Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: VAPAIOV+LR6Oowkv24/40raX5reOKMI7y/JYBN0cTD8=
Subject key identifier: 86:F1:2A:E4:A9:B0:50:AF:B3:D1:A2:D9:C4:97:41:6E:FD:62:84:CD
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 01936220FC587A31E77E82FEE34013CA3C54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 0EE5
Signing time: Mon 25 Nov 2024 07:02:29 +0000
Manifest this update: Mon 25 Nov 2024 07:02:29 +0000
Manifest next update: Tue 26 Nov 2024 07:02:29 +0000
Files and hashes: 1: ESDvjqPqoqrR9OTsed-1z_PLfZA.roa (hash: 8y9pgql6xPiAVL9qxpBjAmd7iwa3BJAkcjXrj7H4p68=)
2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: u+Y1r/VDVtOI4m65/gQoyDcIM4YWxu81vOuRxM4iSdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 07:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:20:fc:58:7a:31:e7:7e:82:fe:e3:40:13:ca:3c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Nov 25 07:02:29 2024 GMT
Not After : Nov 26 07:02:29 2024 GMT
Subject: CN=86f12ae4a9b050afb3d1a2d9c497416efd6284cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1c:08:27:bd:c2:76:d7:7c:e1:92:7f:b5:f0:
55:ad:cb:5b:1a:5e:02:a5:40:8e:51:62:c7:69:c3:
b9:a9:1a:0e:82:e0:aa:0e:15:a5:df:d4:26:67:da:
be:ea:f7:67:f7:1f:06:7a:15:70:00:50:eb:67:0b:
df:1a:17:df:64:9f:66:1b:67:15:13:26:d8:3c:74:
a1:47:02:78:23:39:84:65:8f:3d:08:37:48:97:d9:
1f:5a:dc:08:e5:a4:95:b6:d2:c1:41:f4:9f:68:a4:
14:a5:91:38:70:96:f9:27:8e:bc:f1:54:38:69:7d:
2e:c2:a4:7d:05:59:9b:c1:30:7e:3e:e9:79:c0:8f:
f0:a9:42:d6:ce:99:35:7d:0d:b5:d2:d4:04:51:07:
45:4f:ea:33:c0:f0:57:1a:f0:af:09:21:77:36:e3:
fa:77:de:0d:26:0a:45:12:7d:75:fe:72:3a:30:be:
e7:20:d5:70:fd:26:94:46:f3:54:d3:b4:cf:c5:07:
66:9e:e4:fa:66:38:8c:29:c6:cb:28:77:73:37:68:
a7:4d:7f:29:c1:b9:6c:dc:d9:93:cc:2a:ae:6d:c7:
bf:4d:93:14:0c:3b:d7:09:9d:69:fd:7f:6c:4b:65:
ea:fa:5d:16:3a:a2:80:62:6f:5a:49:b5:b2:89:18:
42:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F1:2A:E4:A9:B0:50:AF:B3:D1:A2:D9:C4:97:41:6E:FD:62:84:CD
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:75:ba:45:93:03:51:a2:20:e0:04:99:47:90:38:cc:d8:51:
6f:40:cf:c2:ec:7f:ad:c6:83:91:4b:80:d2:fc:1d:f1:18:e3:
d0:e1:76:bd:65:ac:17:fb:4a:a4:c8:f3:c6:48:5b:4f:c9:11:
cd:1d:2f:2c:b1:03:67:ab:2e:8d:75:b4:11:14:94:a8:a8:73:
d7:3a:c0:74:9e:53:d1:4c:f9:a4:d9:c8:84:3a:71:1b:c0:e1:
73:f2:50:75:b9:c6:b6:ad:2e:fb:68:9d:28:fc:bd:48:f7:c3:
eb:3e:ab:b8:13:1a:af:26:94:ad:af:fd:6c:bd:69:b3:13:3c:
cc:db:4d:90:e3:c2:d5:61:d7:90:95:3d:33:60:c5:1e:cc:b8:
95:53:ab:55:04:ba:ea:d5:18:57:11:f1:17:83:0e:b4:cf:30:
1c:9c:5b:19:e6:82:1f:d6:e7:0c:4a:d1:5a:db:6e:c6:6d:9c:
c4:b9:20:71:41:fb:53:10:9d:69:c4:95:c8:e5:8e:d2:fe:e6:
a6:53:5f:bc:17:2a:a6:ee:d7:37:13:df:48:ff:a2:f3:fa:fc:
be:7a:ec:67:61:2e:d3:4d:ac:39:69:50:4f:9a:66:1f:9a:a2:
7d:ce:af:61:6a:72:3f:96:52:a3:d3:b5:90:aa:42:ee:ec:48:
f4:fd:2e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 14:13:58 2024 by rpki-client on console-fra.rpki-client.org