Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
File: hLDKyDjyguBClI-dKyzVdU0ujEc.mft (raw, json)
Hash identifier: SzratMchClT8VccxQxbfwxUir+UUkzGvJ4wL5Q8VdJc=
Subject key identifier: C9:AC:FD:DE:AF:A2:2E:32:A8:D5:E6:17:8C:3E:B7:8A:49:8C:9C:21
Authority key identifier: 84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
Certificate issuer: /CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Certificate serial: 01936A46CBBCF88992716BF8DB5B2DD413C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
Manifest number: 137A
Signing time: Tue 26 Nov 2024 21:00:44 +0000
Manifest this update: Tue 26 Nov 2024 21:00:44 +0000
Manifest next update: Wed 27 Nov 2024 21:00:44 +0000
Files and hashes: 1: hLDKyDjyguBClI-dKyzVdU0ujEc.crl (hash: aIK2fDHXPjfqcRud3KPQ7b7+9Ub4a2DG4+S8A0Xwr+I=)
2: tNFRmswT2bxBow-5I-1iXkORBDY.roa (hash: +58OME90CWAxk2q3BhetF12hSJ3iD9yZCX+rEgoejIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:46:cb:bc:f8:89:92:71:6b:f8:db:5b:2d:d4:13:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Validity
Not Before: Nov 26 21:00:44 2024 GMT
Not After : Nov 27 21:00:44 2024 GMT
Subject: CN=c9acfddeafa22e32a8d5e6178c3eb78a498c9c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:f9:5e:d7:80:db:28:fb:11:91:30:3e:78:
1e:8f:dd:a7:be:60:37:6b:e8:80:49:00:ac:99:3a:
1b:fb:34:ce:0f:83:0e:7a:3f:e5:12:95:6a:61:c9:
f9:d2:13:ff:bc:9e:1f:59:57:16:db:82:2c:19:ec:
71:a2:c4:75:4f:b8:ea:11:d8:d4:2e:32:fd:d0:86:
5d:cb:72:84:36:98:6d:23:57:5c:39:46:d4:21:b4:
43:04:16:85:b3:a3:7c:57:2f:ba:70:36:3b:db:be:
b6:d4:d4:53:79:e9:ff:89:2d:81:e8:8c:f1:47:3a:
dd:2a:89:34:e6:9e:a1:6e:8e:c6:36:66:c6:ea:3b:
18:45:20:91:14:39:22:bb:c8:73:9a:a6:5d:17:48:
51:c5:97:ba:49:b7:ac:0a:9c:3c:1b:d6:c9:f6:49:
2c:24:ea:81:c3:20:34:83:76:d9:d8:01:02:04:ec:
11:dd:60:03:15:fd:85:14:58:1a:4c:21:b9:18:ca:
93:57:1f:df:3a:1e:19:3d:93:ad:3e:70:43:89:3f:
76:1e:ed:f0:a2:7b:a1:8a:e4:4f:b9:38:6d:75:1f:
bc:60:5f:47:94:ac:4d:d0:96:d9:d9:98:e1:27:21:
8f:ac:6b:c5:95:db:2b:19:ed:d0:8f:65:0b:ea:77:
50:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AC:FD:DE:AF:A2:2E:32:A8:D5:E6:17:8C:3E:B7:8A:49:8C:9C:21
X509v3 Authority Key Identifier:
keyid:84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:f1:f9:39:60:8b:55:3a:2e:fe:97:1b:57:8d:b1:e1:6a:7d:
16:3c:9f:3c:7e:bd:82:b0:81:5b:a5:45:49:ac:2b:7e:68:92:
12:25:de:36:9d:54:bb:c6:38:ce:1c:b1:8b:32:12:e5:ff:ed:
10:76:9e:42:d1:f5:fd:bf:f2:dc:00:96:cb:be:05:c0:83:b4:
da:74:e7:98:80:d4:d2:41:7d:e5:6e:bc:50:13:c8:de:d9:b6:
5e:95:f9:d5:26:19:10:86:6f:ca:86:2a:a0:69:79:0a:18:c0:
6e:13:d3:87:dc:46:36:fd:7f:d8:a1:7c:5a:74:c9:82:18:67:
0f:50:e5:7d:62:f1:8a:6f:08:10:9e:21:b5:5c:b8:e1:38:d1:
55:a3:a7:ed:b2:9d:a3:87:d5:e1:37:94:9d:33:91:88:1d:32:
1e:c7:5d:f8:19:56:ca:3f:3b:21:82:43:cd:1f:d4:b3:c9:5d:
81:21:fb:a4:7d:38:39:db:a6:2c:78:99:25:60:98:d8:5b:de:
2d:7e:69:d4:aa:82:bc:99:00:75:92:0b:ef:d2:17:10:ee:0b:
73:24:e7:2e:89:a1:96:45:a0:3f:9e:bd:45:e8:5f:40:ac:73:
29:2b:95:08:07:d9:7f:47:b8:96:7b:56:52:ac:71:fc:9b:70:
83:8a:7c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:04 2024 by rpki-client on console-fra.rpki-client.org