Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: r+sQq3cTVzGviqgXOFlnvDDYwk8Lsdg0z7UOCh/O5WA=
Subject key identifier: 6C:B7:B1:55:3D:08:60:D6:85:7B:28:F6:EF:F5:9C:E0:59:4C:F1:08
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 0193549B7B3ABCF2C3AF5E4C3632A90BE186
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 136F
Signing time: Fri 22 Nov 2024 16:01:35 +0000
Manifest this update: Fri 22 Nov 2024 16:01:35 +0000
Manifest next update: Sat 23 Nov 2024 16:01:35 +0000
Files and hashes: 1: ayTnCuIgW_KM8gBrtyPZ-WSV0H0.roa (hash: ynyYOCw6pfFAD6LdYSaDG+TP6cNfj6f3cai8ODPWb6k=)
2: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: OGWtjuiIxZrmDoK5twwgPSLN9uSgn16dUr4yakvFNDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:7b:3a:bc:f2:c3:af:5e:4c:36:32:a9:0b:e1:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Nov 22 16:01:35 2024 GMT
Not After : Nov 23 16:01:35 2024 GMT
Subject: CN=6cb7b1553d0860d6857b28f6eff59ce0594cf108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:fb:94:82:de:25:80:41:bd:6f:d0:11:c2:
ca:fd:3e:5c:9d:b9:da:c4:13:c1:a5:ce:5c:d5:9f:
3d:c3:61:93:78:25:8a:4a:66:e6:65:46:b5:02:36:
42:e6:ca:b5:a8:a0:12:a5:de:28:bd:9c:b5:e8:96:
1a:a5:95:23:5b:f9:2f:a2:db:0b:33:3b:0e:a4:2f:
ef:7e:4a:97:91:14:01:76:94:8d:5d:19:3c:69:39:
94:2a:12:43:20:7c:1f:01:1c:d7:aa:3b:83:92:f9:
a1:29:c4:fa:f1:b0:b3:49:68:15:d4:82:cb:c4:8e:
84:4b:e5:ad:0a:f4:25:fb:84:1c:f0:8c:ed:bc:52:
b0:e1:2f:66:9d:72:4a:4a:56:43:17:72:db:a7:eb:
79:c6:43:e4:e4:af:29:0d:39:59:18:35:72:9f:e9:
c1:cd:8e:54:b7:2d:fb:cf:d2:71:39:10:50:35:ca:
7b:a1:4e:46:a0:64:50:21:c6:f7:7e:f4:3d:bc:98:
62:9c:da:db:d8:9d:5f:ba:45:8b:09:2e:3a:2c:23:
3b:e4:e5:ca:57:a6:13:e4:ae:2f:74:e9:c8:13:ba:
a5:d4:40:07:15:0f:e7:53:2c:b9:b2:b0:3e:79:08:
f1:95:29:fd:20:54:1a:5a:49:2b:c0:f8:ee:33:c8:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B7:B1:55:3D:08:60:D6:85:7B:28:F6:EF:F5:9C:E0:59:4C:F1:08
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:bf:87:e3:2c:fa:25:18:df:c3:85:07:cd:3d:60:ae:51:e6:
e2:cd:fd:02:02:73:71:11:eb:a3:45:2e:18:30:49:f9:f7:2a:
4f:a3:00:d3:c1:2f:ea:34:1a:b5:12:80:67:ac:f7:e2:69:34:
20:44:63:6b:37:e5:eb:12:67:60:82:3e:bf:e7:51:9f:e7:35:
80:97:6a:a9:d0:98:c5:4e:da:9f:7f:22:b0:52:dd:5f:b3:c9:
cd:18:11:77:09:32:43:c5:cc:6e:44:d7:ed:6b:e4:9e:ec:40:
29:77:45:5f:73:b6:fa:fc:9f:ba:d5:dc:fb:5a:75:c5:50:dd:
c2:ab:cc:81:ff:d1:ac:d2:69:1c:35:00:27:e6:46:b2:a6:ee:
b3:70:35:34:49:8e:8f:3d:a8:2d:24:a7:b1:d7:5b:7f:7f:00:
70:a1:6c:9b:84:07:06:a7:1a:9e:e1:a0:b2:7d:bd:e3:0e:9e:
9c:1b:ed:36:07:e5:55:e1:e7:5c:fb:a9:68:4f:9c:a4:36:f2:
47:8d:cc:27:4f:1d:81:65:e2:ec:ec:ed:e7:df:b3:c0:3f:ea:
f5:a8:53:a7:7d:b5:ed:4c:4c:60:73:52:09:76:69:4e:8c:a8:
f2:fe:ab:7e:12:db:85:34:9a:9e:ee:62:72:56:9b:20:ac:04:
c6:7e:8d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 01:58:44 2024 by rpki-client on console-ams.rpki-client.org