Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
File: lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft (raw, json)
Hash identifier: DOChela1sp8Hrd0EjXMLJhkB2S/5tV093yp0W/LOtBw=
Subject key identifier: 83:07:CA:30:F5:3D:5A:2A:A3:C8:EA:27:5A:E0:01:6B:25:65:05:BB
Authority key identifier: 97:1C:78:B3:05:FB:49:CB:D4:00:5D:44:27:C1:F6:2C:6A:45:5A:68
Certificate issuer: /CN=971c78b305fb49cbd4005d4427c1f62c6a455a68
Certificate serial: 01936A46B615BE24E1429FD50B83454FF2AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 21:00:39 +0000
Manifest this update: Tue 26 Nov 2024 21:00:39 +0000
Manifest next update: Wed 27 Nov 2024 21:00:39 +0000
Files and hashes: 1: L9l2WKuLS0IL4iJjW9I7LF5mqDQ.roa (hash: o5KgkcatAJwBk6xXwvqwrJnk519QYfgetKFADDg05Ww=)
2: foDU7Clw2KLrV9JWfG1I9w_ZHZA.roa (hash: orFqcHmUANejTrXnfsYZ5Pg0X1LwuOFCzjCW+txtEas=)
3: lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl (hash: m1GBbepSY7FXpJCEr0GTHsxboSc68/tKVF56y/0NuCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:46:b6:15:be:24:e1:42:9f:d5:0b:83:45:4f:f2:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=971c78b305fb49cbd4005d4427c1f62c6a455a68
Validity
Not Before: Nov 26 21:00:39 2024 GMT
Not After : Nov 27 21:00:39 2024 GMT
Subject: CN=8307ca30f53d5a2aa3c8ea275ae0016b256505bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1d:9d:84:6b:8b:f2:b3:66:e0:4a:5b:b5:79:
c6:0a:4e:49:49:6a:be:27:be:20:bc:08:6f:e7:8a:
2e:fd:fa:85:c2:c4:58:05:60:61:05:6d:6c:07:08:
96:0c:a8:22:2c:cd:53:f3:7f:26:c3:41:76:0d:f9:
04:58:f8:e6:f1:f5:5d:68:fa:45:e6:03:bb:c0:d8:
76:6d:a6:82:ce:0a:b2:c0:62:dc:7e:c4:05:ed:db:
07:83:52:df:3e:66:65:2a:90:4c:b3:58:fa:ad:28:
9e:ad:5a:2e:c9:73:1b:c6:d6:2e:cc:df:42:80:80:
31:29:d1:4e:9a:03:90:d4:66:14:7e:9d:68:11:21:
48:df:67:6b:03:50:0a:c2:7a:02:06:05:cc:de:e9:
ba:42:a1:7a:81:14:49:41:d5:6d:ed:bd:e7:c9:f9:
76:8f:f2:9b:57:2a:33:b7:7f:95:88:c6:45:aa:bd:
e4:f8:5e:ff:0e:f7:2f:32:b6:ac:4f:3d:d7:5b:9b:
26:2d:9a:ff:05:dc:a7:db:3c:53:99:4b:42:ab:f3:
08:69:a2:5a:d3:64:64:b3:0f:0b:57:26:31:73:30:
af:a5:55:3b:cc:e4:02:e2:ff:83:50:f5:9f:df:bc:
eb:df:d0:a4:b4:09:4a:cc:b2:ca:3c:de:b8:f0:3f:
64:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:07:CA:30:F5:3D:5A:2A:A3:C8:EA:27:5A:E0:01:6B:25:65:05:BB
X509v3 Authority Key Identifier:
keyid:97:1C:78:B3:05:FB:49:CB:D4:00:5D:44:27:C1:F6:2C:6A:45:5A:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lxx4swX7ScvUAF1EJ8H2LGpFWmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/df3a15-2e49-4d8e-855a-1c2758651efa/1/lxx4swX7ScvUAF1EJ8H2LGpFWmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:e7:e1:d6:27:a9:25:d7:67:2b:8d:51:a6:ab:48:af:a6:3d:
de:c8:49:f9:66:8f:49:8a:10:b0:f4:77:e8:ec:b9:cd:8c:01:
51:19:03:6f:cc:e5:65:cc:d0:41:b9:64:2d:c0:ed:1d:ba:b1:
cb:ac:04:a7:51:6e:db:6f:3f:f7:47:10:54:fb:44:58:0f:79:
e2:59:7c:49:8a:5e:ec:3a:e5:23:93:bc:e3:2a:4c:e2:f6:11:
85:57:20:41:81:53:56:04:81:4b:48:cc:02:d3:b6:e0:e6:32:
ba:47:9c:7c:27:8d:87:75:76:6f:e7:82:4c:93:b6:fd:66:ab:
d9:6a:7f:b6:4a:20:cd:09:8e:8f:1a:55:35:90:9e:59:10:8a:
d5:ba:52:17:b7:6d:87:9a:45:b1:79:e4:3c:b7:95:c0:7d:8e:
db:85:50:b4:d7:7b:87:8c:20:51:5e:99:f1:e5:97:cb:b6:30:
08:7c:a4:2e:be:ea:fc:ba:fc:ba:18:80:84:d3:36:cb:47:ab:
77:a0:64:25:5c:3c:c2:39:c9:d6:f8:57:af:82:6d:88:59:02:
fa:fb:d9:32:47:f4:b2:14:96:1a:02:ef:cc:b6:56:b9:74:72:
91:34:8f:29:07:82:40:4b:b1:39:96:19:ec:ff:7b:b9:a6:5a:
36:0c:37:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:02:41 2024 by rpki-client on console-fra.rpki-client.org