Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
File: gswXHj3IRnEeBW4uNiQdrJlKYA0.mft (raw, json)
Hash identifier: akf+Z0snYxIS2HR2b/HLU3cl65l/trpDgzoXk80BtmI=
Subject key identifier: A2:75:80:D5:DF:F6:B1:A6:4F:52:37:A4:8C:6F:CC:47:1C:9C:D1:7D
Authority key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
Certificate issuer: /CN=82cc171e3dc846711e056e2e36241dac994a600d
Certificate serial: 019369DA7F41150429A7AB4EE01EE70C468A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
Manifest number: 137C
Signing time: Tue 26 Nov 2024 19:02:27 +0000
Manifest this update: Tue 26 Nov 2024 19:02:27 +0000
Manifest next update: Wed 27 Nov 2024 19:02:27 +0000
Files and hashes: 1: FcspeF0GZcukrdEqdKy1WB6zbu4.roa (hash: 54qKQvRQYWmDDW99MPFIqkEivC8K31zKEMjirLBoEek=)
2: gswXHj3IRnEeBW4uNiQdrJlKYA0.crl (hash: u/wp6TSSRtABfYdwO+0cSEQV2uGUL2GuHhQ/LRDwEQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:7f:41:15:04:29:a7:ab:4e:e0:1e:e7:0c:46:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82cc171e3dc846711e056e2e36241dac994a600d
Validity
Not Before: Nov 26 19:02:27 2024 GMT
Not After : Nov 27 19:02:27 2024 GMT
Subject: CN=a27580d5dff6b1a64f5237a48c6fcc471c9cd17d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d1:0a:9c:66:75:70:f4:c9:83:21:3e:59:c0:
1e:c1:e7:00:bc:c6:94:f0:b8:2c:df:6a:93:6f:a4:
35:c3:91:89:97:f5:68:1b:67:9e:02:0a:ad:50:bc:
0c:62:b4:e4:e2:3f:72:20:7a:ed:f9:d9:be:e5:a4:
5b:cc:ff:eb:8c:0d:53:10:79:b6:4c:8c:0c:9a:8d:
79:de:2e:03:a9:ef:50:aa:1e:99:ac:42:8e:48:a8:
89:f7:b3:2f:8b:15:f1:f7:b2:f2:37:46:44:48:3a:
69:57:bb:e2:b8:58:a7:b7:a2:7a:bb:86:ed:71:0e:
d7:7a:76:50:14:bf:ac:07:6c:8a:fe:e0:c8:de:da:
ea:54:d8:67:2c:66:0c:09:1c:0c:4a:ed:68:93:5a:
dc:6f:60:74:d6:88:fc:3f:43:0f:f1:ff:b4:84:d7:
d8:49:5c:b5:21:52:42:3f:02:fd:c4:db:51:f0:f3:
57:01:c6:92:db:87:86:84:1e:e7:0c:66:ee:2d:69:
2a:00:fb:2d:63:51:48:b1:66:51:12:65:94:ae:e6:
8c:3c:fb:57:61:9b:be:c3:f0:93:0d:f3:14:e3:20:
8e:09:c5:74:69:f7:c7:30:9b:89:f8:42:92:ec:8f:
a5:48:a9:cf:53:d3:43:bd:1d:60:5a:78:84:f7:5a:
72:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:75:80:D5:DF:F6:B1:A6:4F:52:37:A4:8C:6F:CC:47:1C:9C:D1:7D
X509v3 Authority Key Identifier:
keyid:82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:89:56:a7:e0:97:47:d3:32:9b:44:13:9c:6e:bf:af:b7:0b:
9f:dd:a5:4d:f2:e0:fe:d2:c5:61:41:8e:38:37:5e:07:9f:89:
71:fa:45:cd:56:0f:46:e4:9d:32:f8:c1:8d:a4:15:70:45:d4:
97:4b:c1:20:6e:a4:13:ea:e3:f2:cd:be:bf:a4:ef:49:25:9b:
ff:59:32:cc:94:c1:c7:f0:84:6e:75:11:87:fb:47:1a:38:63:
26:e4:3a:a6:d4:75:5b:4e:00:23:9e:5d:64:d9:12:15:88:72:
a4:0d:32:50:db:bc:c4:36:31:d8:57:81:8a:1d:c7:db:4b:87:
c3:c3:17:e1:7d:5d:b5:df:7c:99:0b:41:df:8c:b0:8c:f8:f0:
a8:c4:0e:61:13:da:ca:c6:d0:37:71:1a:e5:c1:7c:7e:de:f0:
76:11:75:22:85:4c:0a:f6:d0:31:3d:f0:57:e3:97:08:bd:6b:
40:32:58:d4:f1:5a:90:71:f9:73:77:12:0a:33:9b:74:31:0d:
38:78:91:81:3f:0f:29:fa:13:30:0b:68:84:87:b5:a9:51:e9:
c0:5b:7e:de:da:d9:47:d5:04:89:91:da:63:a4:0c:72:33:a4:
6e:68:59:f7:c4:fd:65:68:84:be:c3:e5:64:c8:2c:bf:f2:b0:
d7:69:c3:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:12:28 2024 by rpki-client on console-ams.rpki-client.org