Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
File: gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json)
Hash identifier: 6g1UiFobBrSiSxjLngvhkcd3soBIcycl2FYsbtoFJEE=
Subject key identifier: B3:84:CF:0C:80:7A:61:C2:4C:DF:D0:20:01:15:48:CA:79:BA:5A:8D
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial: 0193587924D392C21486A8890FEB8C786FD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
Manifest number: 0788
Signing time: Sat 23 Nov 2024 10:02:34 +0000
Manifest this update: Sat 23 Nov 2024 10:02:34 +0000
Manifest next update: Sun 24 Nov 2024 10:02:34 +0000
Files and hashes: 1: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: DQUgoRdrGHZrylw5B1TXIXRDfsBQbydrAVBhXrxmLbk=)
2: uTCBnf3b-yLqqvnCUxCOVWTzq_I.roa (hash: IBgfRhw8lwowyO1fejNqf6FaL0VtSvn1AWjauBJkT6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:79:24:d3:92:c2:14:86:a8:89:0f:eb:8c:78:6f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Validity
Not Before: Nov 23 10:02:34 2024 GMT
Not After : Nov 24 10:02:34 2024 GMT
Subject: CN=b384cf0c807a61c24cdfd020011548ca79ba5a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:6a:f3:35:7a:b5:94:96:ff:49:a8:d0:b9:8d:
bc:aa:41:3e:31:7e:04:49:c7:a3:9b:10:40:eb:51:
b7:25:ab:db:c5:04:ef:17:4c:3f:e2:69:40:1f:11:
09:84:59:78:02:5b:10:60:8a:94:89:f2:f4:df:70:
92:80:21:42:4d:39:2d:46:3b:ec:5e:95:89:e2:07:
98:1c:01:7f:84:b4:c3:08:29:1d:db:b8:db:b0:8d:
73:22:db:49:47:0f:31:93:ea:6a:c0:2b:75:9a:37:
1f:45:85:20:d9:c1:35:4a:25:a4:5c:90:63:35:49:
16:f8:ed:26:cc:d7:43:13:e9:e5:92:35:8a:6c:24:
95:5c:0a:b3:b3:dd:62:08:7e:3c:eb:fd:2a:85:17:
78:08:93:df:2c:a4:80:48:de:c8:6c:da:8b:e1:6d:
ea:87:78:f6:f3:ba:16:76:e0:22:1f:cd:bb:cf:e0:
11:f1:c2:35:8b:ac:9a:65:9f:90:0f:29:01:b2:bc:
b5:c9:67:1a:bb:d4:74:af:c6:77:09:b3:ac:31:2c:
ee:76:2a:46:a9:19:2f:ee:fc:3e:c0:c7:9b:26:95:
62:89:b4:bb:57:5f:ef:39:c1:11:d3:09:8e:7b:04:
a7:f0:7c:57:25:a8:48:c8:02:08:60:a5:9b:21:84:
be:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:84:CF:0C:80:7A:61:C2:4C:DF:D0:20:01:15:48:CA:79:BA:5A:8D
X509v3 Authority Key Identifier:
keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:80:f7:c8:7f:f6:f3:e1:cf:08:bc:3d:81:4f:32:a0:a8:e0:
6a:c7:11:ce:80:df:5d:04:d5:29:c5:9e:fe:0d:ed:65:62:8b:
36:b6:2b:29:57:14:1a:8b:aa:b1:11:aa:72:9a:73:b5:6f:dc:
bc:d9:54:38:32:18:53:78:32:03:47:ea:3f:a8:dc:71:ac:46:
5e:3f:a4:9c:e6:d9:64:5e:17:13:04:7f:95:4a:84:5a:8d:68:
68:4f:d0:13:e4:50:4f:9f:14:1b:c6:00:0c:e3:2d:68:8c:55:
04:80:6e:8d:e4:05:29:34:6f:de:a9:b6:87:af:81:1e:b0:f6:
8f:d2:80:5e:fe:a0:be:73:a4:c4:0d:be:44:d8:a6:49:ef:ac:
5a:a5:45:75:bb:4f:ab:cc:0c:4e:d2:03:75:4a:88:7b:c3:2e:
cc:df:8b:4e:ca:ba:4f:0d:b3:26:9d:09:ed:f4:59:6f:97:b4:
5d:98:57:9b:bc:8d:37:38:d9:33:64:6d:22:bd:c0:4a:3d:06:
b0:69:88:b8:cb:d6:82:e8:f5:04:ca:b2:36:fc:01:d1:cd:a2:
36:59:e2:c4:a2:46:24:70:29:af:38:59:90:89:09:2f:d5:01:
66:19:4d:2d:1a:dd:93:dd:10:24:52:50:1a:24:3c:fa:d2:b0:
d4:3e:89:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:59:05 2024 by rpki-client on console-fra.rpki-client.org