Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
File: 1dzeISXwQFitT0eOF4iEFCzy2tA.mft (raw, json)
Hash identifier: oPCYdvtadehu1UsYLam0v8XdO7YkClFAix4YX22HTA4=
Subject key identifier: E1:EF:F9:67:78:6C:7A:F7:F8:01:D3:4F:3A:99:72:98:90:99:79:EA
Authority key identifier: D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
Certificate issuer: /CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Certificate serial: 01935689BD64A4C13FDAC237962030E0C8D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
Manifest number: 0D39
Signing time: Sat 23 Nov 2024 01:01:27 +0000
Manifest this update: Sat 23 Nov 2024 01:01:27 +0000
Manifest next update: Sun 24 Nov 2024 01:01:27 +0000
Files and hashes: 1: 1dzeISXwQFitT0eOF4iEFCzy2tA.crl (hash: zxrIGa2U3qH0Yx1ir2k9PkQgMwzesx0Rh5S/YMmDAZE=)
2: b8gHUmrcm4izpyFQM4DSo-0CJ1Q.roa (hash: Lft91VleUE7idauDrPFswHZb+lMr7g3y7KH+++lCWYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:bd:64:a4:c1:3f:da:c2:37:96:20:30:e0:c8:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Validity
Not Before: Nov 23 01:01:27 2024 GMT
Not After : Nov 24 01:01:27 2024 GMT
Subject: CN=e1eff967786c7af7f801d34f3a997298909979ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bd:3b:15:aa:33:fa:56:d4:06:d1:8b:e6:01:
95:41:dd:79:cc:a1:65:c2:a0:b8:af:26:86:53:02:
f7:a4:f4:fa:d6:03:65:28:40:7f:9e:97:69:4c:8e:
6e:bd:9a:cc:45:b2:46:4b:fa:40:db:18:83:96:6c:
c1:29:78:55:27:22:6d:4b:a1:dc:60:db:f3:3d:84:
88:81:bf:51:f7:e1:59:22:77:26:9d:1d:0e:a4:e7:
7c:a2:44:4d:cb:bd:2c:5c:3b:d2:eb:73:5f:de:f5:
ca:ce:a9:40:01:eb:d2:00:6f:d4:f6:99:94:8a:5e:
6f:68:22:87:22:79:94:c8:74:49:f8:39:02:8a:26:
8d:12:9b:fe:13:2a:18:ab:9f:50:9f:ac:c0:55:d9:
52:5c:aa:da:a4:27:af:4a:1c:ad:30:a4:9e:82:19:
30:be:3b:7b:c6:17:7a:bf:5f:e2:4e:e5:1c:73:69:
30:4f:19:77:1c:b4:a6:04:30:7f:90:37:43:89:2e:
1e:31:eb:93:ab:98:33:cc:3e:6d:df:e4:d1:f5:ca:
f7:61:e1:1c:99:4c:34:b2:63:1a:ac:80:9d:74:ed:
b1:69:23:6d:47:b6:f7:fe:63:3d:77:08:cc:d0:79:
0b:49:93:77:c5:94:1e:ed:c1:ea:11:0b:7e:09:68:
5e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EF:F9:67:78:6C:7A:F7:F8:01:D3:4F:3A:99:72:98:90:99:79:EA
X509v3 Authority Key Identifier:
keyid:D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:ab:67:72:5a:6f:75:99:a6:06:c9:30:ae:85:52:05:0c:de:
3c:67:fa:cf:8f:11:1b:b6:b2:bd:53:36:15:5e:7f:c0:c1:8c:
b1:08:c2:b0:ab:2a:42:8c:44:23:d5:19:3b:6e:2d:4d:9f:f2:
18:3e:8a:d5:94:f5:18:60:d9:3d:d7:35:8d:f5:03:7c:c2:ef:
d3:a1:7b:53:67:e0:f0:29:96:5f:ea:71:55:73:42:ee:e3:61:
12:9b:3c:34:e5:c6:21:9f:8b:eb:f9:44:a3:fa:8e:4c:4f:76:
61:04:a6:bb:9c:91:b4:20:83:fc:14:77:8a:ad:9e:d2:92:a8:
25:10:1e:d4:dd:24:97:09:fa:82:a4:19:ab:a8:63:7a:c9:17:
fa:ad:07:0b:c3:17:d0:cb:32:3e:58:af:69:be:60:46:22:3b:
fe:1c:c5:62:af:d7:2a:ee:eb:fe:6e:8d:f8:8f:04:c3:8a:fa:
2a:e9:51:70:31:45:2a:1b:7d:6a:f4:ad:49:92:81:65:76:90:
45:de:fd:e4:58:3c:e5:54:e1:be:84:0e:c9:8d:e2:bf:7c:fd:
43:2a:4a:48:2f:21:e1:3b:52:46:7b:7e:37:bd:64:9e:c7:81:
90:2c:d0:7e:cc:b5:9a:05:c7:40:9d:3d:1d:ea:3a:b4:0e:b4:
83:25:38:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:48:08 2024 by rpki-client on console-ams.rpki-client.org