Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
File: tE-FORdNAL-ov95JBD9IXDpYdSU.mft (raw, json)
Hash identifier: NVCKdNs7C+LaXbGhEAIFyOYS3avMeQQP83Jg6GBizWs=
Subject key identifier: 15:C3:37:6D:C3:86:F1:EB:14:35:FF:BE:14:E6:CA:5F:6E:78:16:02
Authority key identifier: B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
Certificate issuer: /CN=b44f8539174d00bfa8bfde49043f485c3a587525
Certificate serial: 019356F6CB3D98F1721F1C1983691D4A6A09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 03:00:34 +0000
Manifest this update: Sat 23 Nov 2024 03:00:34 +0000
Manifest next update: Sun 24 Nov 2024 03:00:34 +0000
Files and hashes: 1: 8TqGI3ML_nY32IdG6_Ipq1Qhmyo.roa (hash: XSpfKNYRopCHs+MvWES0J/9LZmssoZ+76mIbLhSOMgg=)
2: tE-FORdNAL-ov95JBD9IXDpYdSU.crl (hash: zZQAcs0Ix27PftI/z8LeQ3vbbklNhoNvlNLl9Flj+LY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:cb:3d:98:f1:72:1f:1c:19:83:69:1d:4a:6a:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b44f8539174d00bfa8bfde49043f485c3a587525
Validity
Not Before: Nov 23 03:00:34 2024 GMT
Not After : Nov 24 03:00:34 2024 GMT
Subject: CN=15c3376dc386f1eb1435ffbe14e6ca5f6e781602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9a:3d:61:67:74:e8:97:e9:0e:03:fb:03:4b:
30:f0:f4:05:6e:bc:95:ed:e3:cb:d9:7a:45:3c:9f:
33:36:e4:be:53:fd:0f:07:c3:9e:57:ee:cc:72:10:
39:4a:62:eb:44:6b:b0:11:9b:eb:97:83:0a:5c:56:
87:85:a4:8f:fd:c0:0d:fc:b5:d7:3a:4d:91:87:7f:
c6:22:ba:75:c9:7b:c5:4a:81:d7:c4:a5:43:eb:7c:
be:d2:37:85:cd:1a:60:7f:48:51:26:a9:48:f9:2c:
f3:28:0d:11:d0:75:d2:a3:d4:64:da:02:58:a9:df:
a2:86:e7:1f:a3:7c:fd:9a:42:3f:34:f2:aa:1f:5c:
d1:b1:30:31:2f:34:44:a0:37:14:5c:16:50:a3:60:
5a:db:dd:14:29:d8:f1:97:f0:5d:af:c9:92:3c:6a:
3e:84:e6:75:28:4b:8b:52:5c:8d:15:9e:a0:8c:95:
48:5f:87:b9:00:4d:a8:8b:80:ea:3d:2e:5e:7d:1b:
76:b4:a7:cd:ee:ad:e0:d7:72:cc:ff:46:f8:d0:75:
da:53:dc:d3:87:a5:0e:89:c8:33:b3:59:16:1e:9c:
7b:db:67:fd:84:0b:70:f8:92:d4:96:e5:af:80:7f:
82:6c:ad:9f:34:72:f9:94:c9:11:d3:9b:36:2d:34:
95:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:C3:37:6D:C3:86:F1:EB:14:35:FF:BE:14:E6:CA:5F:6E:78:16:02
X509v3 Authority Key Identifier:
keyid:B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:46:01:ae:dc:71:9f:ef:9a:9a:8e:c6:0d:cd:c6:08:56:73:
34:df:29:5b:9f:dc:c4:8e:d0:35:5e:9c:b3:ef:20:a6:10:5a:
a6:91:8a:70:73:20:c3:0e:08:19:a6:a0:cf:04:b7:5c:cb:5b:
c2:15:e0:06:ef:b4:00:5b:8b:44:24:45:54:02:fd:4b:59:53:
09:c7:89:44:7a:3c:0f:f9:02:30:3a:43:2c:b3:cb:16:ef:d0:
ea:de:54:48:34:f3:d0:7d:67:8f:3f:62:ea:75:eb:1f:a3:7e:
65:b8:1f:6e:f3:25:66:2c:a9:05:e6:35:fc:58:d1:ad:4d:70:
33:31:03:8a:a5:07:4d:bc:ae:40:ac:e1:71:d0:77:4e:83:c8:
16:89:d5:96:91:7c:61:53:89:27:8b:cc:c7:3b:74:e5:cd:e6:
4e:51:2b:7f:ee:54:44:0a:39:29:b5:35:f0:db:32:c7:18:43:
52:41:2e:19:da:97:33:3d:ce:88:6e:a6:3d:5b:63:b9:9d:9f:
8d:dd:ce:4a:db:27:b4:2d:1e:47:9a:05:c7:55:dc:64:e0:12:
0d:a6:fd:28:8f:5e:ae:9a:91:a9:77:93:e6:9c:77:5e:35:83:
4b:6d:fe:a0:7e:06:2c:4d:74:1e:bd:5d:f7:5c:b5:7f:ea:7d:
53:fd:2c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:01:35 2024 by rpki-client on console-ams.rpki-client.org