Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
File: 3PhcNsaW1dssu0j9Q-ghc37jQic.mft (raw, json)
Hash identifier: Dnj2fftPfGES4/WWgImA8PQxT3oAALtw2K1MpGMD208=
Subject key identifier: B9:8D:1D:A1:20:E8:0B:8E:82:AE:B5:C4:20:A7:32:9E:59:FC:DA:99
Authority key identifier: DC:F8:5C:36:C6:96:D5:DB:2C:BB:48:FD:43:E8:21:73:7E:E3:42:27
Certificate issuer: /CN=dcf85c36c696d5db2cbb48fd43e821737ee34227
Certificate serial: 01940645DB86D7987584324ADC635CA9B9A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
Manifest number: 0E06
Signing time: Fri 27 Dec 2024 04:00:28 +0000
Manifest this update: Fri 27 Dec 2024 04:00:28 +0000
Manifest next update: Sat 28 Dec 2024 04:00:28 +0000
Files and hashes: 1: 3PhcNsaW1dssu0j9Q-ghc37jQic.crl (hash: kahK7kG4n7BzP4izCttqvNGiE7FMHbmG9/6TUlOfHAk=)
2: u41sdDfcAjlQHDUIn-TCdg73KwE.roa (hash: Q6DdQp7FX1EEhnX0U6af9tfLIe9A95h3zrQj7v4XB6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:45:db:86:d7:98:75:84:32:4a:dc:63:5c:a9:b9:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcf85c36c696d5db2cbb48fd43e821737ee34227
Validity
Not Before: Dec 27 04:00:28 2024 GMT
Not After : Dec 28 04:00:28 2024 GMT
Subject: CN=b98d1da120e80b8e82aeb5c420a7329e59fcda99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:f0:db:05:4f:2b:0e:54:26:21:b4:77:d6:
cc:d4:6a:83:7b:5a:b1:f3:83:ca:fb:aa:3b:83:47:
66:94:b1:d1:e8:19:d9:ec:dc:11:71:c5:15:67:17:
c8:44:b4:14:4d:ec:e8:fb:8e:2c:67:7e:0f:87:aa:
67:ea:9c:5c:0a:ba:6e:44:b9:0e:e7:35:53:81:24:
64:77:12:8a:64:9c:0e:33:2d:68:91:75:64:78:d7:
ca:fd:fc:e9:6f:92:d4:17:87:01:46:dd:cd:76:e2:
17:f8:70:b7:9b:fb:0c:18:f7:2c:db:9f:2d:ef:7b:
77:dc:55:7a:ce:95:ae:81:79:60:dc:80:0a:0f:af:
08:24:2d:59:bc:bf:a2:e7:a3:06:7d:01:5a:30:b7:
36:82:35:2b:12:19:23:63:43:fd:ec:29:c1:14:7f:
8a:0d:05:44:c2:e4:1e:54:c3:6d:67:c7:84:6f:0b:
74:f3:e9:17:37:74:52:a9:74:79:cf:ab:fd:fa:4a:
68:7d:38:41:7c:23:11:bf:81:c9:fe:c5:2f:0f:e9:
bd:dc:d8:20:a7:11:b5:aa:f6:c2:f2:34:64:0c:ec:
6c:5f:93:bd:21:42:34:7b:a2:06:17:a7:d6:d1:94:
48:21:84:1b:9a:e0:8c:f2:10:da:a4:b9:09:f2:f1:
6f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:8D:1D:A1:20:E8:0B:8E:82:AE:B5:C4:20:A7:32:9E:59:FC:DA:99
X509v3 Authority Key Identifier:
keyid:DC:F8:5C:36:C6:96:D5:DB:2C:BB:48:FD:43:E8:21:73:7E:E3:42:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:49:ee:c4:92:35:17:00:80:b6:35:d1:57:a0:61:97:bc:e6:
ef:c8:85:39:e2:dc:12:02:00:03:3a:e1:6a:d4:7e:8f:cf:12:
9c:ed:a8:72:cd:57:ec:f3:e5:b4:39:67:89:06:96:ee:e5:e7:
74:a9:5a:92:8e:b5:7d:51:5d:bf:82:91:e7:4f:3e:d6:68:fa:
a9:05:26:2e:cc:f3:fe:b0:90:e1:b3:aa:03:3c:26:e1:b4:86:
93:20:f0:17:db:80:3d:48:c8:ed:97:e4:ee:ea:14:d4:ee:9b:
89:a8:50:f6:96:68:72:9f:9c:c5:f9:44:1a:30:ca:9e:16:8c:
21:25:4a:b7:c4:75:ed:53:df:68:c9:4d:e1:f7:f8:05:27:50:
14:68:dd:97:c6:21:72:9d:26:2d:c7:13:ef:34:3f:4a:26:a3:
f4:8b:b0:cc:a9:67:67:9b:4c:8f:59:bb:fd:68:90:d6:3e:71:
a1:fb:6c:59:51:76:3c:f9:c6:6f:55:fa:8e:b7:b9:35:5d:02:
2a:95:00:95:a7:7e:16:4c:cc:df:7d:4c:e3:3a:f9:5b:4b:c3:
58:94:af:c0:d6:17:0c:7d:f2:db:ae:0a:32:f5:10:73:16:24:
f8:8f:7b:9f:04:63:35:86:8e:18:d3:78:5b:92:c4:42:86:7d:
ff:b2:69:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 10:06:25 2024 by rpki-client on console-ams.rpki-client.org