Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: vluWlGmbBzqdDCW1Z4FNBdAZhsOk4BOhqY21RH4y0X8=
Subject key identifier: 73:9E:D4:FE:F4:11:E8:FB:05:02:8A:D5:A5:48:58:1F:77:AC:67:0B
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 019369D932D53A81DF117C73068529917375
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 1297
Signing time: Tue 26 Nov 2024 19:01:02 +0000
Manifest this update: Tue 26 Nov 2024 19:01:02 +0000
Manifest next update: Wed 27 Nov 2024 19:01:02 +0000
Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: kGpdNygFW0jH9TSMggiA+CYqAQtADio0lVBfBrwks0Q=)
2: FoVdP2zXQO7JmuUnUjOTZep-vgw.roa (hash: ZOk3u6PTcx4pIna4BmuFtp/Z7fekpAtw0hyzoJOXo8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:32:d5:3a:81:df:11:7c:73:06:85:29:91:73:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: Nov 26 19:01:02 2024 GMT
Not After : Nov 27 19:01:02 2024 GMT
Subject: CN=739ed4fef411e8fb05028ad5a548581f77ac670b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2b:ed:c6:67:c8:ec:fe:95:ea:46:33:7d:f5:
d8:dc:ec:f3:07:82:b0:78:a6:93:66:bd:26:ac:48:
55:e9:e4:3c:13:96:ce:34:e7:a3:a3:5c:e1:82:f4:
ef:40:50:50:54:91:a0:5b:df:90:7b:55:b3:a4:db:
89:d7:3a:d9:c8:60:25:19:b8:d8:1c:db:f8:5f:c7:
e8:0c:56:57:4b:1f:b6:d8:71:f7:8e:a6:30:0f:7f:
e6:7a:b2:1a:8e:14:bb:77:7f:66:e4:5e:17:49:8b:
9c:03:52:74:76:0c:4e:09:c2:ea:af:39:07:90:e6:
28:c1:4f:91:6a:33:3b:62:ec:7b:1a:af:72:be:53:
af:23:8f:e9:07:13:79:7d:e1:77:cd:77:97:e0:b7:
50:57:d6:72:e7:96:c2:91:b1:d6:ce:7f:48:a6:fd:
1c:74:d9:09:6c:c8:e0:99:fb:94:c3:59:06:b9:6b:
64:c1:cf:29:84:67:40:7d:8f:cc:38:8c:18:4a:7a:
30:74:59:3b:da:84:79:ee:9f:dd:ee:08:11:f4:85:
f0:52:61:dd:0f:bd:0d:70:a0:31:d5:0e:b1:d3:ca:
43:34:5e:10:36:4c:0d:77:74:96:bb:b6:ad:c1:b4:
48:5e:45:00:f1:37:ec:38:f1:33:48:32:6c:e1:b0:
24:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:9E:D4:FE:F4:11:E8:FB:05:02:8A:D5:A5:48:58:1F:77:AC:67:0B
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:34:6a:33:c4:66:37:cf:58:7a:72:23:19:d4:7a:ee:f8:b3:
1c:3e:e4:ed:cf:61:f1:29:63:fe:6a:b9:e9:e6:9e:10:3f:77:
30:14:56:6e:e0:29:6e:ac:df:d6:5e:22:02:b3:35:dc:00:b3:
63:0c:4c:e3:7e:67:37:bc:4c:28:7c:aa:04:6b:53:14:8f:46:
4d:30:5b:6f:80:6c:11:c8:58:fa:14:08:05:06:26:d4:f2:32:
66:ab:5a:3f:d6:fa:9a:7a:0e:50:c1:30:d4:06:7f:14:7a:b8:
98:d1:f0:31:49:19:21:2c:75:db:9c:bf:a0:f7:bb:22:2e:02:
60:56:3a:40:e2:ca:53:c5:c9:e1:42:74:ef:2e:67:ac:8f:c1:
e2:1c:a8:cc:b8:22:e4:4c:bc:e9:2c:af:c0:19:dc:58:fa:3b:
51:e8:d3:e9:8a:ed:26:e5:88:01:38:2d:49:cd:a1:0d:ba:4f:
84:7f:e3:b1:3b:b2:ca:0b:5f:49:cc:94:d9:a8:38:38:2f:4b:
ef:0e:73:05:9a:6a:db:71:84:e6:cb:af:38:b7:2a:73:64:d1:
67:95:ef:98:fc:38:ae:7b:3a:77:2b:f7:72:23:6e:9c:fb:d9:
dd:a5:ee:4b:f1:db:d0:53:6e:da:8a:d0:3b:92:8c:4d:b2:01:
6f:10:bf:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 21:29:19 2024 by rpki-client on console-fra.rpki-client.org