:3e:ab:48:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Validity
Not Before: Nov 26 04:00:23 2024 GMT
Not After : Nov 27 04:00:23 2024 GMT
Subject: CN=78ed5108aaa70f3f925cdaf296df1fe08d36493e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:ab:35:46:d3:f1:d7:20:55:e1:82:2c:72:
dd:5e:e0:bb:2a:0e:34:72:a0:18:98:29:68:55:4e:
b1:6c:e6:9b:52:46:52:06:5c:4e:86:08:a9:13:e8:
a6:be:5e:56:4b:4f:4e:43:f8:c3:a4:b1:87:aa:7a:
e5:75:01:21:44:ac:24:b4:de:cb:59:59:f3:7b:e0:
a6:df:1f:3f:fa:f4:60:ea:e3:c2:41:7f:60:62:36:
64:96:a9:7a:5a:6b:6a:dc:45:4c:66:f8:dc:dc:0f:
c7:84:26:a0:8f:06:81:a6:dc:c3:18:3c:5c:7d:cc:
c8:71:d2:44:ef:84:ad:70:f7:0c:85:ea:18:30:d9:
fc:f6:bb:ad:e0:2d:3d:88:af:0b:33:32:fc:ad:57:
63:78:a8:6b:04:cd:54:96:4b:e2:f8:b9:3c:d2:ab:
c4:94:7a:14:11:fd:e3:f1:0c:17:58:4b:33:90:51:
79:16:ec:f3:ed:a2:7b:fc:2e:fa:2f:88:55:2a:2d:
0b:f8:f6:10:7e:7a:fe:98:99:2d:2e:af:ed:5d:28:
c4:ab:37:5a:0d:9e:aa:17:6e:51:ae:cb:10:87:cc:
74:3c:1f:31:64:e7:29:e3:ba:d6:3d:ec:55:80:a0:
f9:d6:9a:78:40:9d:7c:fd:e4:1d:92:84:ca:d5:db:
ed:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:ED:51:08:AA:A7:0F:3F:92:5C:DA:F2:96:DF:1F:E0:8D:36:49:3E
X509v3 Authority Key Identifier:
keyid:3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:df:b7:1d:80:2a:97:69:0c:b8:39:9c:cb:2a:3f:bd:84:6b:
c3:3b:04:78:3a:bf:d3:70:3d:2d:0f:42:8f:f5:07:5e:d1:64:
9c:43:3b:55:a5:b0:db:1f:89:41:67:63:7f:fd:0e:81:66:45:
2e:3e:e4:a9:34:01:8b:71:39:5b:c3:d8:71:cb:56:b8:6e:fa:
e2:ab:b6:c9:26:9c:6a:95:08:6e:85:a6:66:e4:20:3c:f8:06:
91:6b:9c:3e:a9:e4:4b:80:2f:6e:fe:9f:22:6d:78:5c:67:d4:
4c:cd:07:f9:01:55:4d:8f:8a:f6:0a:01:1e:23:4f:c0:53:1a:
e0:29:80:09:bb:f5:60:c7:6b:5d:d7:f3:dd:b8:c8:f0:63:19:
98:46:86:91:8e:04:13:27:ea:26:87:1b:49:48:75:e6:54:be:
d3:70:2d:71:8c:4c:c9:b5:b6:1c:d4:18:87:1b:7e:7b:9c:02:
f7:0a:5b:63:5d:26:69:38:d1:68:d7:6c:da:0a:32:d9:cc:c9:
22:35:67:1e:8c:c3:66:ee:04:2d:e8:c0:f2:c7:0d:7f:66:b7:
7a:a5:6d:40:a6:c4:3d:5b:73:0d:1d:b8:eb:b6:61:78:dc:b4:
74:7f:0e:a3:c9:36:39:dd:cb:cf:de:86:44:33:ce:78:54:8c:
5e:7f:a7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 10:16:54 2024 by rpki-client on console-ams.rpki-client.org