Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: hfhkZc9XBYYIw/0Jco11LNAZLe/CyTMcubR+6m+mRTs=
Subject key identifier: 43:4B:13:D6:E7:C5:AF:60:FB:AF:B9:B1:9D:4F:5C:93:2E:C2:0F:52
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 019357D2F3673D04C6C8E5C03828C4B92956
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 013C
Signing time: Sat 23 Nov 2024 07:01:02 +0000
Manifest this update: Sat 23 Nov 2024 07:01:02 +0000
Manifest next update: Sun 24 Nov 2024 07:01:02 +0000
Files and hashes: 1: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: iGts5pIKS6g3dyoBLmkCAMBJZThJZ6k7j1Rf7oKTM70=)
2: rHgV8iOcUCHTKjZxD5NDayzaq70.roa (hash: QSR54SXjs/vdHg56OdoHHkyy5cGyG+trNweN53cAj/g=)
3: z--XBesbwqFEiq-qxAVdzp0vZ7M.roa (hash: 07G0t+hOaqU/FUkzlREn6OdxCaqRdcNTaMe7ZyZGgeg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:f3:67:3d:04:c6:c8:e5:c0:38:28:c4:b9:29:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Nov 23 07:01:02 2024 GMT
Not After : Nov 24 07:01:02 2024 GMT
Subject: CN=434b13d6e7c5af60fbafb9b19d4f5c932ec20f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:07:4b:22:6e:d2:7f:43:7e:2e:c9:2e:80:42:
60:25:a4:a3:88:ca:e3:15:a2:8d:87:e1:1e:1e:e8:
3c:bf:68:34:b4:b0:63:4b:fa:6d:fc:e7:e0:0f:74:
81:3d:42:76:b4:bf:41:3c:d0:4d:60:e8:c8:f4:97:
d0:bc:cd:4c:05:85:d3:e1:db:b6:55:59:4e:b8:1e:
45:f5:69:0a:98:74:8d:a2:42:81:5b:68:4e:eb:67:
15:28:74:03:69:2c:08:a8:75:f8:a1:f2:f2:da:81:
29:b1:aa:28:5d:c6:71:f9:0f:8c:5d:db:dc:0b:11:
f2:46:4d:9e:26:24:bf:c7:8d:41:0c:90:3d:9a:14:
e1:fe:cf:a0:a9:b5:fd:4b:27:ae:26:69:f7:24:49:
f8:15:c0:5e:4e:86:b8:64:8a:b6:03:b8:e5:06:25:
90:6d:66:b2:1e:09:28:86:d6:ed:c4:7a:7a:d1:3c:
61:ea:7a:89:4b:a4:be:d3:25:32:07:65:17:b7:c2:
20:d2:f7:ec:b6:19:2c:41:68:91:8f:29:67:e8:91:
47:30:f8:f6:c9:89:32:ca:ba:5f:1c:d3:e5:11:d4:
93:80:f7:62:52:12:36:75:f2:c9:82:28:39:cc:10:
14:88:e6:49:80:a2:d8:05:f2:cc:bf:60:5c:63:dc:
1d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4B:13:D6:E7:C5:AF:60:FB:AF:B9:B1:9D:4F:5C:93:2E:C2:0F:52
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:21:dc:9a:d9:c6:95:41:3e:59:5c:c3:9b:64:5b:cf:e8:e3:
f5:3c:e7:cb:59:c0:b3:77:53:6c:57:35:e3:89:3b:79:59:39:
2b:8a:0c:ec:1b:a0:59:c6:5a:e4:6a:a1:d2:78:95:12:6c:0e:
98:c0:dc:22:16:3c:3d:ee:ef:b5:cc:38:a2:3f:76:a2:29:84:
c8:fe:43:bc:b7:bd:db:c9:68:1e:44:02:26:b6:41:f0:f2:59:
2b:e3:d2:99:66:82:85:8c:b7:88:9a:6f:f6:15:4e:14:cd:38:
fb:63:24:84:46:f4:13:cd:dc:c0:c4:fc:ff:9d:0a:c2:22:04:
06:f8:a0:81:51:59:8e:72:7b:18:dc:a5:52:d6:fa:3a:55:e5:
ec:71:02:7f:64:c9:b4:14:60:e9:21:e7:97:d2:db:15:3a:be:
f6:8d:3c:f7:fb:7a:2d:2d:5a:5f:3f:4d:d4:e4:e7:af:c9:b8:
91:a4:54:b3:17:bd:27:af:1d:7b:e1:ff:14:81:e4:30:44:ec:
b8:cd:c4:d4:44:e3:2f:01:c5:dc:37:10:3b:ed:fc:2a:31:1f:
9d:c8:45:2e:88:05:6f:8a:eb:f8:fe:73:f3:88:7c:80:c3:58:
2d:e3:d8:4b:cc:ff:38:7d:2e:97:7c:e9:99:37:94:1c:5d:18:
33:76:7c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:34:16 2024 by rpki-client on console-ams.rpki-client.org