Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
File: iDa9j605PlExoCNykxWzVgFOZjc.mft (raw, json)
Hash identifier: 3P422giq2WEhPxawFSKJRqqrtvi9NkFwq1w+iuWyHaM=
Subject key identifier: E4:35:78:CD:46:EA:C6:74:CF:29:F2:C3:BF:3B:31:2E:AA:27:EF:BD
Authority key identifier: 88:36:BD:8F:AD:39:3E:51:31:A0:23:72:93:15:B3:56:01:4E:66:37
Certificate issuer: /CN=8836bd8fad393e5131a023729315b356014e6637
Certificate serial: 01936AB42C119782161B0F10EAD34D3DA862
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
Manifest number: 137A
Signing time: Tue 26 Nov 2024 23:00:12 +0000
Manifest this update: Tue 26 Nov 2024 23:00:12 +0000
Manifest next update: Wed 27 Nov 2024 23:00:12 +0000
Files and hashes: 1: _pinoeA_lVSH18-eCf5vyA2K7eg.roa (hash: Gj4K5LhvKruIO5y2ly8J65HRN8DslL48gS29DRWpwKU=)
2: iDa9j605PlExoCNykxWzVgFOZjc.crl (hash: Gl4YGk3cuHMAqZaWvSGo5wpf1W7FnGfgvwlpzw14acY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:2c:11:97:82:16:1b:0f:10:ea:d3:4d:3d:a8:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8836bd8fad393e5131a023729315b356014e6637
Validity
Not Before: Nov 26 23:00:12 2024 GMT
Not After : Nov 27 23:00:12 2024 GMT
Subject: CN=e43578cd46eac674cf29f2c3bf3b312eaa27efbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:de:fa:eb:4d:a9:e9:8a:14:46:7f:60:fb:60:
1c:c5:db:02:5f:47:8b:ff:ed:7f:3a:33:6d:bb:a3:
34:07:38:1a:04:95:70:8e:32:f7:2c:ae:43:4c:96:
5f:9c:a6:3b:9c:5e:34:aa:a3:18:f9:e5:e4:26:36:
8f:33:a8:73:71:38:9d:0d:5d:32:9f:9b:f0:f7:83:
f9:1c:72:98:a6:6a:8a:93:51:16:c6:c7:65:05:60:
43:51:84:db:ab:9c:20:ec:74:8f:4a:95:d6:10:98:
67:2b:f4:91:a0:50:52:ed:fa:fa:b7:00:4c:da:fa:
8d:f2:b5:49:e0:85:38:68:71:c2:3a:50:b4:4f:c9:
da:f6:bd:c2:14:50:0e:b9:00:d2:a6:3a:6e:c8:58:
27:ca:da:66:6d:f9:9f:a9:16:99:ae:14:77:02:76:
1b:67:bd:54:af:5f:e0:d6:26:0b:f8:34:46:7c:74:
77:4c:f6:80:aa:8a:a4:0f:d9:4b:ac:86:0d:7c:4c:
31:22:89:fc:61:05:22:60:e4:80:49:bc:47:e2:c4:
a0:83:1e:c3:d9:05:8e:61:0c:0d:af:b8:1f:91:b2:
02:82:25:08:fe:be:5b:92:92:ae:c7:ce:da:3b:e3:
b4:64:1f:70:08:d8:c2:ef:31:e4:c6:2d:b4:59:a6:
a7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:35:78:CD:46:EA:C6:74:CF:29:F2:C3:BF:3B:31:2E:AA:27:EF:BD
X509v3 Authority Key Identifier:
keyid:88:36:BD:8F:AD:39:3E:51:31:A0:23:72:93:15:B3:56:01:4E:66:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:1a:d3:0c:fd:9e:23:f8:f4:30:2b:d9:2f:17:f7:25:00:05:
af:bc:65:4f:14:7c:a4:ce:75:48:55:b3:af:18:e0:34:52:ed:
93:76:ab:8d:c8:ec:32:c9:d1:28:ba:85:f2:c4:78:7d:70:e8:
c2:f0:a6:0e:c3:6e:c4:2c:25:f1:de:6b:a2:55:e1:08:54:6c:
eb:78:97:3a:88:23:6c:45:ad:25:b7:06:c5:3d:6b:8a:ce:d6:
c5:aa:b1:71:06:06:da:f6:79:4b:77:10:c2:28:99:2d:a8:dd:
71:e0:4c:30:e7:83:90:d2:a5:d2:65:40:3a:90:54:b3:6d:25:
ec:a3:71:82:36:11:e7:b3:13:f9:10:a7:45:05:e2:3c:53:fb:
f6:25:e4:20:71:3a:db:bb:aa:a5:08:1d:c8:a8:0d:63:7d:0f:
12:e8:57:b2:4a:6d:3f:b1:52:de:25:ee:9f:9c:a4:bf:21:f6:
51:3c:0d:88:a3:35:0a:07:78:1c:64:06:8e:1b:22:30:9b:68:
37:bd:54:54:c0:ed:f9:0b:a3:7a:01:6d:cd:13:cd:28:d1:fa:
f9:fe:8b:8a:33:a1:8e:f3:9f:d7:7e:34:28:88:f7:76:b1:88:
41:f2:75:6b:ea:35:f7:fd:82:e5:32:ec:5f:dc:e8:5c:a9:1b:
cf:ce:3f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:03:43 2024 by rpki-client on console-fra.rpki-client.org