Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: q0ob2fVleUeevpgUypqNdiFjTIYCg/V7zoW+xIBQFTg=
Subject key identifier: 1F:3A:AE:C7:54:08:29:2C:3A:82:C7:D2:CF:E1:33:2E:F4:B7:50:A7
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019354634F5CFE64D308AB2243B110A7FE2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: C0
Signing time: Fri 22 Nov 2024 15:00:14 +0000
Manifest this update: Fri 22 Nov 2024 15:00:14 +0000
Manifest next update: Sat 23 Nov 2024 15:00:14 +0000
Files and hashes: 1: AVBXVLQ64kD2W8lOwEgIKSFrvCo.roa (hash: D8ZIdsPcuT1SAIAilxJJTB2VI5iqUxpaXxtvRZyGvTY=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: FDBTsPrX6JpIhA10m+2Y3UOEwOVNddwR/XFTSMXnEA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:63:4f:5c:fe:64:d3:08:ab:22:43:b1:10:a7:fe:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Nov 22 15:00:14 2024 GMT
Not After : Nov 23 15:00:14 2024 GMT
Subject: CN=1f3aaec75408292c3a82c7d2cfe1332ef4b750a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3e:ff:55:fa:3b:5d:8c:e4:00:4b:42:05:a2:
f8:2c:61:c9:48:03:14:84:c1:fa:c1:53:f8:1b:02:
79:be:4d:31:3b:95:73:57:2a:ba:e4:40:dd:8b:95:
3c:ee:d7:e6:b1:0d:c6:8e:f4:31:11:18:2a:0b:e3:
54:47:da:bb:5d:c1:87:fb:f7:69:df:05:4f:bf:f2:
7d:5b:cb:96:2b:72:2d:70:ef:a8:99:ef:2f:15:0a:
6e:a4:be:04:25:77:f5:32:69:5f:a3:41:3e:8e:35:
84:4a:5b:9a:55:8e:22:00:8a:05:b8:8c:c2:d9:d1:
1e:55:71:03:de:78:e7:dd:f0:12:a3:27:73:eb:38:
88:b9:e7:ff:a2:8a:85:4d:3d:18:e3:83:1c:a2:76:
61:26:fe:dc:07:a0:82:c1:af:d6:f7:ef:4e:ed:b6:
aa:b5:fa:a7:0c:ea:68:e1:ed:6f:f5:4c:b9:8c:d1:
eb:04:72:a1:24:b4:84:f5:64:a5:61:31:a5:4a:ef:
01:9b:ec:5d:c0:90:fd:6e:bf:d6:e4:6c:b1:1c:fb:
79:e3:d3:43:de:6c:8a:2b:3b:ef:1a:b7:a8:a0:9e:
b2:df:8b:89:cf:57:05:29:e8:80:bb:34:9c:f7:ea:
4a:29:8c:0d:fb:83:31:56:ec:78:2a:e3:43:00:1e:
19:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3A:AE:C7:54:08:29:2C:3A:82:C7:D2:CF:E1:33:2E:F4:B7:50:A7
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:d8:de:eb:36:dd:14:78:14:88:8a:cf:63:35:cf:a8:1a:45:
11:9a:95:dc:b6:2c:c1:9a:d7:a0:72:96:dc:39:f4:10:35:02:
08:60:41:22:59:85:e1:5f:be:02:51:1d:24:e3:74:7d:3a:47:
ac:12:4d:95:dc:72:17:83:c5:f1:3e:77:62:46:bc:7b:9f:36:
e5:3a:f1:79:30:26:d6:d9:92:d9:c5:50:92:e6:62:7f:b0:b3:
cc:b9:45:22:74:c1:e2:88:2b:76:e0:0e:3f:81:98:9e:07:be:
6d:0b:01:b0:af:e2:97:79:37:4f:e0:0e:92:12:45:71:b0:3b:
85:57:73:2c:36:c4:bf:1a:e0:ea:44:f2:ce:2f:f7:e4:47:bd:
f3:f4:f3:2c:e9:07:44:ca:32:30:6b:ab:19:fe:7d:55:8f:c2:
39:06:fc:6f:4f:b8:c4:1a:ed:f6:5d:d8:e8:59:71:9c:53:00:
00:c0:95:b5:c8:02:b3:07:14:67:84:10:11:72:66:47:0a:9b:
2c:cd:43:a9:a4:03:4b:19:e4:a2:6e:2a:cf:5d:cd:ff:53:05:
9b:a6:4a:92:d8:f2:ea:4d:cb:f0:1e:11:dc:8e:8c:cb:57:2e:
d6:cc:6a:52:a9:98:26:a1:11:cb:fd:e8:c5:b0:52:f9:a4:2c:
f8:1d:cc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:04:40 2024 by rpki-client on console-ams.rpki-client.org