Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
File: DdL44N6hOH2vkDXSzfTrjJOticw.mft (raw, json)
Hash identifier: 78FU6jEFDCV+w4NQ6f3yCW7LnYdt6FfLoW3GHlh2Ii8=
Subject key identifier: 96:A3:91:79:8E:AD:9A:1D:A2:A0:AC:D8:C1:66:5B:C5:2B:C6:66:C6
Authority key identifier: 0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
Certificate issuer: /CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Certificate serial: 01935688C59F1D6ACEB7878318B73506DB6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
Manifest number: 0E28
Signing time: Sat 23 Nov 2024 01:00:24 +0000
Manifest this update: Sat 23 Nov 2024 01:00:24 +0000
Manifest next update: Sun 24 Nov 2024 01:00:24 +0000
Files and hashes: 1: DdL44N6hOH2vkDXSzfTrjJOticw.crl (hash: mrieN0ng8ey2y9YrKJIfpFRnETWEsMcKZKu7qhIhauk=)
2: oQeKV5LgklmKvDmBbJEQYD9q4zA.roa (hash: VBng7xAocJU6nPUGunX1xTbqpFEaldafprE1rcqvBI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:c5:9f:1d:6a:ce:b7:87:83:18:b7:35:06:db:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Validity
Not Before: Nov 23 01:00:24 2024 GMT
Not After : Nov 24 01:00:24 2024 GMT
Subject: CN=96a391798ead9a1da2a0acd8c1665bc52bc666c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e7:2a:58:b2:e4:f6:0c:5f:16:f4:fb:37:60:
cf:46:6a:d7:8d:6b:45:f1:46:dc:72:7a:de:2f:ec:
1f:53:51:06:51:e6:7f:5e:12:7b:48:cf:4c:ca:41:
d3:cd:b5:01:43:d4:a5:25:55:49:af:1b:08:e3:a1:
4c:3e:65:dc:90:81:5f:c2:8a:0f:f2:cb:9c:a4:8e:
ad:10:a4:4f:70:c2:7f:1d:b5:b7:52:f5:02:d1:c1:
f2:f6:7e:d4:45:96:06:f5:c0:42:cb:bf:40:3a:eb:
90:40:15:16:b8:f0:09:53:ad:8d:dc:36:fa:55:f3:
6c:59:11:a7:c8:11:c4:5c:7c:7e:a4:97:6a:51:01:
a4:35:40:f0:09:92:82:72:ac:6d:a5:6b:20:42:b5:
c3:70:dc:58:16:c9:a8:3d:ce:9b:9f:10:bc:8e:d8:
f4:01:92:03:7d:9c:2a:20:ef:50:bd:19:db:8c:3b:
a0:44:0a:ec:2a:b9:00:2e:93:f6:47:1a:da:da:6b:
43:42:e8:3f:6e:3a:29:6f:9a:4b:8a:1e:d9:89:37:
41:71:9a:bb:b8:ea:3a:15:63:66:1d:49:af:14:c9:
31:0a:f7:2b:71:37:cb:00:00:66:67:d4:32:e3:c7:
97:52:9f:a1:d6:7d:f8:d5:b7:8a:7f:f6:24:fc:f5:
2d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A3:91:79:8E:AD:9A:1D:A2:A0:AC:D8:C1:66:5B:C5:2B:C6:66:C6
X509v3 Authority Key Identifier:
keyid:0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:e9:b8:d6:fe:25:9d:2d:c6:23:b5:74:00:17:b0:98:51:c7:
49:85:70:3a:f6:35:a5:f0:70:51:7d:ba:ac:25:ca:e7:e0:60:
96:9a:d1:a5:4e:52:e4:e4:83:eb:0a:bf:69:61:5a:df:b5:43:
b3:70:5b:c2:26:52:29:2d:d4:d6:38:5d:0e:3b:70:ac:08:cd:
4c:e5:04:61:8c:2e:25:cf:b7:56:04:f0:46:64:d8:65:4d:cd:
be:d6:50:2b:fd:10:89:9b:7c:22:01:b1:d7:66:13:d2:4d:54:
ea:ec:60:b9:85:f0:f4:0c:7c:6b:b5:df:c6:3e:4e:d3:f5:7a:
eb:7a:ab:e9:2d:76:b9:c0:d9:82:e6:4f:0e:72:85:11:1f:99:
2b:3f:bb:c9:e1:b1:d2:b2:15:1a:27:5a:d0:3c:b7:0e:2b:60:
43:3a:76:c4:8c:01:16:36:42:71:c4:b0:56:78:43:d5:f4:f3:
9e:71:5e:b0:49:c0:97:7a:f3:86:ff:11:c9:bf:da:16:63:68:
9e:84:01:ae:79:fe:93:46:84:66:8b:98:62:0a:de:2e:8e:15:
5b:ba:5d:cd:ff:f1:2f:7a:3d:af:7f:42:e3:d7:54:4d:65:bc:
4c:81:81:be:4b:6c:1d:ab:b3:59:eb:6c:76:50:75:f2:27:49:
53:5f:7f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:19:09 2024 by rpki-client on console-fra.rpki-client.org