Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
File: FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft (raw, json)
Hash identifier: 69LxFrFg9TOfsTsNmNpc4X1WuqGVEvc1yd0RnaLp62U=
Subject key identifier: 40:AA:F9:34:41:B6:3E:82:DF:3D:B2:F1:97:A1:4C:2A:BB:95:3B:89
Authority key identifier: 16:70:E1:BC:58:69:C6:02:B6:42:44:90:31:D4:B7:11:6C:9D:FA:26
Certificate issuer: /CN=1670e1bc5869c602b642449031d4b7116c9dfa26
Certificate serial: 01936AB473F89F9CAF9D9456F39D0F629ACD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
Manifest number: 0CF9
Signing time: Tue 26 Nov 2024 23:00:31 +0000
Manifest this update: Tue 26 Nov 2024 23:00:31 +0000
Manifest next update: Wed 27 Nov 2024 23:00:31 +0000
Files and hashes: 1: 5Q2qLHLX-5A3ub29G9tWRqanhNE.roa (hash: 0l89+jc1JyGKdLYOqjkkIiWN+bHE1pXzw+kETQr6kMM=)
2: FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl (hash: yPvWKYHM2XAP1rJIu5gpMqne3yyMxQ42CXieUsPTPGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:73:f8:9f:9c:af:9d:94:56:f3:9d:0f:62:9a:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1670e1bc5869c602b642449031d4b7116c9dfa26
Validity
Not Before: Nov 26 23:00:31 2024 GMT
Not After : Nov 27 23:00:31 2024 GMT
Subject: CN=40aaf93441b63e82df3db2f197a14c2abb953b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f9:32:b8:3f:e4:dd:1f:6d:8c:f5:14:c7:d2:
1b:46:da:2b:b7:44:48:ae:ce:d1:9f:0a:0a:47:8b:
e5:e0:1f:99:8b:a2:c1:ba:5e:13:0d:a9:43:0d:41:
f7:5e:ac:28:df:f4:3e:16:f1:02:91:25:37:95:02:
b7:49:a9:65:a5:82:db:3c:66:8a:a4:2d:24:38:f7:
4d:84:f0:8b:7b:7b:b4:ab:2d:ba:35:2c:e6:75:e0:
b5:b2:01:dc:20:41:6b:d3:2e:57:ef:5c:47:5a:8f:
5a:a1:64:4e:25:63:e1:fb:60:41:70:a0:79:2d:ea:
84:64:3e:86:29:73:d7:5a:4c:fb:e4:5f:b6:21:7f:
b7:47:b9:59:9f:4c:1e:55:98:1b:39:52:50:70:46:
31:5c:01:82:d0:ef:14:8a:fe:99:16:c4:1e:a7:78:
b4:ef:48:21:0e:7e:5e:1f:0d:2f:bc:97:a8:7c:db:
ba:b3:44:4c:c3:11:98:04:12:12:24:1a:9e:1e:a9:
70:fc:5c:e0:58:a9:1c:37:7c:0c:9c:5c:88:c0:dd:
d8:2e:e1:1b:89:33:2c:09:e4:38:c7:3c:c4:b0:d6:
78:8c:c7:05:5d:dd:ac:16:8d:a0:30:66:ad:57:97:
c5:93:37:6f:bd:97:ed:98:70:9a:01:c8:e5:bd:ef:
f5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AA:F9:34:41:B6:3E:82:DF:3D:B2:F1:97:A1:4C:2A:BB:95:3B:89
X509v3 Authority Key Identifier:
keyid:16:70:E1:BC:58:69:C6:02:B6:42:44:90:31:D4:B7:11:6C:9D:FA:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:ee:a6:08:8c:65:29:a1:de:c6:f8:1a:52:90:29:b2:50:98:
4d:05:73:2d:4f:4e:c2:23:8a:13:0a:ad:2e:b7:f4:7f:84:64:
54:ca:14:e5:8b:ad:6b:09:83:e3:fd:45:28:d1:00:ec:bf:f4:
37:c1:3d:32:f4:6f:fe:df:10:b2:ca:2b:bc:e9:4e:d5:b5:58:
2a:d4:a0:19:08:8c:2e:5b:65:8f:af:f8:4a:8a:1c:10:b4:71:
81:f2:6f:b6:ad:6e:e0:12:15:e3:39:0a:ee:8f:ac:37:82:ec:
91:e4:a7:58:23:14:de:97:8b:5e:9a:8f:2b:af:2f:82:2a:fe:
4e:53:f9:4f:19:9a:34:98:67:46:cb:07:48:70:e4:59:04:81:
3c:09:3f:48:dc:fe:8b:b7:4f:ea:f0:7e:9f:e5:29:91:29:fa:
ae:74:fd:a6:74:74:ea:eb:d7:47:9b:37:ee:ab:42:37:af:35:
a4:85:09:98:2f:33:f5:e6:4d:51:ac:01:ba:9d:4f:16:d3:03:
37:aa:14:a2:eb:2e:56:92:5e:11:60:38:43:21:62:24:6f:e2:
9c:af:f3:4b:c5:a9:15:b1:5a:b9:97:78:a5:d9:90:e9:5e:f8:
78:44:57:b3:d0:00:81:25:ee:07:b5:5b:6e:e3:20:a5:88:7f:
a5:3e:a4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:49 2024 by rpki-client on console-fra.rpki-client.org