Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json)
Hash identifier: Rr8qUB6+Yinod85HIG6To71ip5cInSJLgVzacKOj+rQ=
Subject key identifier: A3:09:BD:72:67:4F:EE:32:3B:37:9F:AA:1D:11:88:6A:00:C7:05:4C
Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Certificate serial: 019369DAD1D35A192C02CAB3E2CBB1197671
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 19:02:48 +0000
Manifest this update: Tue 26 Nov 2024 19:02:48 +0000
Manifest next update: Wed 27 Nov 2024 19:02:48 +0000
Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: 1gJc0TYuNqtWFZAp/1q+N3owGMZj4aTc74GmZRmNVDE=)
2: 1mQfquVHNYgUwMWxO6us21y_LNs.roa (hash: /IXTCnav+B6JbtW7vTpHkca+kxReuOTLB+4NGEflFTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:d1:d3:5a:19:2c:02:ca:b3:e2:cb:b1:19:76:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Validity
Not Before: Nov 26 19:02:48 2024 GMT
Not After : Nov 27 19:02:48 2024 GMT
Subject: CN=a309bd72674fee323b379faa1d11886a00c7054c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:38:8c:14:a3:ae:64:eb:4c:0a:32:49:f4:45:
06:e2:3d:08:6a:ab:6a:d3:f3:cd:3f:6e:78:e5:d3:
17:ca:37:0a:5d:f7:ad:78:af:1c:3c:74:65:0c:a0:
1c:75:17:0d:9b:eb:b4:70:22:a1:20:14:1b:70:c5:
8b:4c:52:cf:35:f4:b7:35:aa:ca:20:7f:f1:fd:97:
cd:f5:04:f1:00:e8:04:3a:4e:38:d3:53:16:e4:b0:
38:dd:d8:a3:2b:8c:c4:0d:1f:40:33:4b:af:7a:9c:
5e:c6:57:95:a9:db:3d:25:ce:16:55:47:9e:35:46:
48:8e:d3:82:3b:8b:f5:02:b0:6b:25:57:a9:38:cb:
b6:f5:f0:06:bd:df:2f:23:8a:c7:5f:7a:7e:ae:d7:
a2:9e:1a:93:bf:19:16:a1:98:fe:77:c6:80:b2:e2:
ed:6a:66:a9:9d:12:8f:78:76:f1:88:6c:56:98:2f:
d7:4e:20:42:2d:3f:b2:af:4e:a4:91:b8:66:d6:0b:
a4:f3:a6:26:9e:61:ba:4b:88:ac:d2:e2:8c:aa:4c:
8e:e9:22:2f:8b:aa:81:46:07:f6:14:15:3a:00:21:
b5:a8:81:7d:a4:74:ad:78:32:48:ac:f4:9e:8a:be:
52:33:ae:d1:1c:38:30:4d:cf:5e:3b:2a:09:20:9b:
3f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:09:BD:72:67:4F:EE:32:3B:37:9F:AA:1D:11:88:6A:00:C7:05:4C
X509v3 Authority Key Identifier:
keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:40:68:af:d7:dd:18:8e:fa:93:3f:05:84:7c:76:2a:13:9b:
5f:52:e9:8b:bb:55:69:2c:02:91:37:c2:be:d8:ff:d9:a3:f6:
d2:71:f9:51:ec:88:d6:91:ca:21:b4:19:ce:7b:f1:23:2e:de:
61:82:ea:1b:27:2d:d6:50:ac:c1:4c:cd:d9:a2:1b:c7:3a:3b:
e3:94:6e:fc:d9:41:81:e7:52:75:73:d2:40:4e:bc:10:5c:99:
f1:6c:de:52:83:b4:f2:ff:2e:94:ad:12:5a:a0:5b:9c:a9:e1:
9d:79:ce:cd:42:af:2c:01:b5:d9:68:cf:77:8b:a7:a5:80:bc:
a4:9e:41:d5:97:83:41:f6:d3:7d:84:89:1a:00:af:01:dc:89:
90:9f:d4:ef:ca:5a:e1:00:30:bf:9d:71:a4:f3:65:1b:1b:37:
12:88:4d:30:d0:89:f8:3a:f7:24:84:90:54:3c:56:00:6e:1d:
83:27:fc:52:e0:13:eb:a9:f9:35:0e:90:00:09:04:09:24:60:
17:4f:b1:ed:6e:ff:f7:30:e4:ea:31:d3:ac:d1:52:e3:40:e3:
1d:df:72:ef:fa:0c:ea:aa:41:68:9d:d6:70:3e:a4:ac:31:a2:
51:4c:a0:a4:c1:cd:d2:12:9e:04:8d:07:cc:e7:58:41:63:5f:
0e:bc:fc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:04:02 2024 by rpki-client on console-fra.rpki-client.org