Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
File: DAHrsNsEzE1pGCs47A30sIkiJ40.mft (raw, json)
Hash identifier: qYMHPkBEs5t/v+Jp3BpOSNJB5sseuMd4ojTTArX2unc=
Subject key identifier: 8B:9B:45:5A:BD:C7:BD:D1:3A:51:0C:B2:D8:38:EF:9E:F3:E2:B9:06
Authority key identifier: 0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
Certificate issuer: /CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Certificate serial: 01940647D90F9A9E6EF5559A6E29693BFCD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
Manifest number: 13C7
Signing time: Fri 27 Dec 2024 04:02:39 +0000
Manifest this update: Fri 27 Dec 2024 04:02:39 +0000
Manifest next update: Sat 28 Dec 2024 04:02:39 +0000
Files and hashes: 1: DAHrsNsEzE1pGCs47A30sIkiJ40.crl (hash: HgyQ6oxw1QB52jnBwbI3fOAUNkUAP5yA0pM9hCD8wJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 04:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:47:d9:0f:9a:9e:6e:f5:55:9a:6e:29:69:3b:fc:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Validity
Not Before: Dec 27 04:02:39 2024 GMT
Not After : Dec 28 04:02:39 2024 GMT
Subject: CN=8b9b455abdc7bdd13a510cb2d838ef9ef3e2b906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:30:83:3f:2e:16:bf:53:58:98:44:22:65:
c9:fb:39:8a:95:8d:92:61:e9:e0:b1:dc:09:ac:51:
35:f0:ed:1c:1c:7c:a5:8b:09:a2:da:e8:ed:df:e8:
a7:4d:e5:82:96:c5:90:8a:fe:1f:5e:33:06:05:d8:
ee:60:66:18:b7:6e:99:e6:f9:a6:37:8a:a9:3a:3a:
18:1f:fb:df:11:f2:32:d3:b3:56:5f:22:99:93:7b:
47:75:dc:fc:f6:5c:be:0e:38:12:70:45:04:7f:70:
9b:84:1e:08:f7:ed:ea:25:54:0b:65:b5:23:11:ad:
a0:d5:ac:7a:da:67:19:95:8d:76:f6:d4:db:f3:57:
63:8b:f6:05:e4:7c:6a:0d:dd:9e:05:a7:6e:b3:a7:
2b:e6:a1:df:78:78:7d:35:e5:9d:bf:ea:2a:13:e4:
eb:0b:0c:8d:26:b9:1f:70:f7:a4:7a:be:ad:90:ed:
1e:37:12:30:8b:f6:97:08:ce:4a:ca:8d:73:d5:35:
b5:fd:d6:c7:65:09:27:7a:86:b3:32:af:e4:24:b2:
10:57:29:cf:b4:44:f7:e8:ac:44:35:1d:ca:e1:28:
c8:2f:ad:dc:da:a0:4d:1d:5c:b6:a3:fb:eb:7c:fd:
63:df:f4:00:92:7e:13:c4:84:c7:29:4a:22:13:da:
08:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:9B:45:5A:BD:C7:BD:D1:3A:51:0C:B2:D8:38:EF:9E:F3:E2:B9:06
X509v3 Authority Key Identifier:
keyid:0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:b8:69:91:e3:fa:d6:c1:1e:8c:88:20:a1:93:fd:5a:ac:7a:
25:1e:79:5c:f8:3a:64:dc:e3:de:28:77:3c:4c:ee:d6:fd:bb:
97:06:27:22:23:d5:56:51:83:21:e6:ab:54:3a:bd:c8:c1:31:
ab:68:8f:40:17:bc:dd:3d:49:a4:94:db:57:27:cb:f5:48:c4:
3c:f1:28:30:48:29:40:21:8e:b5:dd:03:a4:6c:04:dd:11:c6:
c9:e5:93:76:6f:92:fa:6e:d7:32:16:1a:eb:6b:6e:94:72:f8:
22:73:18:dd:9d:89:45:c7:32:6b:1c:00:22:20:77:03:79:cd:
9b:e0:4b:df:8f:ea:01:dc:65:93:9e:91:2a:44:34:88:c8:b6:
ea:75:0a:dd:fc:c9:b8:de:98:0c:1e:2b:62:9e:94:eb:07:d9:
d4:53:bd:15:bb:58:d2:04:5c:79:4b:23:3d:8a:a7:52:86:21:
7a:c3:f3:e0:08:c4:6c:a9:6b:4c:3c:14:bd:aa:df:77:dc:03:
58:3c:7c:51:52:37:3e:a8:af:5b:2d:6d:35:23:72:8a:5a:fb:
fe:b1:ac:87:90:49:58:b3:20:4a:a9:3c:e1:e9:86:12:60:bd:
37:8d:d1:19:d4:b7:87:cc:64:52:4d:96:83:99:3a:a7:a9:66:
14:62:d4:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 13:15:14 2024 by rpki-client on console-ams.rpki-client.org