Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier: KVnekEqdL7j73Ugjwm8a6WcPI2AClur5xykwyHiP/ik=
Subject key identifier: 25:41:EF:E4:AF:15:0D:71:3C:EA:FE:55:E3:DF:A8:87:AF:60:87:17
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial: 01936AB4D0249AEF22C09AF23936482A0699
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number: 0462
Signing time: Tue 26 Nov 2024 23:00:54 +0000
Manifest this update: Tue 26 Nov 2024 23:00:54 +0000
Manifest next update: Wed 27 Nov 2024 23:00:54 +0000
Files and hashes: 1: dS06vhn_OGWLfPb2PicMba97w8E.roa (hash: TtxCHJajuqj1fH3tNFboWj0trKHXdqDUJAZ14WLnZwA=)
2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: DibgwUh3aFZjvT75JrIq1rPR61uIWSLX9RRV0Vjm2vA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:d0:24:9a:ef:22:c0:9a:f2:39:36:48:2a:06:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Validity
Not Before: Nov 26 23:00:54 2024 GMT
Not After : Nov 27 23:00:54 2024 GMT
Subject: CN=2541efe4af150d713ceafe55e3dfa887af608717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:43:e2:26:ed:77:4b:f4:4e:db:0f:e7:ee:91:
61:bc:3b:51:dc:35:88:eb:ca:2f:39:1b:92:b9:31:
07:8f:8d:7a:2d:0c:79:a8:ac:69:5d:72:c5:e0:a6:
2b:5a:85:52:2e:0c:54:33:a7:8c:e0:48:c4:d8:bc:
13:89:55:cc:f2:94:d9:90:f6:23:7c:9a:dc:8f:4a:
5e:84:98:48:b5:2c:53:84:e4:59:78:05:29:c2:a3:
ba:79:d5:2c:74:ad:b1:ea:08:21:fd:4f:0f:10:d4:
14:9e:57:b8:6a:ce:f3:fc:79:e8:8b:49:b1:43:d8:
62:26:9d:f1:11:86:a2:62:31:3f:5f:a6:63:ac:91:
4b:69:d1:d5:13:f9:e3:5a:60:15:25:c8:25:23:d6:
c8:ac:6f:78:0f:e0:9b:da:66:8d:f5:e1:63:f5:29:
b3:69:fd:59:02:61:d6:54:de:93:6b:7f:3e:09:46:
07:12:2b:73:1c:f5:88:0b:fc:ac:ac:fe:9e:06:67:
27:8b:0d:37:8b:b8:66:e4:9f:2f:b8:3e:d9:b4:aa:
fb:65:3d:f7:aa:59:be:6b:89:75:b1:b5:24:c9:07:
b7:37:0f:0d:ba:48:6b:4a:b9:39:1b:f4:94:33:dd:
b7:32:64:09:c2:0f:a8:07:6c:85:c1:1d:74:92:fc:
f0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:41:EF:E4:AF:15:0D:71:3C:EA:FE:55:E3:DF:A8:87:AF:60:87:17
X509v3 Authority Key Identifier:
keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:28:6d:d9:a1:3a:c8:4a:0f:d6:51:85:96:a7:ce:cf:ad:a8:
b8:2e:f8:6e:cf:fc:7a:02:07:68:98:3e:2c:bf:01:f8:9f:a7:
a6:b9:da:17:4a:fe:bd:31:0b:9e:ea:c3:23:43:f3:0c:b2:ea:
46:3c:02:d6:5d:a9:9b:94:6d:6f:7b:dc:ef:d9:20:1f:0f:2f:
6f:b1:c9:4d:49:02:2f:ab:bb:83:24:44:7c:b5:36:a4:69:3d:
ad:ce:4c:90:24:a5:5a:e1:2e:f8:3c:92:57:23:df:99:d6:6a:
dd:35:4d:5a:98:d5:12:7d:da:e0:d6:dd:6e:98:8f:3b:c7:5c:
b1:19:ad:94:1d:00:90:25:36:a5:65:4d:8b:16:6a:b0:6d:27:
62:0c:88:f8:af:a6:78:2b:e0:ce:d7:d7:eb:0e:3c:92:9d:2e:
8b:6a:96:34:0f:9a:cd:8a:67:48:1b:00:06:5d:ed:49:e5:c0:
2f:4a:66:06:70:e2:fe:ad:9d:a9:65:a6:cc:e8:da:91:98:18:
1f:91:af:83:58:b3:91:56:2f:c8:08:1e:1c:b7:ce:3e:e8:5f:
70:ca:22:99:3f:d0:02:44:bc:28:51:92:bd:4f:9a:17:9d:cd:
cd:0e:38:58:b7:93:51:3c:68:4e:f7:4e:68:fa:07:94:8b:0d:
a6:b3:3e:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:35 2024 by rpki-client on console-ams.rpki-client.org