Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
File: c4DHWfVY-ca-iN0iakOdmcnqzww.mft (raw, json)
Hash identifier: TBOVV/XnELNNx6+/NE9IMZdrDZfNUy2DwIXCbYcpo4A=
Subject key identifier: DE:87:7F:47:9C:CD:9E:F3:68:90:2E:D4:8D:DA:80:64:B3:BE:3B:D2
Authority key identifier: 73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
Certificate issuer: /CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Certificate serial: 0193572E02088D7641D8D99B0FF4ADDE4480
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
Manifest number: 0AA2
Signing time: Sat 23 Nov 2024 04:00:53 +0000
Manifest this update: Sat 23 Nov 2024 04:00:53 +0000
Manifest next update: Sun 24 Nov 2024 04:00:53 +0000
Files and hashes: 1: b29jwASOcX8giqKYja-ndLLxVbs.roa (hash: LbX4Rx8by/KH3kL2uZ7wj6X06ELDVJ80czTwcO0ue6A=)
2: c4DHWfVY-ca-iN0iakOdmcnqzww.crl (hash: JxZ0RqBHu4ETkDuFbiPCFz/zcyPmxReCHSzq0E0xqZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2e:02:08:8d:76:41:d8:d9:9b:0f:f4:ad:de:44:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Validity
Not Before: Nov 23 04:00:53 2024 GMT
Not After : Nov 24 04:00:53 2024 GMT
Subject: CN=de877f479ccd9ef368902ed48dda8064b3be3bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:53:85:6c:7a:6d:5d:ce:55:d9:8b:38:27:6e:
27:29:29:5b:78:95:58:52:80:91:53:1e:61:cf:90:
cb:c5:cd:27:36:7f:94:44:a7:af:81:a5:d7:9b:71:
dd:d4:b6:1e:e6:b2:95:cd:8f:69:ec:78:70:2d:79:
37:ae:e2:00:07:19:2e:3b:1c:85:a4:57:f6:0c:c2:
dd:76:35:ed:e8:86:81:5f:de:13:10:47:d9:96:36:
b3:97:f1:97:d8:91:c7:96:17:eb:73:97:d4:75:7e:
5d:ec:88:80:e2:b4:fc:91:8e:78:29:42:a1:ca:bd:
b7:ff:26:40:a7:ac:27:d7:45:d9:f6:79:a4:18:1a:
37:00:74:06:37:ea:2a:ea:aa:fc:88:95:02:7a:67:
ca:0b:b0:59:a4:dd:04:b2:98:9f:6c:b3:45:a3:2b:
c0:3d:de:fe:9b:cf:bf:f2:6b:ab:f9:fa:bb:41:01:
a6:83:e7:49:c4:6e:ef:1c:25:08:5b:66:5f:38:f0:
da:da:c2:00:2c:b5:01:17:cc:74:3b:95:dc:cf:59:
ed:08:c9:49:be:d6:3b:82:2e:46:4e:f9:04:ae:e7:
08:4c:2d:9b:57:e3:fd:c2:74:a2:14:16:93:3b:73:
8b:b5:38:36:72:da:5e:30:95:bf:42:d2:86:d9:75:
8c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:87:7F:47:9C:CD:9E:F3:68:90:2E:D4:8D:DA:80:64:B3:BE:3B:D2
X509v3 Authority Key Identifier:
keyid:73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:e8:52:76:fc:19:e0:12:29:46:d6:94:b7:88:17:ec:79:0d:
c7:1d:88:7f:69:1e:91:11:2a:63:ad:ea:83:5a:e9:87:6d:da:
db:a5:ee:50:5b:30:07:b4:89:1c:41:c0:c0:ec:bc:45:cc:34:
c0:51:fd:a1:77:15:7a:40:75:df:a0:3e:bb:57:4c:c8:7a:18:
96:f0:fe:49:6f:52:9a:ed:4d:3b:89:4b:b0:6d:36:9c:a9:70:
80:6a:f1:1b:b4:ee:92:98:f5:3a:07:c8:60:85:d4:22:09:e8:
16:5a:d4:7b:94:e6:ec:a9:a0:a0:be:30:ad:11:db:51:24:a2:
c3:56:d6:d6:71:46:74:db:b6:bb:4d:6f:3d:f0:fc:19:b2:d9:
4c:89:c7:7f:19:9a:2d:d9:37:31:8e:85:b8:84:86:e8:d4:9e:
1e:4f:bd:7e:9b:bc:ab:50:b9:f2:f6:96:a2:e9:74:1e:80:c8:
ba:7c:ac:c2:a0:b3:ee:1d:a2:1a:a2:14:fa:a0:23:11:cd:8b:
99:28:28:69:eb:79:3e:04:63:3b:cd:ac:9f:6e:26:01:8a:38:
85:62:3e:41:42:0c:65:ed:16:9f:01:f4:d1:4c:63:46:13:0c:
cc:a0:41:33:b3:37:c0:59:07:0a:7f:9e:97:88:ac:b3:a3:d1:
2f:f6:85:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:59:11 2024 by rpki-client on console-ams.rpki-client.org