Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
File: 3z_cS_M72A_hKNdWhD9gs51b7uM.mft (raw, json)
Hash identifier: PZ3caJ1PDldfoo6am9AUtvnBQGFLS2ARRSulr+PhMTw=
Subject key identifier: F3:EF:53:95:48:8D:3A:E3:CC:B7:18:04:81:34:36:B5:71:B1:7D:0F
Authority key identifier: DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3
Certificate issuer: /CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3
Certificate serial: 019352AD00A94D66BC3814FE2143C07EF589
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
Manifest number: 02DF
Signing time: Fri 22 Nov 2024 07:01:29 +0000
Manifest this update: Fri 22 Nov 2024 07:01:29 +0000
Manifest next update: Sat 23 Nov 2024 07:01:29 +0000
Files and hashes: 1: 3z_cS_M72A_hKNdWhD9gs51b7uM.crl (hash: TQY31FaeJog4HdBHrbhSldeoE1rXO1avGZKSNEIxjXs=)
2: DHlFIpMD2Wy5wZPDOtpy1iSTYsk.roa (hash: p1YLDIxc/OHJUPuwFNoGjIJKS7pdhL0DAoB+Q84oTuU=)
3: OOpAPeGQ5ZnwJGCJThB1hAYKBCA.roa (hash: GaW2qytZxay96oVZQ2BbPotLX1Azic3k46ncnDF3WX0=)
4: iexIWXq2QIUeSG0lYo33E24h_3A.roa (hash: Q5gj85EBnb0BBM0Z7eYCeRk9V380acJyPhf/vqv2imc=)
5: jEV79KTKUAuS_vRA31Kc6SufGxI.roa (hash: CmChxnD1pIc4PBhCgE8rXBiJNaLGrCwKJGvwXoi/cX0=)
6: okhGoThPuyXKLGifvs4QTJdatNU.roa (hash: K6vXGOgIrqKBSojubQEXgfQcqjt+UY53TgEHVoRYHYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ad:00:a9:4d:66:bc:38:14:fe:21:43:c0:7e:f5:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3
Validity
Not Before: Nov 22 07:01:29 2024 GMT
Not After : Nov 23 07:01:29 2024 GMT
Subject: CN=f3ef5395488d3ae3ccb71804813436b571b17d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:90:1d:54:74:15:b3:b5:66:c2:d1:45:7e:e6:
3b:22:ac:18:18:99:3c:79:53:c9:bb:55:c0:ae:0c:
93:c1:e0:9c:6f:eb:7a:e7:ba:fc:f0:b5:9a:a6:a7:
f7:34:47:62:94:57:55:7c:94:b0:78:2b:00:ce:3b:
44:cf:46:2a:9b:42:1e:52:0d:79:e9:72:67:88:a4:
b0:c9:87:ec:23:8a:3f:d8:1e:09:94:08:4c:00:79:
30:16:64:a6:65:c8:45:8e:70:16:18:e3:f5:63:87:
8a:aa:83:ac:56:d2:d3:fd:aa:11:3e:a4:b8:47:b6:
dd:69:c6:48:c6:01:36:23:dc:aa:10:4f:31:b9:2c:
3a:18:5c:87:18:bf:6f:c8:75:e1:7d:f6:e5:a3:ef:
47:e0:a4:10:09:28:4d:cc:7d:cb:df:8c:b3:11:7b:
7f:fb:ab:fc:65:d0:ac:c5:80:b9:13:a0:c1:71:af:
38:3a:da:55:36:a1:e6:d9:f9:a8:8b:a7:51:b2:3e:
9c:56:9f:da:4e:8a:42:b2:1f:bc:c2:69:7e:12:11:
a2:3d:fa:2d:75:c0:52:2a:9f:54:10:2a:29:53:a1:
dd:96:02:cc:36:25:0b:c6:27:27:29:1c:57:dd:c5:
42:53:0e:8e:ab:31:2d:19:75:e5:94:ca:f4:d7:a1:
2c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:EF:53:95:48:8D:3A:E3:CC:B7:18:04:81:34:36:B5:71:B1:7D:0F
X509v3 Authority Key Identifier:
keyid:DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:9c:81:16:ea:ae:8d:56:8a:59:96:bb:a4:db:df:dc:8e:53:
71:96:23:92:c0:ca:09:44:8e:c0:30:c6:0e:59:bd:bc:43:ba:
81:a3:a8:c4:be:7a:b8:62:14:ea:c8:11:84:f8:1a:aa:60:ca:
a0:f5:57:35:46:e1:69:91:31:94:a3:79:3e:65:b3:55:ae:9a:
72:17:12:6b:e4:dd:2c:76:54:76:5e:cd:d2:a2:c9:23:45:95:
a6:04:fd:a7:b7:3c:3f:ce:24:14:a8:36:15:c6:75:48:62:bf:
ef:9c:d4:a2:5d:6c:9d:b8:72:b8:a4:b0:1c:e0:78:5d:ee:5d:
f4:c4:5b:32:55:93:29:d3:c0:29:45:ee:f7:4e:7f:81:c8:04:
99:e0:45:24:dd:00:1b:58:97:43:94:0b:45:8c:90:7a:37:2e:
4a:7e:3e:57:ae:c0:80:55:f9:b3:7b:6a:73:9a:21:cf:b2:e0:
0b:e2:a8:0a:cc:b8:5b:43:63:d3:de:ac:a2:3c:3f:b2:b6:9e:
ba:a2:44:6f:75:09:3e:50:2c:cb:bf:d8:90:5d:09:db:09:25:
0f:c0:5d:88:d3:0b:17:9b:aa:69:6d:12:4a:de:5c:ab:3e:89:
27:1d:68:95:f5:62:a6:05:92:bf:e4:af:ba:2f:af:94:e7:e6:
b5:5a:93:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:12:09 2024 by rpki-client on console-ams.rpki-client.org