Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
File: lN7qVibZ6DJkDx7N9_i7clckCEc.mft (raw, json)
Hash identifier: 7Vzr8pM+trv3iRFJEdaEcQQqSWe4hCaTUxPGnAFG6Cs=
Subject key identifier: 24:C5:41:D5:82:A6:EF:FC:17:2A:9D:1D:00:67:69:F4:95:80:53:03
Authority key identifier: 94:DE:EA:56:26:D9:E8:32:64:0F:1E:CD:F7:F8:BB:72:57:24:08:47
Certificate issuer: /CN=94deea5626d9e832640f1ecdf7f8bb7257240847
Certificate serial: 0193670E99109BFCE1B83731A3F6B2EE880E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
Manifest number: 086D
Signing time: Tue 26 Nov 2024 06:00:30 +0000
Manifest this update: Tue 26 Nov 2024 06:00:30 +0000
Manifest next update: Wed 27 Nov 2024 06:00:30 +0000
Files and hashes: 1: lN7qVibZ6DJkDx7N9_i7clckCEc.crl (hash: hqQXx9t7wTeiZnRdfTuRAtHoQ6zxUPB7lA4tYYVmhHc=)
2: w5L3U8w9DvYrm3gKtN5L67YpgVk.roa (hash: 8gzrK7a9VY/OBNpk0fQ30Tn+mhFDwqK6C2GbbWrIGOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:0e:99:10:9b:fc:e1:b8:37:31:a3:f6:b2:ee:88:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94deea5626d9e832640f1ecdf7f8bb7257240847
Validity
Not Before: Nov 26 06:00:30 2024 GMT
Not After : Nov 27 06:00:30 2024 GMT
Subject: CN=24c541d582a6effc172a9d1d006769f495805303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ff:51:a7:70:ea:70:1f:95:aa:5c:e0:f5:13:
47:91:ff:58:e8:c8:2a:c1:0a:a0:e7:9f:bc:7e:b0:
57:cc:f4:b5:e3:a2:51:48:c5:db:a8:3d:41:31:a8:
76:4b:d3:7d:1c:3e:ae:8a:43:e9:70:e0:7e:c7:c8:
99:82:17:b6:40:d4:48:6e:3c:23:80:e6:49:f9:49:
f4:d6:1e:31:d1:9c:09:c7:7f:5f:5a:16:20:72:71:
3d:38:13:17:a7:17:c6:1c:e3:f1:32:fe:29:a9:de:
1d:34:c5:af:72:64:d0:9d:d0:d6:84:78:5b:2d:91:
d0:81:e1:f2:9c:ec:0c:6c:9e:d1:82:48:41:5e:83:
be:6a:41:05:74:a9:9c:77:b1:40:50:1d:91:14:1e:
11:a8:07:1d:26:13:1d:80:ad:15:53:7d:ac:ef:b3:
f4:c3:43:42:ec:cc:b7:fc:b9:21:9e:75:95:44:86:
87:f0:a2:3f:3a:29:32:b9:34:4f:e3:ab:75:fa:9f:
11:bf:1a:51:67:8c:df:ca:20:f2:eb:6e:c4:1e:a1:
13:b2:2a:13:3c:61:34:c3:c6:40:ab:d0:dc:5c:b7:
08:ed:c0:15:97:6c:f8:d0:36:3d:90:a6:5f:2c:cd:
1b:66:5f:b3:11:33:ab:ad:9b:7a:94:91:fc:73:cc:
87:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C5:41:D5:82:A6:EF:FC:17:2A:9D:1D:00:67:69:F4:95:80:53:03
X509v3 Authority Key Identifier:
keyid:94:DE:EA:56:26:D9:E8:32:64:0F:1E:CD:F7:F8:BB:72:57:24:08:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lN7qVibZ6DJkDx7N9_i7clckCEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3447dd-8dc4-405d-9c0b-6ffc5d9e0fed/1/lN7qVibZ6DJkDx7N9_i7clckCEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:0d:37:76:bc:05:cb:ff:56:df:21:ab:c8:39:5d:57:fe:1b:
58:9d:11:4d:f0:04:30:23:2c:47:73:ef:06:88:28:08:9c:41:
83:bf:24:2f:82:34:59:97:21:9c:29:32:06:a9:c3:1d:64:c1:
be:5c:86:2e:c2:2c:b6:9d:61:a9:b4:b5:84:47:e4:b6:95:d2:
a7:3e:b1:3c:a4:78:05:e3:69:fa:6f:7b:bf:ab:08:d2:e7:e3:
c7:6b:0a:09:19:3e:7c:b2:cc:d2:5c:80:e1:95:9b:70:b6:26:
b2:cb:3d:b2:9a:08:9e:54:af:df:db:c4:d5:f2:60:aa:7b:76:
cb:41:fa:20:4e:3e:bf:04:02:81:81:33:c2:07:11:a5:4a:48:
82:cb:80:74:96:54:4f:b9:eb:93:2e:73:aa:c2:8f:8b:b2:b5:
e1:f3:ba:89:98:40:9b:01:58:82:c3:28:8c:b0:40:0d:36:c6:
d7:c8:5f:dd:26:76:9b:45:c2:f0:ad:c2:37:11:7a:f3:4d:08:
9b:3f:15:8d:a3:a0:45:1b:22:8e:b3:bf:c5:84:b2:63:18:2c:
4d:a3:bf:12:09:6b:e4:f7:03:ed:6d:06:88:06:09:3f:c5:3b:
96:7f:4a:aa:f9:47:0c:20:4f:14:a0:2f:9d:50:ac:7f:44:97:
d1:08:f5:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 07:12:16 2024 by rpki-client on console-ams.rpki-client.org