Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
File: gh8Shdd1qfWJJD6shErcWridl8k.mft (raw, json)
Hash identifier: BsIS6g6dTJhMuiTdlvB8Zpsj/md0BnXIhNtep/x2lsc=
Subject key identifier: 66:59:BA:D4:BF:B0:56:4F:7B:99:E8:1B:D9:6C:10:16:1C:86:89:96
Authority key identifier: 82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
Certificate issuer: /CN=821f1285d775a9f589243eac844adc5ab89d97c9
Certificate serial: 019235EE3C16821DCFF83ABA81421E4BC8F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
Manifest number: 0780
Signing time: Sat 28 Sep 2024 00:00:58 +0000
Manifest this update: Sat 28 Sep 2024 00:00:58 +0000
Manifest next update: Sun 29 Sep 2024 00:00:58 +0000
Files and hashes: 1: gh8Shdd1qfWJJD6shErcWridl8k.crl (hash: Kpa41wJe1I1+9Usm/OafYYXvoPIBu2S2+hBMFIge6T8=)
2: sdev-O2pnOPV1XiA2hWAxA3XoU8.roa (hash: aKr5PRnCpNyZbwI1MaGFO4fGKXlkR+l6LILnZQp/h6k=)
3: yT08aq9g8gr_7uJbAjMzISILEFQ.roa (hash: agdJwkdFCKZjIsDgSFTQHzgV7ndbDKUmqQK/MrjXQ/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:35:ee:3c:16:82:1d:cf:f8:3a:ba:81:42:1e:4b:c8:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f1285d775a9f589243eac844adc5ab89d97c9
Validity
Not Before: Sep 28 00:00:58 2024 GMT
Not After : Sep 29 00:00:58 2024 GMT
Subject: CN=6659bad4bfb0564f7b99e81bd96c10161c868996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:26:92:06:5f:0a:33:52:9e:61:15:c9:ee:1c:
d4:b3:e9:f0:a3:86:31:06:6e:d6:e2:4c:1d:e9:43:
d1:48:6c:28:dd:eb:18:6e:6e:f8:a0:8b:8f:78:9e:
2f:c3:fc:58:b1:08:1c:f3:a7:b2:fc:eb:e2:23:1a:
18:06:79:62:2f:03:04:2a:a5:04:80:9e:31:28:8f:
90:66:9d:9e:03:bf:57:50:e1:78:1b:d9:5b:04:97:
b0:c5:89:0f:09:c6:23:e6:74:ff:c1:89:cc:7d:00:
33:f4:50:bd:59:b6:d6:21:5e:dd:80:12:68:ec:5a:
cb:c0:33:44:c6:9b:96:30:e5:1e:e5:87:27:ea:41:
b3:7b:4a:0b:fe:37:f0:be:4f:aa:50:fd:8c:32:fa:
b6:5d:41:59:0f:4b:5f:dc:86:18:b2:67:20:cb:09:
7c:ea:64:dc:28:75:ce:43:fc:fc:46:c4:06:3c:69:
ef:13:79:65:1d:2a:a7:b8:09:f5:25:52:60:67:41:
d9:2f:11:2d:55:77:1c:18:7a:94:7a:f2:61:c3:81:
aa:d8:16:49:51:66:8e:15:d4:1d:1d:70:11:a0:e8:
1c:f8:4b:03:ae:57:a5:36:a7:c4:26:15:b7:33:22:
03:8e:b5:7b:7b:a5:d7:03:2d:7c:47:14:51:16:54:
c6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:59:BA:D4:BF:B0:56:4F:7B:99:E8:1B:D9:6C:10:16:1C:86:89:96
X509v3 Authority Key Identifier:
keyid:82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:9c:b0:4a:3c:c6:70:e0:00:0e:4b:cb:a7:c6:b3:58:34:3d:
47:d3:b8:9d:74:de:1b:a6:59:6e:60:c3:31:eb:28:e5:1c:00:
b6:34:83:75:a6:1b:12:e5:ac:98:bb:b9:7c:23:a5:d7:fd:56:
b7:47:b7:e1:b7:58:ed:56:0a:af:db:de:ab:6e:18:4a:90:5c:
3a:28:6b:63:34:f8:6d:fc:6a:bd:b3:7c:ed:69:60:56:34:aa:
7a:a1:84:68:26:a6:c5:35:5d:21:fe:c8:b4:9e:47:4e:25:87:
9e:ba:62:2c:ab:90:2c:6e:c9:f4:cc:d3:17:0f:95:3d:8a:f0:
e2:b9:e3:06:d5:f8:da:25:19:21:df:a0:dc:c2:7b:a5:f1:af:
e3:3a:d8:61:83:ef:ea:82:fa:81:f1:6c:74:9d:50:d6:23:e4:
95:f0:f8:c2:87:09:f2:26:79:f6:58:1a:4b:4e:aa:d9:aa:0e:
67:26:f9:57:5b:f4:fa:75:2b:54:93:2f:81:a1:0f:a4:4f:ba:
bf:03:22:5d:56:f2:12:8f:12:8d:fc:34:49:89:9e:04:1d:aa:
c8:00:ce:0e:05:1a:5c:ed:29:a8:94:99:a1:af:63:38:1c:d4:
13:7b:d9:68:f1:3a:34:be:cc:20:1c:4e:91:b4:12:5c:a7:f2:
a2:de:da:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:02:24 2024 by rpki-client on console-fra.rpki-client.org