Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
File: a0P3ovQ2ixel4DXOS9km-KFC1os.mft (raw, json)
Hash identifier: mr4b4mhiiU18LKiQFdIQ5GUc2Fyb+FdoQB+98mYMSxE=
Subject key identifier: 15:C0:F3:AA:3E:4B:8C:F1:55:BE:B8:EA:2F:38:21:04:48:AD:60:AB
Authority key identifier: 6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
Certificate issuer: /CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Certificate serial: 01935689E2A1DF233BA35EC26D6C787E91AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 01:01:37 +0000
Manifest this update: Sat 23 Nov 2024 01:01:37 +0000
Manifest next update: Sun 24 Nov 2024 01:01:37 +0000
Files and hashes: 1: 9m_gM-9aKg7DOtqVjLo4mmWy16c.roa (hash: jk2b7jreM0RgtDBPZLETOwSfDV7UGdngAwjx5uCw5m0=)
2: a0P3ovQ2ixel4DXOS9km-KFC1os.crl (hash: znMdhwGTKOvY7ppnzZbeNafaS0HQco3OBz6IrwJT/UI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:e2:a1:df:23:3b:a3:5e:c2:6d:6c:78:7e:91:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Validity
Not Before: Nov 23 01:01:37 2024 GMT
Not After : Nov 24 01:01:37 2024 GMT
Subject: CN=15c0f3aa3e4b8cf155beb8ea2f38210448ad60ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:21:da:7f:a8:d7:57:93:03:97:9e:ec:ee:2a:
9b:7d:ee:5d:72:4c:ae:cd:7e:24:19:e3:47:33:8c:
c6:6b:fd:a0:5d:63:2e:ca:69:fe:c7:82:e3:34:5f:
9e:e2:72:e1:4b:91:00:41:6d:30:81:7c:18:1a:7a:
59:ba:d4:be:0d:85:4e:67:c3:fb:7a:89:3c:24:3f:
04:d4:e7:56:0d:6c:6a:92:8f:4a:22:ec:73:65:62:
c9:0d:2f:8f:95:ce:b9:74:0d:c2:7f:21:28:d4:72:
c9:d7:8f:52:fc:50:c8:43:26:3c:59:10:64:ac:b7:
09:18:29:bd:e5:7b:91:2b:87:d2:01:a6:5b:73:b3:
22:6f:a4:78:da:6d:ec:71:bb:fd:09:5d:27:23:ef:
b0:e6:9d:46:34:3f:6f:cc:c8:6f:32:0a:c5:9e:77:
1b:c4:a5:6c:81:bd:c4:f3:61:67:1e:05:5a:45:51:
9b:49:32:5c:cb:0d:df:33:2e:07:1a:a8:bc:6a:a5:
ec:11:a6:0e:a1:b2:6a:fa:e6:ce:d7:a0:f3:c2:54:
84:64:6a:d3:ae:7d:b6:25:84:51:0c:d2:b1:45:22:
85:cf:af:51:66:03:7a:11:ee:bc:a5:8e:fd:9c:1f:
7f:bd:f6:eb:5a:5b:0f:07:f9:7a:dc:b5:5a:9e:cd:
7b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:C0:F3:AA:3E:4B:8C:F1:55:BE:B8:EA:2F:38:21:04:48:AD:60:AB
X509v3 Authority Key Identifier:
keyid:6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:b8:e8:07:a9:c5:25:f8:c7:d8:f1:8d:76:99:41:8e:af:74:
2c:0b:48:6a:2b:9e:bb:b7:00:60:8f:dc:53:a8:3d:4a:c1:f8:
3f:a0:92:20:19:6f:01:de:16:6c:b4:2f:7a:c1:21:a8:25:13:
90:55:c3:1b:b3:cc:5f:51:fb:b2:00:1a:b3:94:25:9a:c3:7a:
0e:47:80:c8:01:c2:34:93:54:0f:8c:3e:01:3a:d2:a1:3e:cb:
4c:5d:49:55:ae:5e:aa:3d:05:91:bc:69:57:75:39:9b:cf:73:
5d:3c:1a:6a:47:61:bd:ef:d4:71:04:48:c8:24:be:de:7e:af:
84:7f:68:d8:c4:3b:36:b8:b2:bd:54:0d:08:21:b5:9a:dc:35:
4a:00:50:07:4a:29:a7:26:c1:7c:a7:4b:8a:8e:16:03:61:b1:
68:af:26:65:55:c8:c0:b6:0b:65:c1:9e:15:74:fb:87:9c:8b:
a5:e9:89:f0:8b:c0:95:64:c2:a9:cd:b2:24:25:53:14:05:66:
42:51:55:ac:37:14:0d:8a:39:18:74:70:b4:29:9c:5c:76:61:
26:09:53:6f:5c:28:44:3b:a6:59:c0:bc:07:19:ba:b4:3a:b2:
77:65:17:ca:43:75:dd:49:ea:d8:b7:09:18:e0:ce:f7:43:b7:
12:9b:06:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:16:28 2024 by rpki-client on console-fra.rpki-client.org