Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
File: CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft (raw, json)
Hash identifier: XpARLFQtKSLgxAxrMJ9/gwTstOAE5pOq+d/OG6BUqIg=
Subject key identifier: 9A:E1:FB:A2:92:62:17:E5:E7:11:98:AA:85:B6:CF:86:4A:87:F6:1C
Authority key identifier: 08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
Certificate issuer: /CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Certificate serial: 01901D0F7703C86FC9734A7D507DD6799CA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
Manifest number: 0DC9
Signing time: Sat 15 Jun 2024 18:01:11 +0000
Manifest this update: Sat 15 Jun 2024 18:01:11 +0000
Manifest next update: Sun 16 Jun 2024 18:01:11 +0000
Files and hashes: 1: CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl (hash: xjloJR7Dqx/lAhcwPW5ut5I/GRPY8PJuIiYCm3Q90wk=)
2: RRSrei0daMKFpGD4tjLj10dTj94.roa (hash: bwrqITx1fF/iLkF2SNzXpzhVmx9R2jxpYIoe20tzTKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:0f:77:03:c8:6f:c9:73:4a:7d:50:7d:d6:79:9c:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Validity
Not Before: Jun 15 18:01:11 2024 GMT
Not After : Jun 16 18:01:11 2024 GMT
Subject: CN=9ae1fba2926217e5e71198aa85b6cf864a87f61c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b8:59:4f:d1:e9:b0:0c:06:5b:25:a9:62:b9:
ce:47:85:d5:c8:3b:f7:81:46:53:62:53:36:24:69:
22:8d:bb:1a:22:cd:c2:3d:ab:dc:91:b1:cd:72:f1:
5d:40:0b:d8:63:55:1e:31:cf:5f:61:8e:2d:c2:4c:
9d:23:7a:35:3b:31:55:ce:fe:27:d7:74:8d:8b:2d:
dc:49:98:fa:07:b8:54:02:45:5a:f9:c5:01:cc:3e:
e5:55:2b:f8:92:18:3e:71:e3:de:a0:30:a7:c2:d8:
a1:b9:e8:52:51:bd:b9:2f:90:c9:10:5f:a3:65:be:
27:ce:56:03:e9:28:0d:3e:bd:fe:03:49:13:50:72:
31:33:2c:14:f4:7b:1f:9b:57:b6:f6:fe:2d:60:e5:
94:50:68:76:4a:04:52:28:0c:6f:e5:56:99:36:8b:
cd:35:83:f2:3c:fb:db:f5:3b:c3:fc:8b:f4:e7:31:
80:e3:36:a5:8f:ba:3b:bf:95:8e:45:48:c3:61:0e:
07:01:5b:61:6c:6e:37:dd:a4:84:91:ff:db:1a:2b:
ad:9b:60:f2:a6:d8:00:27:3c:c7:77:d9:81:3d:b2:
36:27:b9:5b:4f:0e:fa:3d:4c:90:e6:89:86:06:6f:
d8:c1:64:6f:d0:fb:98:8e:85:ad:72:e0:13:0d:1c:
1e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E1:FB:A2:92:62:17:E5:E7:11:98:AA:85:B6:CF:86:4A:87:F6:1C
X509v3 Authority Key Identifier:
keyid:08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:d3:54:d4:28:a6:14:99:fb:98:ab:20:2b:5a:09:13:ff:79:
c8:0a:31:2d:bc:28:29:36:6f:30:90:55:55:9a:c7:92:84:83:
13:0b:63:22:d8:dc:56:8e:d5:41:35:13:72:da:22:56:4a:06:
a7:03:98:1a:3b:bf:1b:90:a0:34:04:d4:50:cb:00:8f:8e:21:
4c:5c:0e:69:67:4b:04:c9:4b:1b:b8:62:39:09:30:63:cc:8f:
5a:d7:d1:f7:24:9e:c0:11:6d:f0:26:ba:aa:fa:a3:5e:b5:3c:
1e:76:f5:5b:39:c5:59:b7:96:ce:05:b7:9e:35:89:2d:ef:8a:
dd:8f:d9:9e:3b:62:9f:c5:a1:81:56:51:a1:f9:d5:8a:f7:0a:
cb:8d:5c:07:0d:fd:e4:2a:b0:51:24:63:7d:a0:52:0c:59:3e:
7d:3b:cc:a8:fb:c6:34:b9:c9:ba:91:22:08:c0:ff:50:34:a7:
af:c3:bf:c0:b2:39:8a:59:2f:a3:8b:0e:40:53:a6:a8:06:d1:
27:6a:09:1e:31:9d:6b:a2:d3:fd:77:01:2f:ec:a5:22:6b:43:
60:be:82:c4:9e:aa:d5:fb:b3:f1:88:11:6e:44:23:bc:ad:b5:
4b:a6:61:c9:7c:34:9c:bc:bf:28:d3:91:9e:8f:a2:9e:f5:29:
39:99:81:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 20:37:15 2024 by rpki-client on console-fra.rpki-client.org