Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File: 4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier: 5wPIjmDAhjWUjrpa+ndP27yTLT3yX0/cDa/4PJVAXXM=
Subject key identifier: A3:26:37:5E:BE:09:29:9C:75:C5:36:64:8A:B7:4B:4B:CB:D7:01:24
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer: /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial: 0193549CB9F9BC25B44A4829FF18097AEC80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number: 06C9
Signing time: Fri 22 Nov 2024 16:02:57 +0000
Manifest this update: Fri 22 Nov 2024 16:02:57 +0000
Manifest next update: Sat 23 Nov 2024 16:02:57 +0000
Files and hashes: 1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: If7y6uvwj0bhHArLuPZO6i2CysKGUVF7b0HjCuLNztM=)
2: K7quGkwfQrGhKzMgBp7zWP1rT0M.roa (hash: eIhs7Pg5TwyDLukY+jJpzon82gHd1a00Pk9TZ97ks2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9c:b9:f9:bc:25:b4:4a:48:29:ff:18:09:7a:ec:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Validity
Not Before: Nov 22 16:02:57 2024 GMT
Not After : Nov 23 16:02:57 2024 GMT
Subject: CN=a326375ebe09299c75c536648ab74b4bcbd70124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b1:b8:bf:29:b2:d3:5a:54:df:e6:29:b6:6c:
01:96:49:47:75:2e:41:17:1f:bc:bc:42:c9:d6:5d:
7b:5a:90:bc:b9:84:66:19:7c:5c:51:98:ef:da:60:
66:ae:94:00:44:03:7a:8c:3d:d1:d5:dc:99:da:20:
ef:74:a3:6c:5a:ae:05:ad:68:d7:3e:10:53:d4:08:
9c:a3:fe:51:60:8f:1e:e3:81:d4:01:1f:32:ab:a3:
49:f7:3e:e3:c1:53:4a:4b:44:38:f7:8f:6d:8e:d9:
f9:2b:f9:b2:c5:4c:87:17:17:fb:4d:76:39:45:54:
d8:2a:30:0c:1a:b7:db:62:83:17:08:df:03:ae:de:
f7:8e:48:9e:44:53:71:62:27:cf:33:10:e8:fd:cf:
33:6a:3c:bf:da:a6:a6:32:e1:66:c7:fd:6b:7d:df:
cb:6b:fc:e2:ec:d3:1f:25:f4:30:27:a8:50:47:b8:
4d:70:42:3b:3c:28:75:c0:dc:9d:af:6a:3d:08:72:
e8:0d:37:5d:53:5a:e3:5f:4a:e2:69:f1:8f:27:01:
15:67:4a:72:54:75:63:18:c1:39:a4:fb:39:19:4e:
09:dc:f0:6e:9b:89:37:c3:3e:b2:79:c5:02:08:a6:
b6:77:e7:9a:a8:4a:f7:36:c6:5a:00:17:75:b3:8f:
ee:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:26:37:5E:BE:09:29:9C:75:C5:36:64:8A:B7:4B:4B:CB:D7:01:24
X509v3 Authority Key Identifier:
keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:3c:3e:6c:bf:e7:f5:c6:eb:48:af:f4:74:10:2c:ea:ee:18:
4f:98:55:14:76:c1:90:40:1b:de:81:51:d7:7a:10:42:0b:92:
a8:8d:7d:38:00:f6:c9:fb:cb:5c:c0:f7:8f:84:e8:c0:30:e6:
e6:f1:38:34:65:49:5a:ff:b5:ae:8e:d7:4d:65:7d:21:a8:dc:
97:b1:92:02:b6:fa:bd:fe:59:e6:b7:d9:4b:68:5f:1c:77:de:
d4:d5:96:60:4d:21:7f:a6:1e:9f:54:7a:79:fd:01:aa:1b:62:
cf:32:8d:b7:59:b7:01:03:97:f1:52:e6:75:e5:1f:ae:e6:3a:
f5:f3:92:49:2d:a3:3e:f6:83:ad:df:15:de:d6:2a:bd:2c:77:
2d:2b:9f:d8:7d:c1:d6:2f:55:44:41:93:a6:3c:26:d7:bb:66:
3a:ae:23:d0:02:19:8b:5a:94:db:c8:52:3a:31:a8:9a:9a:ea:
d2:90:1c:0c:bf:d2:5b:03:fc:e3:64:03:1b:05:95:e4:95:7a:
50:87:b0:a6:e5:1f:7d:36:63:4d:12:f0:26:b3:c4:53:9f:fb:
4d:70:95:3e:37:64:16:f8:d8:fb:a9:43:45:60:57:d5:55:58:
17:f9:ad:a4:c6:ec:ac:1f:47:b5:b7:12:ca:2b:bd:8b:37:17:
9d:90:16:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:00:30 2024 by rpki-client on console-ams.rpki-client.org