Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
File: 3hgnB8REwxBksYmcWX6e_XNDj5I.mft (raw, json)
Hash identifier: YtI2nUt+h0exB83VBidDtbRH0R1mKg+toNV4kpnlLGY=
Subject key identifier: 2D:5F:3B:21:BE:9C:C0:C4:90:9C:04:A7:DB:45:AE:7D:C5:E1:F0:F9
Authority key identifier: DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
Certificate issuer: /CN=de182707c444c31064b1899c597e9efd73438f92
Certificate serial: 0193523E0D269CEE09A237B107697E15F14F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
Manifest number: 02D4
Signing time: Fri 22 Nov 2024 05:00:18 +0000
Manifest this update: Fri 22 Nov 2024 05:00:18 +0000
Manifest next update: Sat 23 Nov 2024 05:00:18 +0000
Files and hashes: 1: 3hgnB8REwxBksYmcWX6e_XNDj5I.crl (hash: TeOgLewNWfaCajnxzSU3HffMrDmv1MfaDc6cYxIMeZE=)
2: PwFYWPmRTUJ8rvWhf_8RlcfPE4A.roa (hash: P21e9DVOSHQ4GHD7hy1XiiFY0cmd7/YJpZim3z8rvI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:3e:0d:26:9c:ee:09:a2:37:b1:07:69:7e:15:f1:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de182707c444c31064b1899c597e9efd73438f92
Validity
Not Before: Nov 22 05:00:18 2024 GMT
Not After : Nov 23 05:00:18 2024 GMT
Subject: CN=2d5f3b21be9cc0c4909c04a7db45ae7dc5e1f0f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:47:3a:23:0d:3f:5f:c2:3b:9d:3b:b2:cd:17:
be:c5:c8:c2:74:a7:7a:08:3e:33:0d:8f:ba:3f:10:
29:01:08:1c:1b:c8:95:ad:e2:05:1e:5e:9d:58:05:
6b:6d:5f:c9:30:0b:f3:99:b2:20:60:cc:2c:e4:9b:
5d:28:21:5e:a8:40:34:aa:44:61:6b:9c:5a:34:4f:
70:99:60:c2:23:19:e1:69:87:99:d7:18:01:9c:d5:
ac:bc:78:bb:7d:27:08:c9:2b:aa:c8:ef:61:a6:a0:
dd:f4:29:11:8d:e6:40:14:e2:24:62:45:8e:a0:dd:
47:fd:28:9e:72:d0:da:a6:34:1f:80:70:e6:05:b3:
e4:99:69:33:43:52:f4:cc:e8:38:6c:33:90:12:f5:
42:3b:27:31:ac:95:09:ae:3c:ba:28:29:b0:61:23:
45:f3:77:87:1a:e5:c3:70:90:40:1b:00:33:0f:90:
7c:14:3b:58:e6:e2:92:e7:bb:d7:53:d5:98:c0:32:
d5:5f:72:a7:6e:c1:d0:3d:bb:00:07:09:94:a3:5d:
14:2e:f0:80:e0:55:bb:8c:d3:62:e0:84:79:df:25:
64:0c:52:5e:d9:cc:3b:bd:bd:3b:cb:58:48:73:14:
d5:1e:2c:cf:87:2a:62:52:e5:83:74:e9:93:db:15:
31:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:5F:3B:21:BE:9C:C0:C4:90:9C:04:A7:DB:45:AE:7D:C5:E1:F0:F9
X509v3 Authority Key Identifier:
keyid:DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:e7:fa:c1:19:50:6e:46:05:df:92:f8:c1:7d:0d:0f:81:e9:
b1:9a:6c:83:01:bd:04:ed:d2:61:98:a4:43:1d:cc:49:ed:fc:
08:4e:5c:a1:dd:00:92:89:e7:5b:69:b2:68:a7:05:24:94:40:
69:04:27:72:76:9b:98:46:74:aa:3a:e6:7d:3a:11:1a:1a:e3:
61:ff:d9:59:b3:ed:12:de:0c:9c:dc:a8:98:7e:f1:ca:74:af:
71:ea:0c:ba:d7:7e:ec:4f:c7:63:21:d2:19:fc:cb:74:e6:17:
3d:21:8d:31:a1:cb:a8:0c:5d:2f:e2:ab:66:04:37:05:52:ba:
51:ac:c2:b7:83:8f:d8:99:27:a3:31:22:d5:29:33:36:85:19:
fa:e5:e0:28:82:e6:02:5e:84:18:6b:8c:4e:7d:62:3a:05:1e:
83:09:8c:7e:1f:d1:ac:61:37:13:85:db:e1:5a:ff:e8:f2:4b:
4d:48:19:1f:71:36:b5:1b:e7:c0:ee:01:08:49:a1:11:fc:5b:
6c:df:89:3f:e3:57:43:70:7a:17:2c:cf:b5:46:7e:ba:17:6c:
05:69:0d:da:21:e4:80:3a:61:88:74:3c:9c:8b:c3:94:3b:7c:
6a:9f:66:f3:95:6b:d3:be:46:35:1e:63:be:b3:1c:5a:0b:de:
3a:a3:04:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:03:27 2024 by rpki-client on console-ams.rpki-client.org