Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
File: rlAYJxRKMYi-oczuWGVv1kKdj5U.mft (raw, json)
Hash identifier: zcpzCajE0lajd6ndCqCCeXwpyLIqEDJh5tqs2GseIDU=
Subject key identifier: C8:B6:13:29:67:1F:CC:46:D9:5D:67:42:98:99:D9:56:F5:AB:76:46
Authority key identifier: AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
Certificate issuer: /CN=ae501827144a3188bea1ccee58656fd6429d8f95
Certificate serial: 01938C9BC623CED5332B07A33902F8FCABC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
Manifest number: 1391
Signing time: Tue 03 Dec 2024 13:00:39 +0000
Manifest this update: Tue 03 Dec 2024 13:00:39 +0000
Manifest next update: Wed 04 Dec 2024 13:00:39 +0000
Files and hashes: 1: 7TJHC85CIV8tyox3k59tomJvvA0.roa (hash: VBtEJSEAHOxod5wyem4xokQgyq2vHo7Hnvmh7eLGwIM=)
2: rlAYJxRKMYi-oczuWGVv1kKdj5U.crl (hash: O+dCJEtk1rsxGLkMt0+XUmxIZoOacevYcgsAkDsItMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 13:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:9b:c6:23:ce:d5:33:2b:07:a3:39:02:f8:fc:ab:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae501827144a3188bea1ccee58656fd6429d8f95
Validity
Not Before: Dec 3 13:00:39 2024 GMT
Not After : Dec 4 13:00:39 2024 GMT
Subject: CN=c8b61329671fcc46d95d67429899d956f5ab7646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:db:51:37:87:14:38:75:3d:b2:37:3b:ed:
d7:d3:1f:60:88:82:77:26:95:32:c1:b8:c7:19:ab:
a5:f8:f4:3f:be:85:e3:ba:e6:87:87:8f:0e:3e:86:
5a:98:24:92:04:49:9b:10:b0:50:dd:0c:e4:7c:f8:
20:ba:38:1c:f8:d8:ce:b6:d3:84:c3:bb:fd:56:68:
6b:d8:70:57:7b:04:78:13:cf:de:3a:d6:e3:c0:b8:
22:d8:35:ce:b2:e9:89:c3:bf:95:bf:2c:76:14:74:
4b:6b:b0:af:10:82:96:71:c8:d6:d2:36:81:00:2b:
f7:81:38:07:ea:76:5b:a7:18:62:2b:b9:4c:fe:5e:
16:7b:fc:43:61:db:45:43:54:00:d6:b2:c8:ae:6d:
c1:b3:05:bc:9d:75:84:1a:7b:af:a0:ad:76:12:67:
90:8b:26:de:77:9f:f9:e4:a6:74:72:75:f3:52:e1:
fb:0e:d9:40:d4:e8:b1:d4:d1:94:35:35:81:a9:1e:
5b:f7:fc:40:0a:89:71:c9:fe:3c:bf:c7:6d:3b:34:
33:9e:84:74:ea:32:86:ed:57:cf:0a:28:3c:b0:10:
82:fe:18:4b:1e:cd:eb:2a:0c:60:52:6b:cf:6a:3f:
68:d5:0b:c6:99:f5:7d:ad:9c:52:ee:a5:37:91:5a:
56:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B6:13:29:67:1F:CC:46:D9:5D:67:42:98:99:D9:56:F5:AB:76:46
X509v3 Authority Key Identifier:
keyid:AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:6b:9e:fd:94:1c:dd:58:a7:d8:f9:c7:42:06:de:f7:1d:8e:
d2:91:8b:06:73:86:ae:62:91:ae:2e:88:c6:d8:d7:39:3b:ae:
db:d5:a0:18:1b:4f:29:ab:1f:d5:b9:12:1c:9d:21:f3:84:72:
d8:31:de:65:0f:d5:d4:38:ee:4a:98:a3:59:9f:6f:10:cb:2e:
12:d3:94:86:bb:16:6b:5d:14:0d:6b:39:e0:30:22:dc:00:82:
9d:51:82:f1:5c:6f:64:00:32:e8:ff:59:dc:f1:7a:16:50:c0:
22:11:99:32:94:b1:26:57:66:2e:25:6e:6e:76:0d:e5:2a:a7:
be:e8:1f:41:71:78:8f:01:b7:92:3d:22:7f:45:6b:c8:76:e2:
ec:50:8f:8f:15:2a:33:d3:df:6e:2d:8d:13:53:d0:cb:fc:b5:
cd:17:d0:c5:19:27:5f:58:1b:7d:73:9f:2a:e4:bb:38:ba:0e:
1b:1a:59:c8:41:fc:5b:f1:cf:69:af:90:2c:6b:3d:fd:5c:2a:
b2:bb:3e:fc:38:5b:b0:40:9a:d9:68:2a:29:e3:61:35:6f:55:
14:b5:bd:bd:46:cb:af:69:fe:30:5c:7c:ed:85:5f:49:4d:ca:
ac:88:0f:0b:2e:2f:cd:84:61:01:2d:36:fa:27:09:78:f0:43:
22:b8:2d:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 17:56:29 2024 by rpki-client on console-ams.rpki-client.org