Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: LbyZG50Lcgav5ALGwsU/G/dq69ScICoQoBqKxPupTYA=
Subject key identifier: 5B:D9:EB:DF:71:B0:A0:C4:E4:0A:B2:2B:18:37:E3:AF:73:52:9E:A9
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 01935764CF8192F1953AB858BEA88168AB2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 0EE2
Signing time: Sat 23 Nov 2024 05:00:44 +0000
Manifest this update: Sat 23 Nov 2024 05:00:44 +0000
Manifest next update: Sun 24 Nov 2024 05:00:44 +0000
Files and hashes: 1: KtNaaFbYVIm-jy7G4IRmNvMhsJQ.roa (hash: HYeHOqAMp3wWUzhR2RdoKRc9ip/2BFeyQhjl6lyzI04=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: e3Govj0CJCFVK7VYv8Ch1uDVvUdD/5kPJK1aelqsKJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:cf:81:92:f1:95:3a:b8:58:be:a8:81:68:ab:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Nov 23 05:00:44 2024 GMT
Not After : Nov 24 05:00:44 2024 GMT
Subject: CN=5bd9ebdf71b0a0c4e40ab22b1837e3af73529ea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ae:61:a7:35:95:20:0f:9f:1f:0e:dd:13:4e:
0a:46:46:e0:4a:94:35:d4:14:29:a1:b6:bd:0a:9e:
a9:1e:2e:29:34:59:4b:22:51:75:fe:23:71:f0:ea:
46:1e:8b:44:ce:2d:46:71:b5:68:36:3e:23:aa:d5:
4a:62:a8:da:2c:2d:d5:fb:b4:e3:9d:42:d1:69:e0:
ad:9a:f9:62:f2:e2:5f:36:9b:f2:fb:15:e3:ab:04:
4d:83:1b:ef:22:b0:09:64:5f:d6:7b:6f:bf:24:42:
0b:b7:df:b0:14:70:36:72:dc:c7:e1:73:10:4f:6f:
d3:dd:3b:5f:e6:72:db:25:a7:b6:68:3f:07:79:04:
b4:f5:eb:e1:5b:40:03:d0:de:aa:26:09:13:64:02:
51:d2:80:f3:be:9d:12:d0:ae:cc:18:b7:ae:bb:5c:
99:b9:a1:47:68:b3:d0:6a:79:2d:8d:a8:f3:c4:b5:
72:7f:15:cc:a9:99:78:f7:04:c7:96:05:d1:34:81:
11:52:f3:38:cf:47:c0:1e:cf:a3:1f:a8:a2:6c:ff:
32:1d:f3:7a:ce:ea:8c:96:2c:bf:e6:a0:6c:3b:04:
b8:7b:d9:d7:82:ce:a0:59:3b:65:0b:0f:a3:43:b1:
3f:27:48:e0:66:7e:01:f9:09:fd:b5:15:85:68:72:
09:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D9:EB:DF:71:B0:A0:C4:E4:0A:B2:2B:18:37:E3:AF:73:52:9E:A9
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:78:11:57:a5:6c:a9:3a:39:40:ef:67:02:5c:10:50:34:85:
f2:1d:c4:93:36:48:e3:f8:2b:d5:06:ab:8b:11:66:97:d3:0d:
15:08:0b:14:7b:13:38:9c:a6:c1:fd:fd:58:21:44:8e:e7:8a:
61:11:f2:e7:12:07:b5:b3:d2:08:c2:70:86:a6:79:e8:df:89:
e1:48:9f:44:f6:b4:f2:12:ea:b6:fc:1a:96:72:18:48:af:cb:
79:16:33:b9:24:42:db:2a:57:fc:6f:8f:33:c6:25:ba:a6:4c:
32:1c:6a:61:5f:52:b8:bb:1d:60:a2:fd:7e:08:f6:55:47:3a:
45:2b:39:59:bd:e2:9f:fc:6e:b2:23:fb:37:29:fa:12:c1:9d:
26:2e:48:92:24:08:ce:bf:b3:74:6e:b6:da:52:71:3a:2c:59:
51:91:a8:d0:d0:a3:24:aa:cd:1c:82:46:21:78:5f:52:d0:57:
c5:0d:8c:c4:45:1d:7d:53:70:e4:fc:88:7f:b8:c7:16:ac:7e:
9d:d9:64:7d:28:5e:c0:0d:ab:b6:bf:5b:40:7c:4a:e7:51:f1:
25:83:d0:e3:f3:0b:72:f5:08:e5:c6:75:8f:ee:32:14:32:1b:
41:75:17:2a:50:30:14:63:4c:06:17:27:d6:5a:3d:88:f3:69:
0d:cd:5d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:19:02 2024 by rpki-client on console-fra.rpki-client.org