Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: uOVG4Z4xkQIgyGi3WWsSZFRLbjPkK7orY04p3CFG4p8=
Subject key identifier: F5:2B:38:1E:C7:D1:7D:62:A4:6E:11:4F:7A:D6:E9:D4:68:EA:3D:95
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 019359C0EDEA2BB0D86DB1A0DAA83E77D556
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 05DC
Signing time: Sat 23 Nov 2024 16:00:36 +0000
Manifest this update: Sat 23 Nov 2024 16:00:36 +0000
Manifest next update: Sun 24 Nov 2024 16:00:36 +0000
Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: 26tZrOV5nMOZ/nZ8QYVOl5qljJmh/1KgACVfhZsjYk4=)
2: jV7hKj2mwJiYMkjowu_Az2iONak.roa (hash: +OGWq4TXSrAbFA6t7QZIKqlSuPUiSW9C334KAFNO0G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:c0:ed:ea:2b:b0:d8:6d:b1:a0:da:a8:3e:77:d5:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Nov 23 16:00:36 2024 GMT
Not After : Nov 24 16:00:36 2024 GMT
Subject: CN=f52b381ec7d17d62a46e114f7ad6e9d468ea3d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:86:7e:bf:58:49:0f:a6:c2:4b:b0:c8:2e:01:
26:a2:ac:2b:65:45:63:b4:14:c3:12:48:31:64:e9:
af:2d:19:0b:68:83:09:28:84:db:dc:64:87:af:68:
9c:98:32:d2:21:f3:c9:31:91:3c:a2:2f:c5:6a:64:
44:14:e3:fd:9d:92:0b:75:d6:ad:1b:91:a8:90:2c:
24:d5:21:d2:c9:81:7a:d7:6d:b8:15:3c:46:98:07:
24:10:bc:18:e9:ae:1d:65:ca:43:b7:35:7e:d8:05:
6c:7b:4c:84:17:6f:0b:00:97:00:19:b4:4a:bf:4c:
23:65:94:f0:16:4a:12:8c:7b:96:97:79:cc:d6:42:
d3:c1:c0:e3:92:27:2c:bb:ee:4e:42:e7:7b:d3:46:
95:45:24:68:1f:d1:bd:c8:df:f7:72:85:c0:88:bd:
a3:93:f0:ae:22:bb:ba:a0:d2:6d:33:15:14:84:d4:
05:ca:5b:de:e7:6e:63:44:67:c3:8f:99:65:51:c2:
4d:3a:81:60:cb:cc:b2:0d:7e:64:14:f4:e2:19:a9:
4c:26:6f:7e:e0:e4:b1:e0:b4:a1:b4:91:ee:48:17:
23:3c:13:de:e1:87:b0:28:4a:ea:97:f4:67:65:2a:
40:34:08:c8:f9:18:64:1b:50:ed:c2:e8:9f:cf:43:
16:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2B:38:1E:C7:D1:7D:62:A4:6E:11:4F:7A:D6:E9:D4:68:EA:3D:95
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:ce:03:3f:c8:bf:18:de:f0:a8:d6:78:7c:ad:7c:01:62:5d:
26:ce:3f:01:30:84:7d:56:aa:f1:6d:51:2e:9f:8f:c4:ae:e4:
2e:4b:6e:ae:73:34:f2:c5:b1:f1:73:0d:1f:68:66:ba:e8:e4:
3c:a4:95:2c:cf:7e:22:83:c2:6a:0c:ea:13:fa:d9:14:2c:87:
28:b9:4a:17:00:1f:d3:d0:cb:f8:69:57:62:d4:22:c7:53:79:
55:6c:50:60:85:33:66:d0:e9:d2:f3:e6:d7:a2:d3:7a:d0:c6:
3e:08:36:a1:1d:58:58:73:82:f8:3d:e8:f4:3a:c6:ec:67:94:
7a:09:29:87:b5:94:40:37:72:b4:43:5a:a8:f4:53:2f:a0:6d:
d2:25:17:bf:2b:47:60:35:d6:5c:01:06:1b:6d:f9:b4:1e:3d:
c7:62:d2:94:79:13:5c:af:51:cd:0c:12:00:7e:fe:86:a1:b2:
0c:ad:da:c2:48:38:04:b3:2b:83:50:20:33:a0:a8:9e:da:88:
e5:d3:6e:3f:79:5f:ba:93:0f:9f:f3:ad:17:2b:a2:00:6c:43:
c3:8d:2e:53:7b:94:c6:7b:b6:1d:0f:9c:98:e1:c0:51:08:9b:
61:44:e3:6d:9d:64:9c:52:72:de:71:11:3e:da:b8:27:d3:1c:
70:9c:66:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 18:46:53 2024 by rpki-client on console-ams.rpki-client.org