Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
File: imgZHKtu8GsyKwsSSHhdSEpFJPM.mft (raw, json)
Hash identifier: 8iP6ICqjIdzlylf5vqyrMZFFPsfV+Sh7L4mu+v/MXjQ=
Subject key identifier: 8D:76:E1:0D:7D:7E:45:2E:E6:B7:E9:DE:59:EF:C2:C3:A3:45:4A:7A
Authority key identifier: 8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
Certificate issuer: /CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Certificate serial: 01935764CEEE143B07BA8CEE5C9F9D575B07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
Manifest number: 0DC0
Signing time: Sat 23 Nov 2024 05:00:44 +0000
Manifest this update: Sat 23 Nov 2024 05:00:44 +0000
Manifest next update: Sun 24 Nov 2024 05:00:44 +0000
Files and hashes: 1: imgZHKtu8GsyKwsSSHhdSEpFJPM.crl (hash: 6Y5V/BK6VdSjCUm4PrvFU/j7c/UpAnOKMp97R02wa/U=)
2: qIgrb_gt_efjKQ5SJTYcqpVUi9Q.roa (hash: e3SkOApuDL/fMDuxHTWugEarKDN3A1QbJE4JjabjqUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:ce:ee:14:3b:07:ba:8c:ee:5c:9f:9d:57:5b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Validity
Not Before: Nov 23 05:00:44 2024 GMT
Not After : Nov 24 05:00:44 2024 GMT
Subject: CN=8d76e10d7d7e452ee6b7e9de59efc2c3a3454a7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:17:b2:e8:b0:f0:3f:c6:3f:c2:fd:f4:4f:91:
3e:70:49:f5:6e:c3:14:cd:1a:f2:0a:c4:ac:95:88:
ff:97:c9:d1:6d:0f:e8:6a:c3:fe:65:ec:71:6b:17:
10:bb:af:71:42:53:b0:d8:79:3a:6a:54:f1:95:e8:
27:ad:b2:47:e1:55:d9:d5:8b:4e:ff:ec:94:c2:0a:
e6:11:90:5e:49:a7:b4:77:b3:ef:47:5a:8b:07:fe:
2b:17:44:c8:2f:83:6e:46:a2:09:82:cc:7e:a4:16:
bf:bb:39:69:3c:9d:5b:a2:c0:2b:2b:9e:6e:1a:5d:
b7:eb:f2:a1:05:59:79:cd:de:a8:66:40:f4:45:95:
74:ab:80:d1:16:f3:9b:ed:8d:72:52:bf:d3:8c:ac:
31:ec:78:7e:a9:8d:a3:df:0f:4e:00:57:b4:f1:dd:
14:72:59:cd:e6:b9:38:30:c7:55:34:50:4d:36:ba:
1a:2b:6a:b9:40:21:86:33:fd:e7:b7:de:bd:75:a0:
f8:2c:c8:f4:f3:12:0c:57:39:63:a0:90:a2:70:f6:
58:1e:17:0d:e1:f4:a1:c5:94:11:e6:dd:91:ad:cf:
0c:c7:05:22:5b:d1:13:6c:73:9f:ee:1d:7d:1a:5a:
41:b2:c2:6b:76:89:10:d4:1b:18:4d:f3:04:c6:e1:
38:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:76:E1:0D:7D:7E:45:2E:E6:B7:E9:DE:59:EF:C2:C3:A3:45:4A:7A
X509v3 Authority Key Identifier:
keyid:8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:63:cf:a9:8c:d1:b0:fe:77:e9:a7:63:ba:ae:35:b3:67:ab:
7f:56:ad:b8:b1:42:fa:40:25:0e:af:f0:a1:13:77:34:38:a5:
a8:cb:d7:2a:3c:1e:35:7c:77:76:86:2f:93:9c:3f:1f:0c:fb:
99:91:d8:38:83:67:fa:9f:9c:06:6d:a2:ed:20:55:9d:d0:b6:
02:3d:75:c0:7b:31:6e:49:c0:c9:d9:65:67:e8:81:f8:96:50:
b7:b6:12:3e:31:7e:da:2d:9f:e9:97:88:c6:d6:6b:f4:a8:e3:
5f:a7:d2:18:bc:f8:74:b1:68:fc:2a:31:ed:16:69:6b:77:80:
db:5d:ac:44:42:09:19:3a:96:31:f6:5a:82:18:52:44:95:e8:
95:69:2d:38:53:ca:aa:0a:cd:f8:d5:ba:97:90:e2:32:d9:cc:
21:0f:a3:a6:4f:c9:65:9f:ec:d9:8b:3c:de:70:6a:ee:db:81:
35:0e:68:83:5f:c4:46:a6:9d:91:e6:86:d7:2a:5e:ec:23:3c:
71:e6:c8:5e:74:6c:02:08:b8:9e:fc:7d:11:52:c4:dd:d4:8c:
08:86:db:5a:ad:79:04:b7:35:90:cc:fc:60:23:1a:9a:56:7b:
c2:f0:6a:bb:dd:15:3f:3e:50:df:5f:c2:43:16:24:42:27:63:
25:4d:b4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:55:37 2024 by rpki-client on console-fra.rpki-client.org