Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier: e5VjcXoH8Z9Dmcn7P7uTPXSO4CzVMjhWY5MbmrSWBck=
Subject key identifier: DF:74:49:67:FE:D1:07:29:03:A7:DB:3D:A8:D4:BE:12:BB:46:C8:60
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial: 01935387CE49DC93F3C4708212CFE5854EA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number: AA
Signing time: Fri 22 Nov 2024 11:00:29 +0000
Manifest this update: Fri 22 Nov 2024 11:00:29 +0000
Manifest next update: Sat 23 Nov 2024 11:00:29 +0000
Files and hashes: 1: ZGgv_fkjMY_6FLQ_CkVQ6F-09xA.roa (hash: DmazKwFDSjpRVnc6VPSmdUq73W8v7cO+mPv+y2OaUKs=)
2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: 52TyqO5j+0qhJy8ojPkxzfyEMHSNeHaw13TlHtEsqN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:87:ce:49:dc:93:f3:c4:70:82:12:cf:e5:85:4e:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Validity
Not Before: Nov 22 11:00:29 2024 GMT
Not After : Nov 23 11:00:29 2024 GMT
Subject: CN=df744967fed1072903a7db3da8d4be12bb46c860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9f:2e:88:2e:d4:d8:f5:ef:1e:c5:36:73:49:
2c:81:0b:e9:9f:c1:69:47:9b:32:38:cd:fc:2f:ec:
4b:46:12:58:4f:56:fa:e9:6f:dd:b6:f3:b9:32:d5:
18:63:01:e6:23:5b:1b:70:9b:65:0f:d0:11:f9:c2:
3f:22:d8:6d:22:0d:cd:cc:eb:2d:00:67:38:74:2f:
7b:b9:35:d3:e4:1d:e2:9b:4a:ed:b5:44:7d:6d:ba:
01:2a:a4:40:3c:8b:60:9f:5c:b8:a6:fe:2e:5f:5a:
e0:54:a0:b7:3d:64:43:f5:54:e1:2d:4c:e5:ee:fc:
f7:49:45:29:cb:a6:2f:43:dd:2b:38:3b:ce:f7:03:
f3:5e:5f:4c:90:96:cb:20:f2:da:10:ac:03:48:60:
18:1d:d2:23:6c:d9:62:66:af:e4:47:cf:2b:14:a8:
ec:68:6f:4b:3a:d1:e3:0d:aa:8a:07:b4:ca:65:ee:
c1:cc:a6:d7:4a:fc:97:06:eb:ef:8d:47:09:e4:73:
76:17:6b:e5:64:36:d3:34:ee:fe:a3:e5:ad:ae:11:
06:5d:54:62:6b:a8:c8:c9:fb:8f:ab:6b:55:5e:a4:
da:22:31:7d:e1:37:12:03:89:0b:56:5f:34:d5:a1:
a9:75:3b:83:52:28:6c:05:3c:d5:50:1e:d4:49:c4:
9c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:74:49:67:FE:D1:07:29:03:A7:DB:3D:A8:D4:BE:12:BB:46:C8:60
X509v3 Authority Key Identifier:
keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d2:42:a2:98:7b:53:1b:24:d7:c8:80:96:54:91:0b:1c:e5:
36:1f:25:33:d7:57:37:d0:7a:76:d5:c1:9c:96:a5:b2:d4:22:
93:aa:72:27:e2:e9:27:4c:91:45:2a:87:c3:1b:e5:66:5c:5b:
14:87:80:61:3d:03:34:aa:99:2c:96:ba:a4:19:7f:f5:a2:64:
b5:7f:a2:db:d9:ae:42:58:d2:cd:b4:d6:7c:db:33:fb:fc:14:
d2:a7:85:69:b7:3a:c4:b3:7f:de:ec:f6:c4:41:3f:23:45:8c:
71:a0:78:44:96:ac:ae:e6:49:0e:49:1b:f8:4e:ad:4b:15:86:
6e:7a:02:1c:5b:6c:e0:30:34:f7:ab:8f:9c:8b:17:b5:d1:ca:
b8:15:aa:c0:e3:14:8e:38:bd:d0:70:a7:cb:f7:f7:7f:76:6c:
09:0e:ee:6f:fb:02:62:44:1d:5a:e8:0d:bb:b5:fe:35:ab:56:
2f:b0:fb:d7:86:28:04:0d:ac:06:3e:ae:8c:81:f2:eb:76:4b:
1c:04:fc:12:00:d3:54:2f:46:13:17:7e:47:82:c3:8e:68:8f:
ed:e4:0c:8c:fd:92:28:96:be:c0:e0:bf:d2:f3:bf:cf:3f:43:
14:8a:38:44:62:52:7b:a3:f4:4d:74:32:89:57:06:5f:33:52:
25:9a:c4:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:33:49 2024 by rpki-client on console-fra.rpki-client.org