Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
File: gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft (raw, json)
Hash identifier: cespRdrD/+d2wffIPtFq9gUeOzvnUULXZI7l6BwRKoA=
Subject key identifier: 81:D5:BA:D7:C5:01:E5:FC:F9:47:85:BB:86:A7:1F:7F:AE:AC:0A:76
Authority key identifier: 81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5
Certificate issuer: /CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5
Certificate serial: 019356892A09F3874E80DB7444CFB79474B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
Manifest number: 10B3
Signing time: Sat 23 Nov 2024 01:00:49 +0000
Manifest this update: Sat 23 Nov 2024 01:00:49 +0000
Manifest next update: Sun 24 Nov 2024 01:00:49 +0000
Files and hashes: 1: Q9olgamGlzjpXDNMBrtD1gWUVU4.roa (hash: XeA6Ue0lUaFSJ8TCSBJ+7Rgu8KB7dyFLqjzcZPMccSk=)
2: gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl (hash: tTIzGBMh2wcWvhPxUXPos+iJ0vJsvU6XdXReuKVY9pk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:2a:09:f3:87:4e:80:db:74:44:cf:b7:94:74:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5
Validity
Not Before: Nov 23 01:00:49 2024 GMT
Not After : Nov 24 01:00:49 2024 GMT
Subject: CN=81d5bad7c501e5fcf94785bb86a71f7faeac0a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f1:6b:ff:fa:3b:5c:4a:e9:69:16:7d:1c:b1:
92:1a:ff:70:53:85:47:76:fd:e5:71:cd:a2:1b:51:
a7:19:7c:fa:3f:ea:07:70:75:de:fb:cd:e9:99:a7:
c6:84:34:dd:db:7b:c1:52:ac:b3:03:6d:bf:f4:40:
cf:12:ce:9d:8d:2e:6b:e2:66:47:63:8a:81:21:5b:
9f:35:45:97:cb:4b:bb:0e:7e:94:33:c0:52:bd:6d:
e2:e9:d6:8c:60:e9:55:90:fc:05:f9:df:59:c1:07:
1f:38:4f:b1:b5:21:d0:7b:44:7a:37:f7:58:5b:d2:
b2:d7:47:56:8a:20:59:22:fd:b7:89:8f:11:29:50:
8d:76:0f:8d:9c:f3:a6:82:b4:7d:28:67:d5:29:b2:
5b:0f:8e:28:2a:d0:83:f4:8c:36:72:90:f9:87:92:
4d:a7:64:4b:dd:fa:2a:c7:53:4b:94:7a:5e:91:ad:
ba:3e:9c:82:ab:15:0e:1e:88:99:84:f9:5f:1e:7c:
96:59:0b:c5:19:48:bd:67:59:9b:92:50:8b:e6:7b:
d3:3e:f5:47:f4:20:7b:57:ce:2e:a8:5d:84:8a:53:
b1:f6:be:78:7b:d0:09:2f:7e:1a:02:7a:d8:18:06:
73:d2:1f:5a:de:8a:79:b5:0d:31:74:e0:b5:63:bc:
af:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D5:BA:D7:C5:01:E5:FC:F9:47:85:BB:86:A7:1F:7F:AE:AC:0A:76
X509v3 Authority Key Identifier:
keyid:81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:10:3b:41:c6:94:2f:e7:ec:59:d8:75:c5:5c:39:b8:9b:bd:
63:66:89:1c:18:68:b0:71:b2:0a:82:28:4c:90:29:54:c4:09:
78:37:de:fe:49:b2:eb:af:05:20:ee:10:75:52:6f:8e:6d:81:
bb:33:2a:47:25:43:9c:a0:62:85:6c:e4:2d:f4:39:c8:b2:e7:
db:76:2a:4d:10:0e:b8:4c:5e:d5:f8:bf:24:b1:01:81:81:a4:
12:d9:02:7c:9a:0a:6b:82:04:ee:63:af:2c:09:8e:2a:a7:e4:
f9:01:6e:2d:78:3d:e4:6d:30:e4:e7:a9:5a:93:a8:16:7e:1f:
f5:b3:59:03:3a:aa:5c:24:45:e9:19:25:b5:86:57:6b:1e:05:
a8:3e:1e:3f:34:f7:8c:a8:17:e6:fd:e7:a9:5a:de:b3:99:31:
91:b8:5a:15:ee:0f:41:61:40:ca:3f:bd:fa:d6:5e:ed:d8:60:
bc:90:fd:07:8a:0d:6a:c2:41:26:33:15:67:2a:85:ea:f5:ea:
2a:50:5f:92:cf:b0:24:39:ea:25:03:ef:35:b2:55:23:c5:86:
8a:67:b3:48:58:34:11:d5:d5:24:8b:a9:a9:21:6a:dd:89:46:
dc:28:e9:de:51:cb:a6:77:7f:35:9e:67:0e:3e:01:7a:97:4b:
52:25:b8:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:16:25 2024 by rpki-client on console-fra.rpki-client.org