Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
File: 4z2f_axY52ErCVFE_sBrolhapqg.mft (raw, json)
Hash identifier: pcwHFDCccGdYGz+qIGzwsL+d6yxvH9iIRmeTpabGK90=
Subject key identifier: 2B:CE:99:4B:A4:95:17:AF:F0:3C:9D:E4:6E:33:77:AA:48:02:39:0C
Authority key identifier: E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
Certificate issuer: /CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Certificate serial: 019366D80F30ABD121E6A79A55331EB43248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
Manifest number: 10D0
Signing time: Tue 26 Nov 2024 05:00:55 +0000
Manifest this update: Tue 26 Nov 2024 05:00:55 +0000
Manifest next update: Wed 27 Nov 2024 05:00:55 +0000
Files and hashes: 1: 4z2f_axY52ErCVFE_sBrolhapqg.crl (hash: qWV9qYVA+mOXQSVgi5T+AnkJnf3t8Z5XAdLat1qhdFk=)
2: IGOFZ7PaFmhSQSKeLheMepQeagw.roa (hash: wZUI8nDrqD+pxFD+rBhdT+FVXKXWQtry1jovEL/zXJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:66:d8:0f:30:ab:d1:21:e6:a7:9a:55:33:1e:b4:32:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Validity
Not Before: Nov 26 05:00:55 2024 GMT
Not After : Nov 27 05:00:55 2024 GMT
Subject: CN=2bce994ba49517aff03c9de46e3377aa4802390c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:55:75:a2:d5:67:b7:4c:22:d6:14:6d:28:68:
f3:19:bf:1a:7e:56:13:51:a9:a6:60:65:97:6f:9b:
28:1c:f0:25:f9:90:15:a3:a7:c4:45:91:c0:73:23:
f8:4b:6e:ea:f0:fb:e9:de:13:52:37:8a:62:59:66:
1d:e7:98:f3:a7:6c:c1:12:97:bf:0a:be:69:ca:cd:
fd:48:28:cd:96:41:c5:90:26:49:0b:67:52:8f:60:
fb:50:74:f2:45:8b:69:9f:31:3c:bf:a6:6f:31:6d:
77:b9:fb:2a:ae:d8:06:f6:69:a1:28:01:07:1c:c8:
22:14:86:63:7e:c0:63:60:91:d4:bc:1b:6d:6f:40:
ac:61:f0:ed:2d:2f:6a:54:48:06:de:b7:66:0f:8c:
10:0e:ba:4a:16:6f:34:0e:b7:e6:51:f9:1d:d7:57:
87:28:af:90:4b:de:b8:91:98:95:46:99:5a:d7:01:
b1:95:c1:8a:50:0f:1c:52:67:f7:d9:ec:a6:27:81:
c3:5b:8c:a0:90:c2:d0:39:da:46:fa:75:68:71:d5:
0b:27:85:bd:db:2e:7d:df:df:08:79:83:f9:75:b9:
a9:79:c7:7e:23:16:09:89:f9:4f:6c:3e:9b:fb:07:
4c:11:3d:07:67:ac:f0:b4:94:2c:4d:8f:90:c2:ec:
5f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:CE:99:4B:A4:95:17:AF:F0:3C:9D:E4:6E:33:77:AA:48:02:39:0C
X509v3 Authority Key Identifier:
keyid:E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:c0:4a:48:6c:b5:93:61:6b:0f:99:2a:e3:10:41:cc:9d:10:
c9:0f:e4:82:01:85:a8:ab:91:52:70:2d:34:e9:b2:d3:a0:27:
3c:e8:d4:7e:e4:ff:26:a3:5c:b8:33:29:06:0b:6d:7e:17:fa:
98:1b:21:86:ce:c9:29:1e:93:91:f1:02:48:dd:65:df:04:e5:
ab:5c:f9:23:f3:bc:69:c8:58:14:90:cc:70:21:e9:38:a6:a6:
d9:51:90:12:04:e6:49:66:10:4f:3f:4f:f2:b6:48:71:87:c3:
43:75:a7:10:f3:6a:ef:12:67:f0:3d:4a:55:9a:81:9a:a6:06:
d4:8c:9f:54:b8:97:09:3f:e5:db:7c:9b:a7:f2:33:1e:07:6c:
e1:5f:41:cb:08:7c:e2:47:0b:5c:ff:6b:93:56:9e:61:35:9a:
dd:05:44:3f:72:d2:0c:7e:74:55:24:00:50:22:cf:b7:ed:a2:
b1:54:9d:14:77:f8:e5:c8:9f:28:bc:63:61:e5:c4:3b:6e:49:
0f:81:a6:1d:16:92:33:dd:27:ae:b3:ec:fb:99:a4:ea:fb:31:
30:5b:97:e6:9a:49:94:9d:3f:cc:01:df:ed:4b:ea:67:5c:32:
8e:6e:89:c4:56:a2:88:ed:57:93:43:1f:b3:86:3d:fe:4f:8b:
d1:db:b9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 06:39:15 2024 by rpki-client on console-fra.rpki-client.org