Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
File: H0guXkEsHeu3dt7fr0XDMXTnZC4.mft (raw, json)
Hash identifier: f5SKzIOW1/6sy20vkYcQOAsrlvejZ/gvRWebKZZY7ME=
Subject key identifier: E7:72:62:77:02:EE:6B:CE:7C:49:4B:D7:CF:22:A3:55:0B:05:64:10
Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Certificate serial: 0191F9D98D6CC33EF3AF9F4DBEC9C1A9076A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
Manifest number: 0107
Signing time: Mon 16 Sep 2024 08:01:09 +0000
Manifest this update: Mon 16 Sep 2024 08:01:09 +0000
Manifest next update: Tue 17 Sep 2024 08:01:09 +0000
Files and hashes: 1: H0guXkEsHeu3dt7fr0XDMXTnZC4.crl (hash: nmwxP69YXPDI4xl7YTFy6cD0emzwJF61fTUaEaj7gyg=)
2: kQCj7GZw8gcSboVIigeA17lxGJQ.roa (hash: tFjabdoEkrx+Nrv3igJu+B7LKEMv7pJDm02E4YWbfoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 08:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:d9:8d:6c:c3:3e:f3:af:9f:4d:be:c9:c1:a9:07:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Validity
Not Before: Sep 16 08:01:09 2024 GMT
Not After : Sep 17 08:01:09 2024 GMT
Subject: CN=e772627702ee6bce7c494bd7cf22a3550b056410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b3:72:e0:c8:2e:35:29:a7:04:d9:52:dd:b0:
33:da:c0:92:66:4d:c7:e3:c2:4c:54:3e:e3:84:8c:
0d:f6:7f:de:42:7e:48:56:cb:38:cd:08:d2:f3:28:
d1:13:44:59:57:04:b7:b7:c6:33:e8:50:e0:d4:18:
6c:3f:ea:34:46:75:8a:37:6e:de:74:c7:ec:8d:19:
62:a6:91:08:5f:07:33:18:fe:3b:2f:d2:fd:da:57:
9e:4d:19:fb:c5:1c:f2:44:e3:01:09:35:fd:ad:3e:
3a:b5:53:e0:ae:12:9d:a2:0b:e0:65:75:18:28:fc:
2e:f2:f4:dd:07:6e:8e:42:27:5a:1d:49:a9:72:8d:
42:fb:50:33:3b:38:c0:8a:2c:b6:d8:a1:cc:c3:f2:
0c:b1:c5:66:04:99:ca:54:22:ee:bb:68:a3:72:0a:
d0:f4:b8:66:ca:cc:4c:09:4f:e1:a9:28:92:05:9f:
b7:0d:d2:99:be:f0:3b:84:b3:80:e0:50:99:e7:8f:
67:76:a9:31:00:8f:ab:c9:40:8e:3d:8f:a8:1a:ad:
a7:8a:f3:90:3f:c4:0d:ca:b0:6c:14:a6:82:f0:ca:
6f:ed:bd:5e:cc:23:48:f5:0a:9f:91:89:75:9d:da:
df:d8:49:83:33:99:78:62:f9:aa:72:fb:57:56:91:
f1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:72:62:77:02:EE:6B:CE:7C:49:4B:D7:CF:22:A3:55:0B:05:64:10
X509v3 Authority Key Identifier:
keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:c0:12:e5:73:f4:36:80:d9:e5:b0:28:7c:de:b0:95:35:1d:
03:ac:a8:79:c7:b1:83:bd:06:72:e9:2e:5b:71:65:96:11:58:
82:3e:cf:24:f4:9f:93:90:00:f9:f9:54:b2:6c:68:d7:7e:25:
6c:c2:ac:53:76:3b:e1:88:f7:32:e8:9b:e5:db:e3:57:17:b6:
21:60:59:48:39:c0:f3:66:96:f8:57:e8:0f:37:13:f5:6c:8a:
e1:f3:c6:c6:c2:cf:0f:d1:a9:38:90:67:5a:e8:04:c8:8a:b6:
25:57:75:a2:75:10:7e:eb:47:57:5b:40:42:d8:cb:52:98:8a:
81:f1:86:1c:bb:48:87:e3:79:ee:07:e5:55:2b:c6:9d:53:66:
1f:35:d6:1e:20:b0:44:63:b8:73:c3:cb:0b:40:70:d3:2a:a2:
28:7d:c6:7a:6d:91:88:5c:97:a5:c2:8c:33:b9:1a:39:1c:05:
03:be:0b:02:30:15:30:30:3c:87:44:25:ac:cf:f9:78:ff:f5:
ef:9d:0b:81:86:20:1e:25:3a:37:61:ab:ad:3f:bc:9c:f4:1b:
12:38:75:e9:61:b5:c5:ea:82:14:31:ab:cd:47:02:de:f7:64:
a5:6f:fd:94:3f:2c:9a:0a:fe:48:88:85:06:c4:1f:00:02:8c:
c4:a4:27:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:13:00 2024 by rpki-client on console-ams.rpki-client.org