Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
File: dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft (raw, json)
Hash identifier: Qq238YBBLYtdrj4604DFM48digYdGnG2jMkpa11O2mY=
Subject key identifier: BA:25:A4:C1:25:3B:EC:4B:BF:5D:03:3D:8D:8D:A7:AA:38:9F:8E:E4
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial: 019352ADF9E4233EA92EA3031AAC0008FD79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
Manifest number: 0BD5
Signing time: Fri 22 Nov 2024 07:02:33 +0000
Manifest this update: Fri 22 Nov 2024 07:02:33 +0000
Manifest next update: Sat 23 Nov 2024 07:02:33 +0000
Files and hashes: 1: LrF3ewaN8xxSarIZBXtlZ64Mqeg.roa (hash: a9UBgfue1DKLR8rhYrlpbM0Y6A4cQI95IYECkqL8JtM=)
2: dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl (hash: q0tfOr0SEvC/kZBSq75rvvKB5D41b7ZeJUlPdXZLbyU=)
3: mbj28Jx9W9INLE-UFpkvLEfBgcs.roa (hash: +OwCe8JKDVl9lE7VOvg2tZ4bINXy29UP4lkgd5iSV/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ad:f9:e4:23:3e:a9:2e:a3:03:1a:ac:00:08:fd:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
Validity
Not Before: Nov 22 07:02:33 2024 GMT
Not After : Nov 23 07:02:33 2024 GMT
Subject: CN=ba25a4c1253bec4bbf5d033d8d8da7aa389f8ee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:14:4a:15:20:bd:b1:81:f3:3a:7e:48:3e:e5:
70:59:ab:17:10:2e:f6:b4:38:fe:64:60:1f:21:aa:
e5:f8:3e:cb:be:e2:2f:ce:9b:c2:93:ef:52:44:aa:
ff:3b:9e:a7:50:83:be:b3:de:90:90:fe:2b:66:1a:
6b:03:0e:f4:03:a3:6c:eb:34:cf:cd:f6:c9:fd:65:
39:22:9d:f2:13:b4:4f:7f:f5:7e:c3:30:f9:c8:41:
d2:ea:8f:13:f4:4f:27:a7:41:30:44:f0:c2:17:f0:
0c:86:34:4b:c7:b2:dd:a7:cd:11:8f:83:09:af:75:
75:c9:60:55:d3:27:f2:94:14:a2:10:df:96:dd:f1:
6b:61:84:76:be:7c:5b:0b:0f:23:c5:ea:04:ee:a4:
94:06:4e:a7:ba:5c:36:c5:d9:54:57:68:0e:78:0b:
1c:02:51:31:11:44:89:f4:bf:4b:b7:29:0a:2a:6b:
6b:ee:e2:18:22:98:4a:d2:3a:1b:b4:12:65:9f:1d:
f5:bd:3f:06:f0:ac:d2:dd:0d:39:69:32:26:e2:04:
4b:e6:f1:fc:77:90:5e:ff:88:b0:29:04:b4:1a:40:
e5:b7:ec:c1:93:b3:c2:5f:55:06:df:85:84:73:7d:
5c:6d:c4:85:0e:e4:00:c2:de:c8:24:95:0d:94:66:
c6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:25:A4:C1:25:3B:EC:4B:BF:5D:03:3D:8D:8D:A7:AA:38:9F:8E:E4
X509v3 Authority Key Identifier:
keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:3a:48:78:28:c1:e8:f8:c0:b2:63:44:ff:ac:98:08:4a:16:
c6:78:bf:26:70:57:62:8a:de:4d:f9:5e:93:64:cf:df:3d:0a:
39:9d:43:3b:7f:d9:ca:e6:0a:11:1b:0c:c4:b8:71:6f:c1:fa:
62:8a:a8:e5:86:5f:92:3b:65:db:c1:e9:aa:c9:dd:c3:9a:7a:
ec:ce:d9:2c:12:4c:ef:2f:82:b2:86:82:75:1f:97:d4:08:7b:
b5:5d:27:53:42:07:90:5d:90:f0:00:0f:53:40:b2:ae:2c:6d:
82:c6:8f:4c:3b:62:8e:c4:25:28:2b:f6:92:e6:c3:62:e3:04:
42:72:44:ea:23:19:0e:cd:b3:8f:9e:d2:d8:fd:15:e7:91:e3:
de:12:d5:3b:5e:25:e4:2c:30:e0:49:ca:6b:76:8e:f4:25:8e:
bd:f1:73:17:7d:1c:e1:7b:21:00:2e:83:d6:b9:e1:7a:a7:0a:
96:10:6d:55:3a:a5:75:3d:84:48:7e:36:4c:d7:00:e8:59:d1:
08:f7:4a:1f:cf:8a:c2:c7:f0:7c:b9:ac:30:46:e5:aa:27:64:
2b:65:1d:f0:6a:bf:1c:f0:1f:0b:65:c3:cf:a4:b5:9e:37:c8:
f1:a4:fd:dd:51:53:c0:e0:16:1b:1c:33:59:14:a6:bb:31:7c:
1d:a9:b1:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:00:41 2024 by rpki-client on console-fra.rpki-client.org