Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
File: gh8Shdd1qfWJJD6shErcWridl8k.mft (raw, json)
Hash identifier: 4e6DHYFRRuH7IAumeKtEoM5i01/jzJfNbcb58P+fOOc=
Subject key identifier: 2D:A0:98:7D:80:3F:FE:6F:04:9A:6D:66:77:D9:FD:EF:CB:15:D0:4B
Authority key identifier: 82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
Certificate issuer: /CN=821f1285d775a9f589243eac844adc5ab89d97c9
Certificate serial: 019355AD6640DDDDAD3C0F75CDC72BA573D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
Manifest number: 0815
Signing time: Fri 22 Nov 2024 21:00:47 +0000
Manifest this update: Fri 22 Nov 2024 21:00:47 +0000
Manifest next update: Sat 23 Nov 2024 21:00:47 +0000
Files and hashes: 1: gh8Shdd1qfWJJD6shErcWridl8k.crl (hash: 2vd7ezrHTuKuwgtDJunZI3V/OwdYnBfnrwWgm0LugSA=)
2: sdev-O2pnOPV1XiA2hWAxA3XoU8.roa (hash: aKr5PRnCpNyZbwI1MaGFO4fGKXlkR+l6LILnZQp/h6k=)
3: yT08aq9g8gr_7uJbAjMzISILEFQ.roa (hash: agdJwkdFCKZjIsDgSFTQHzgV7ndbDKUmqQK/MrjXQ/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:ad:66:40:dd:dd:ad:3c:0f:75:cd:c7:2b:a5:73:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f1285d775a9f589243eac844adc5ab89d97c9
Validity
Not Before: Nov 22 21:00:47 2024 GMT
Not After : Nov 23 21:00:47 2024 GMT
Subject: CN=2da0987d803ffe6f049a6d6677d9fdefcb15d04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:74:69:5a:55:5c:f0:94:73:2f:c5:9f:1a:16:
6b:b4:16:a2:45:4f:4d:77:51:ff:0a:ff:c0:56:8d:
d5:f5:d0:80:40:b0:8e:c8:2b:13:42:bd:03:91:d5:
4f:7b:67:2d:82:65:96:9a:b0:ea:95:b3:3b:e2:de:
78:03:8d:19:0a:1c:54:9d:47:16:6f:e2:f8:59:04:
4a:eb:65:00:fd:e7:40:ff:d2:d6:16:b5:0e:e8:39:
71:89:56:28:d8:28:d5:a1:f0:b6:d1:ad:75:8e:be:
6d:4c:06:de:e0:85:53:60:e0:6b:4e:f4:57:2e:df:
ec:48:b5:ec:ed:a0:6c:63:17:c0:a5:4a:52:b4:01:
b2:5a:ed:f0:cd:8e:cb:4e:91:98:eb:41:26:e8:08:
23:ca:74:1b:47:2d:dc:4b:19:09:e5:ab:ee:55:66:
9e:88:f0:75:42:f9:f2:be:6b:e1:20:ee:a8:a4:d5:
c6:be:05:57:79:ba:86:73:4b:3c:90:1a:8c:6d:c5:
24:27:54:74:be:a2:0f:08:94:3c:7c:e5:26:77:a2:
b6:e7:71:fa:db:2f:79:a2:48:38:18:c9:d3:a8:ad:
70:f5:43:2e:ab:8e:6f:1a:39:0d:6c:9c:4c:ff:d6:
55:ea:b5:95:2c:44:2f:2b:d6:64:bb:07:84:08:f4:
bd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A0:98:7D:80:3F:FE:6F:04:9A:6D:66:77:D9:FD:EF:CB:15:D0:4B
X509v3 Authority Key Identifier:
keyid:82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:01:7f:df:a9:b3:ca:4d:01:ee:21:ee:e0:19:a9:d7:14:3d:
0f:a7:89:14:ca:4a:ee:ba:da:f4:df:1a:4d:63:57:1d:af:c2:
d7:29:e6:bb:85:b5:fc:f3:70:0b:d0:02:3b:f2:e9:5c:28:75:
45:bf:b6:78:91:59:54:d5:a6:5d:4c:b4:50:5e:f7:e0:cb:56:
ea:a2:18:12:d7:6e:bc:97:62:8a:2e:d8:e4:c9:80:b4:17:fc:
40:59:3d:40:27:03:3a:93:a9:60:55:f8:5b:ac:59:9d:61:e6:
23:a6:e9:48:3e:3a:77:1c:9d:50:ee:2b:98:69:5a:e7:f3:6a:
ee:47:63:b0:00:b1:36:a4:b4:14:4c:ce:65:0f:5f:55:04:37:
3d:fc:e9:a1:79:63:26:59:eb:36:7e:aa:a9:a1:1a:8e:ff:80:
0d:c2:8f:e8:7f:91:02:25:f6:fe:e3:cb:55:60:2a:48:58:dc:
3f:ca:dc:76:11:7a:2a:db:83:e4:a3:54:c0:a9:8c:1e:93:37:
d6:7a:45:90:0b:d2:20:a4:e5:6f:61:81:f8:6f:a1:42:55:df:
49:12:35:2a:8c:74:44:0b:c5:98:52:38:ac:08:62:86:85:cb:
32:12:0a:9e:35:61:8f:b0:9d:d0:0c:cb:50:40:c9:aa:56:53:
47:9b:74:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:16:59 2024 by rpki-client on console-fra.rpki-client.org