Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/rAhSr1qOQ2stTacukrZBFOH00V8.mft
File: rAhSr1qOQ2stTacukrZBFOH00V8.mft (raw, json)
Hash identifier: DAxJlsVo2Ad0PB4AeFLb/APvbRn+/Xa2Lkt8uH6+wVA=
Subject key identifier: 38:B6:45:BA:59:B7:DA:0D:12:93:00:8A:B2:8C:B2:4E:23:83:C9:ED
Authority key identifier: AC:08:52:AF:5A:8E:43:6B:2D:4D:A7:2E:92:B6:41:14:E1:F4:D1:5F
Certificate issuer: /CN=ac0852af5a8e436b2d4da72e92b64114e1f4d15f
Certificate serial: 019350F4815D346D301A66B4429CD98A4350
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAhSr1qOQ2stTacukrZBFOH00V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/rAhSr1qOQ2stTacukrZBFOH00V8.mft
Manifest number: 02E1
Signing time: Thu 21 Nov 2024 23:00:21 +0000
Manifest this update: Thu 21 Nov 2024 23:00:21 +0000
Manifest next update: Fri 22 Nov 2024 23:00:21 +0000
Files and hashes: 1: BTs6gjcHcw7okqjlk63lvVIsJ2o.roa (hash: A8J1+c+C+98/k7lwN7BlDSV2auDSWMgbTEfJSA9SjK4=)
2: rAhSr1qOQ2stTacukrZBFOH00V8.crl (hash: B3MUUvikGarf43PqsnCwPOGt8e7bkLSgxJFEpoLSTyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/rAhSr1qOQ2stTacukrZBFOH00V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/rAhSr1qOQ2stTacukrZBFOH00V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rAhSr1qOQ2stTacukrZBFOH00V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:50:f4:81:5d:34:6d:30:1a:66:b4:42:9c:d9:8a:43:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac0852af5a8e436b2d4da72e92b64114e1f4d15f
Validity
Not Before: Nov 21 23:00:21 2024 GMT
Not After : Nov 22 23:00:21 2024 GMT
Subject: CN=38b645ba59b7da0d1293008ab28cb24e2383c9ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:01:a9:90:71:3f:5a:a7:ad:d3:59:a3:1d:36:
09:ab:f7:3b:4d:31:fa:48:3b:d5:fc:6e:5b:3a:a3:
50:82:13:96:9d:5c:6a:db:30:c5:cd:d0:53:3d:60:
bb:ea:62:d5:95:e8:4b:e1:d6:4f:a2:c1:40:fa:62:
2c:5e:9f:43:41:a9:2c:30:ba:50:15:3e:63:1e:1a:
71:a8:dd:fb:00:56:7c:b7:88:3e:fa:83:ab:1a:34:
4b:28:b3:14:80:c4:29:b8:f1:08:b6:35:e9:48:ce:
63:57:55:a9:be:1c:a3:f6:ad:a4:6c:96:f1:8f:0d:
f0:a0:b0:d5:e2:69:9b:60:ff:04:99:3c:73:91:7e:
36:bf:e7:52:70:c5:31:17:d2:78:08:6e:68:8e:51:
98:c6:58:0a:49:a8:06:7d:bb:36:06:6a:bd:e9:59:
3d:a4:ed:96:26:8e:1e:39:ca:01:ef:3d:ee:bb:06:
d4:0f:43:7b:22:ae:76:bc:7a:37:f1:3d:02:02:29:
4c:61:e9:2f:9c:8f:d9:4d:19:2c:59:e8:6a:de:90:
fd:46:64:88:17:30:80:00:56:1f:93:4e:5e:80:29:
ea:05:06:7d:08:a8:d5:8c:58:b6:a4:f1:e4:79:98:
f7:97:5f:86:ec:fe:5a:12:16:21:41:fe:35:7a:8e:
50:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B6:45:BA:59:B7:DA:0D:12:93:00:8A:B2:8C:B2:4E:23:83:C9:ED
X509v3 Authority Key Identifier:
keyid:AC:08:52:AF:5A:8E:43:6B:2D:4D:A7:2E:92:B6:41:14:E1:F4:D1:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAhSr1qOQ2stTacukrZBFOH00V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/rAhSr1qOQ2stTacukrZBFOH00V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/rAhSr1qOQ2stTacukrZBFOH00V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:1c:e8:7e:ff:cd:77:bb:0e:16:2f:d3:5e:dd:77:00:5e:01:
51:a8:77:e0:5c:d1:d9:5a:6d:96:e6:a9:04:1c:d0:51:52:f1:
9d:ee:e5:ac:21:b2:f7:63:b1:f4:f2:e3:51:37:cd:dd:80:2b:
93:12:0a:1e:6b:c3:a8:b8:45:45:70:25:20:a2:db:e4:12:81:
ac:5b:10:4d:a2:56:c6:de:bd:8a:d8:72:3e:0c:e9:bb:dd:95:
42:5e:34:5e:74:7a:39:f6:15:96:29:fc:5a:01:b5:0a:cb:0e:
0d:6e:dd:13:42:76:d9:f7:5a:e0:ed:4a:40:fa:9b:c1:87:c8:
f1:08:6a:1c:80:55:5b:63:a7:44:0e:1b:3f:37:a2:e4:8e:b2:
fc:50:8d:95:a7:77:9f:54:aa:63:18:4c:36:b0:ce:14:c2:14:
f9:a2:a5:a6:fd:92:92:20:7f:0a:51:88:6b:8a:17:29:ef:43:
f8:3c:1e:43:5b:a0:6c:1d:eb:3a:74:0a:0d:08:3f:1f:94:2b:
16:ff:ad:c1:48:80:13:83:e1:ef:6e:6c:45:46:3b:f9:89:35:
e1:92:cd:0c:ad:51:80:63:01:7d:6d:f2:b4:e1:39:94:4d:d0:
b3:ff:57:e6:ff:d5:72:38:d7:52:f0:ea:3d:21:86:46:14:9d:
b2:6a:62:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:31:44 2024 by rpki-client on console-fra.rpki-client.org