Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json)
Hash identifier: hYArKAzxgzN1FW66J/M6O6xmBl2gkwXZDpxmoL2rhsA=
Subject key identifier: 18:21:E1:71:23:5F:9C:FA:F4:D4:D3:D4:E9:18:BB:B4:9A:9E:B9:6E
Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Certificate serial: 019368FD55BCEF8347FEBB289FF809D8A059
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
Manifest number: 137C
Signing time: Tue 26 Nov 2024 15:00:53 +0000
Manifest this update: Tue 26 Nov 2024 15:00:53 +0000
Manifest next update: Wed 27 Nov 2024 15:00:53 +0000
Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: ZrSdCgxQhn/guT6y3QxAqw76SRCS2V3mYZnY0DHRRMc=)
2: 5VhHjSGf_w4GAg7NEInAk7hLXIE.roa (hash: Mgjf1Wh9VsWaHsILbuia7bGTUGag7ayMhJXwiyS29Tk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:fd:55:bc:ef:83:47:fe:bb:28:9f:f8:09:d8:a0:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Validity
Not Before: Nov 26 15:00:53 2024 GMT
Not After : Nov 27 15:00:53 2024 GMT
Subject: CN=1821e171235f9cfaf4d4d3d4e918bbb49a9eb96e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:24:38:87:e5:56:70:19:52:ac:ce:5a:55:6a:
e3:5b:02:b6:b9:b4:b4:47:80:dd:23:02:87:63:ba:
4f:0b:69:ea:c3:14:78:00:8d:28:d4:6f:64:6e:d1:
54:a2:78:a5:d2:09:3d:56:a0:0b:a0:57:ed:cf:a9:
29:6c:ad:b6:b4:64:1c:34:f5:d9:14:e6:91:f7:be:
8e:c7:72:73:cb:ba:a2:be:11:dd:dd:37:49:1c:e7:
e0:7a:e9:f9:e5:1c:93:39:f5:25:fc:4e:b0:7c:4f:
ce:64:60:36:af:83:a4:01:97:44:51:4f:74:55:d8:
3a:38:d3:30:84:37:8a:a3:4d:d5:28:d7:e6:cb:c3:
ec:e6:c7:7d:14:c9:eb:66:fd:f1:e2:9b:cf:9d:20:
55:c8:fb:46:73:e8:81:08:ba:4c:ad:13:1b:58:97:
36:da:7a:27:90:3b:aa:4c:58:8b:63:80:ca:ec:a8:
18:97:74:5d:90:7d:cb:e7:6e:a7:ed:34:e9:d6:9f:
13:72:da:c6:58:20:65:ba:31:ab:5f:d0:4a:b8:83:
6e:b3:bc:57:0a:47:4b:e8:4b:8e:24:f7:64:a3:2e:
90:8f:e4:89:26:30:fc:81:73:5b:d1:8d:5b:a1:0a:
44:be:64:c8:b3:79:7d:75:e3:6f:fa:a1:77:63:c5:
10:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:21:E1:71:23:5F:9C:FA:F4:D4:D3:D4:E9:18:BB:B4:9A:9E:B9:6E
X509v3 Authority Key Identifier:
keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:5e:ca:95:93:18:66:6b:d2:6c:2f:e9:62:3b:c2:b4:27:92:
f6:b3:5d:33:c9:07:7e:8b:6b:c1:61:0e:15:fc:65:38:75:f3:
8a:90:b6:3c:61:40:e2:ec:8e:c2:77:3a:9b:6b:a2:5a:e3:a6:
32:3c:ad:cb:7d:ce:e4:14:54:0f:63:ea:f2:17:83:4b:95:b7:
0b:a8:fd:1b:d3:56:4d:40:b7:d8:d1:56:0d:a3:01:b7:63:25:
46:18:cb:bf:23:07:b3:c1:ba:ff:81:d1:11:c9:f5:a2:e5:7e:
75:c5:ac:e5:b0:ad:a6:96:65:08:4e:79:d8:3b:d0:d7:1d:a7:
d6:b2:68:f5:a8:05:6e:3b:93:24:12:10:1d:8a:6b:1b:7f:f6:
c8:66:2d:4f:28:06:5b:8a:10:0c:61:4d:5e:38:18:d8:2f:dc:
37:f3:3f:19:0a:c3:49:8f:b9:9f:13:6d:df:67:4a:a8:55:16:
47:d2:0b:4d:6a:78:2e:d0:3c:d9:39:62:5d:20:c2:02:70:d5:
84:ae:53:25:82:84:5d:eb:7d:19:db:e0:0e:f3:9f:a7:69:62:
f5:77:b4:67:98:76:2b:a5:23:8e:cf:a1:7f:99:37:88:c6:00:
aa:cf:4d:b1:02:43:dc:46:17:9e:26:c1:2e:fe:a0:dc:f2:85:
5d:52:fb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:39:28 2024 by rpki-client on console-ams.rpki-client.org