Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
File: ioNVXKoizpubFoNQOhTjzdg24Bs.mft (raw, json)
Hash identifier: vNeXYoQUUmwYh8tl3shD8bkgxq4LUIkzrBTfm5hsmio=
Subject key identifier: 73:3A:99:C6:15:00:D8:B7:B7:17:6F:EF:42:5E:C7:2F:5D:CD:FA:ED
Authority key identifier: 8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
Certificate issuer: /CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Certificate serial: 019356F6DE9ABB0551BC625DE33B7C77A9C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
Manifest number: 0BDE
Signing time: Sat 23 Nov 2024 03:00:39 +0000
Manifest this update: Sat 23 Nov 2024 03:00:39 +0000
Manifest next update: Sun 24 Nov 2024 03:00:39 +0000
Files and hashes: 1: 1-XCqISZJPfKDpFkpalYSd6LpAoY.roa (hash: qUtLSGTTd9gqoQAspn2hpA3niynFE7ux4oURcpo7Ujo=)
2: ioNVXKoizpubFoNQOhTjzdg24Bs.crl (hash: XmQsvCSJT9kuMo+qNAjwNefqxR4QfpkvV6M6kqeu2po=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:de:9a:bb:05:51:bc:62:5d:e3:3b:7c:77:a9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Validity
Not Before: Nov 23 03:00:39 2024 GMT
Not After : Nov 24 03:00:39 2024 GMT
Subject: CN=733a99c61500d8b7b7176fef425ec72f5dcdfaed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d1:06:1f:ff:8b:57:7d:a9:04:bb:83:35:e2:
80:15:1b:cf:9d:d6:2d:a5:56:d3:33:d2:52:d8:01:
7b:bb:ab:3e:66:b1:a0:50:64:c2:37:a4:89:a2:a9:
2c:f8:34:19:4e:4b:3a:7e:86:02:ab:b4:78:6b:4b:
89:88:ca:65:d1:6e:31:94:ea:27:de:3e:7c:d4:eb:
3b:de:c6:ce:54:3e:cf:eb:ad:ab:66:1e:a7:00:69:
77:71:2a:aa:57:a3:7f:e8:fe:40:19:87:43:b5:90:
8d:b4:28:b9:31:3f:60:dd:2e:b5:10:9c:ad:63:2f:
a8:33:dd:fe:4f:0e:f1:95:a5:8d:2d:1e:ce:5c:03:
a3:90:ec:be:52:9d:08:94:a4:a4:0e:f7:b2:28:39:
b3:f1:f8:bc:54:83:8d:60:d9:4a:e9:49:58:c6:13:
60:ae:ef:49:46:58:50:f7:28:97:68:ac:f5:bd:04:
65:e4:e3:0b:89:6e:82:22:54:36:81:45:dc:91:9c:
21:0c:7c:ee:fa:8b:4f:3b:c0:43:c6:56:d6:0b:65:
3f:23:b5:86:7e:ee:06:d8:42:97:aa:f9:3d:91:9f:
86:79:d0:4c:c7:eb:37:6f:c9:ac:e3:f4:4e:9d:2f:
23:7c:73:a1:35:d8:e1:2a:67:44:2b:15:f6:b6:d8:
dd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3A:99:C6:15:00:D8:B7:B7:17:6F:EF:42:5E:C7:2F:5D:CD:FA:ED
X509v3 Authority Key Identifier:
keyid:8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:15:d2:cc:ae:62:d7:67:ed:f8:08:80:42:57:53:c5:e8:95:
8c:c0:e6:36:33:53:de:66:06:93:78:e3:7a:2b:cc:55:da:ba:
d6:e1:10:69:b1:86:07:53:b8:90:e3:12:23:f8:64:56:f2:eb:
88:d8:1a:a3:a4:7f:a5:e5:03:68:b2:10:5c:b8:30:f2:a1:d7:
a3:42:89:df:90:f1:4a:3e:f6:84:2b:f9:ef:5f:c4:cb:96:e0:
c7:aa:04:9b:1f:33:0f:35:ed:52:ea:21:fb:d6:b2:e8:7a:9e:
62:3e:81:10:65:fc:cc:1a:f5:f0:02:4a:ae:d6:2e:40:30:02:
fe:f8:9d:92:b0:ba:9d:aa:bd:eb:47:db:bd:cc:4a:a3:2e:1b:
d2:83:a0:9e:56:04:9a:03:c3:d2:33:e9:32:f6:ab:7d:ab:e9:
b1:d8:ef:eb:18:fb:86:50:03:79:dc:16:c3:00:a8:af:19:ff:
1b:4f:ad:4a:28:86:08:b4:c0:f5:67:bb:6f:e4:cf:0a:39:ad:
f5:2b:6e:5a:e9:0f:77:3a:5f:b5:cc:51:4c:0a:23:3c:6b:b1:
be:26:ad:81:10:1b:f2:ca:ac:6e:c2:e8:15:bd:da:80:ca:15:
ce:8e:c2:66:58:8c:a4:07:2e:84:4a:b2:30:43:bf:d6:9a:80:
a8:26:d4:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:59:15 2024 by rpki-client on console-ams.rpki-client.org