Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
File: 2AtWXXc2dT2-f2YkvfHSvBiW98A.mft (raw, json)
Hash identifier: vVEaKps3eP3B+sYnhnlNlO77QGU+HoNn+i2ORv+eivY=
Subject key identifier: 86:8F:19:C1:79:19:12:6D:8E:11:61:EF:3F:3A:1A:65:6C:E7:0E:A0
Authority key identifier: D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
Certificate issuer: /CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Certificate serial: 0194064720F026C0CE632AD44655568738C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
Manifest number: 0D27
Signing time: Fri 27 Dec 2024 04:01:52 +0000
Manifest this update: Fri 27 Dec 2024 04:01:52 +0000
Manifest next update: Sat 28 Dec 2024 04:01:52 +0000
Files and hashes: 1: 2AtWXXc2dT2-f2YkvfHSvBiW98A.crl (hash: fpIIl0J9G7gD5/Zo/nKLTe3KJ3MVMqz1Di3z0YrtioY=)
2: ldBqwZxqjRhjUom118RK80ySq6Q.roa (hash: Wm1IbQsteTdn7Wq8dDE23d9TNbkR4VcSoBkU4CuNLCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:47:20:f0:26:c0:ce:63:2a:d4:46:55:56:87:38:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Validity
Not Before: Dec 27 04:01:52 2024 GMT
Not After : Dec 28 04:01:52 2024 GMT
Subject: CN=868f19c17919126d8e1161ef3f3a1a656ce70ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:95:b2:d3:66:2c:09:c1:56:b5:05:5b:00:97:
83:4b:ac:da:0f:90:96:72:2b:04:97:32:51:43:b4:
12:93:2a:95:0a:e5:15:e0:56:13:7e:56:4b:be:fd:
29:5c:3b:52:16:39:dd:f0:1f:c0:5a:3f:10:5c:80:
67:8f:d4:8c:91:cf:4c:e5:7f:79:81:32:4d:02:fa:
5f:88:1e:a2:c6:ff:1d:68:06:23:81:24:87:d5:b1:
c0:79:39:29:30:f9:5f:1e:56:75:a4:2c:b7:5c:6a:
86:17:32:99:28:21:98:57:4c:9b:df:f2:74:1c:2c:
b3:7e:2b:67:e5:82:9b:74:9a:85:e8:fe:87:31:bd:
e2:17:86:7f:47:b2:c8:f3:2c:5b:c3:e0:d1:b5:11:
ce:dd:39:cf:1b:2e:30:dc:5c:b5:c0:c7:c5:3d:ab:
30:c5:0e:aa:01:34:71:3e:1b:ab:63:c5:e8:6b:db:
f9:2c:8c:34:a3:7c:b5:e8:18:9e:b3:6e:19:c5:4d:
2d:39:1d:42:4f:ef:bc:a4:39:5c:ea:63:dc:3a:0b:
a8:ed:5e:5e:6b:61:f0:cb:24:ed:41:c5:29:e4:6a:
27:4d:d2:17:82:f1:c6:7d:eb:8c:5c:ed:54:96:54:
a0:e4:de:1e:2d:e9:a4:37:3f:b2:24:8e:84:0a:17:
82:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8F:19:C1:79:19:12:6D:8E:11:61:EF:3F:3A:1A:65:6C:E7:0E:A0
X509v3 Authority Key Identifier:
keyid:D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:b3:bc:f8:29:82:d8:3e:6f:e6:17:75:38:c6:49:1f:99:b7:
23:df:52:14:9b:45:dc:2e:d5:c1:7b:04:44:c0:ab:75:c8:13:
90:e2:08:97:5c:1f:d1:ec:ae:ab:6c:29:42:25:81:74:c2:75:
b0:9b:68:f2:a3:95:0f:9c:dc:c4:9d:e1:96:d7:2a:7f:81:41:
1e:97:9f:e6:70:04:ee:15:58:42:c3:ae:d9:33:9a:19:e8:06:
59:51:56:ce:f0:68:ef:2c:58:6c:93:e3:0e:54:0e:a2:53:a2:
d2:ea:63:b6:c2:96:60:29:f7:7d:d8:8e:8b:64:02:f1:b7:74:
65:01:9d:08:b6:cd:21:ce:14:39:4a:bd:37:88:ef:f1:e8:9e:
f5:15:f8:60:c6:f9:25:53:67:8d:1d:23:76:39:db:4c:fc:7a:
ee:49:2e:63:80:d6:9f:eb:dd:7d:e3:1d:36:38:fb:ae:3e:46:
01:a3:1b:ab:69:34:31:24:6d:0c:b0:91:54:5b:0b:2d:1c:25:
a2:a0:bf:bb:26:3b:41:59:91:86:e8:77:44:3e:7b:4a:79:e7:
a0:34:d2:68:ea:81:ee:c3:44:d1:e4:92:c0:c4:13:cc:33:c3:
50:d2:87:24:90:8d:24:e6:23:3b:e4:53:85:01:60:d3:93:80:
57:9c:d7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:04:08 2024 by rpki-client on console-ams.rpki-client.org