Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
File: xLejOGcjuooupILHtoAxpUEirE8.mft (raw, json)
Hash identifier: FjMjwx2q7eZ3IO7Js12ZmlM1lrVNMg+bdns7jM8um7Y=
Subject key identifier: 60:A9:12:82:8A:BF:87:D3:DB:28:F6:74:0C:BA:34:A2:10:51:43:0C
Authority key identifier: C4:B7:A3:38:67:23:BA:8A:2E:A4:82:C7:B6:80:31:A5:41:22:AC:4F
Certificate issuer: /CN=c4b7a3386723ba8a2ea482c7b68031a54122ac4f
Certificate serial: 0193561AF832C0F7982B3D94B800C9582C01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
Manifest number: 01D6
Signing time: Fri 22 Nov 2024 23:00:28 +0000
Manifest this update: Fri 22 Nov 2024 23:00:28 +0000
Manifest next update: Sat 23 Nov 2024 23:00:28 +0000
Files and hashes: 1: QC4dbXrWzmsaI3ieu6ZmyifgWrw.roa (hash: 4T1/w9dTOwish0pRWO+dm1pJfu9SriTHmdVD15gaeLo=)
2: xLejOGcjuooupILHtoAxpUEirE8.crl (hash: iTiM+niwMT9nLD/wDPN1qQynyWUy9jsdAb1hG64lrJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:1a:f8:32:c0:f7:98:2b:3d:94:b8:00:c9:58:2c:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b7a3386723ba8a2ea482c7b68031a54122ac4f
Validity
Not Before: Nov 22 23:00:28 2024 GMT
Not After : Nov 23 23:00:28 2024 GMT
Subject: CN=60a912828abf87d3db28f6740cba34a21051430c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3e:4d:5b:ad:cc:cb:a9:a0:88:f0:b4:80:71:
bd:29:f0:40:d7:f7:3a:88:51:20:3f:34:ca:b0:a9:
2e:c2:93:d3:44:6b:49:41:b0:58:78:b2:37:04:46:
d5:f4:c9:51:95:57:d5:25:03:e7:2e:2b:30:de:99:
f9:9a:14:31:e5:27:3c:8f:67:c4:8f:5b:1f:e1:01:
45:72:7a:fe:3e:24:95:1c:31:ac:f8:ca:1d:6f:ba:
6c:fb:28:76:3b:3f:fd:0b:be:e6:87:a2:18:a7:c0:
91:5d:49:64:d1:e0:2f:2c:fd:0c:71:2b:98:3a:5e:
6d:79:09:45:66:f3:69:54:c1:cb:49:00:5f:69:94:
ed:cc:22:df:6b:26:fe:57:54:bb:72:53:08:76:41:
02:43:cd:4d:f7:9f:8f:76:e2:14:ef:15:0a:e1:f5:
72:f2:b3:05:64:f6:3d:6c:a6:ad:bc:66:6b:86:54:
5a:9a:7a:98:e2:25:18:f9:e9:bd:08:bc:de:9b:e0:
83:58:5c:5b:a2:f1:38:ae:81:c0:5c:91:0f:81:fb:
63:96:a2:06:1b:55:c7:f2:31:74:f0:e8:4d:bd:53:
6f:e1:c8:85:4f:e1:ea:d3:db:57:3a:b8:ce:a9:da:
48:26:f7:64:30:5b:c5:e4:11:90:dd:e3:03:0d:f7:
a6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A9:12:82:8A:BF:87:D3:DB:28:F6:74:0C:BA:34:A2:10:51:43:0C
X509v3 Authority Key Identifier:
keyid:C4:B7:A3:38:67:23:BA:8A:2E:A4:82:C7:B6:80:31:A5:41:22:AC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:63:0e:56:24:2f:e1:8e:5f:77:c6:d4:1e:6e:c9:9e:7a:7b:
0d:29:db:a6:9a:ae:0d:e2:81:66:57:1d:9d:96:16:d0:98:40:
3c:bf:cc:32:fb:48:be:c4:4b:91:fb:d9:67:0e:f2:4a:50:a2:
d3:fb:72:69:eb:75:a4:44:de:34:82:9d:07:0a:ee:3c:60:92:
c3:ec:2d:4c:40:37:61:f8:b6:26:d4:ba:3d:3f:c6:e4:e4:1f:
8d:82:2b:4f:2a:f6:5a:a2:b9:96:c1:14:a2:eb:b2:de:c1:40:
a9:78:33:e7:f3:0c:18:7e:fd:ba:63:f8:a4:0b:99:2d:78:12:
8e:cd:ad:27:d8:48:49:87:1d:81:2c:18:e0:11:b9:b6:a1:1a:
ae:1d:e7:42:e6:7b:16:eb:5f:ca:46:19:42:7c:84:c7:b0:4a:
9d:6a:f6:38:a2:3e:53:ca:0a:99:73:0c:5a:fd:d5:e4:17:dd:
13:8d:ab:ed:18:20:3e:fe:2c:45:e9:5f:d1:a2:0e:53:d8:03:
06:89:c8:a4:c8:6e:c9:b0:3b:31:01:36:5f:e4:49:76:44:87:
1e:3f:36:40:bf:e8:ac:3b:7b:ce:31:cb:f3:49:14:3d:63:05:
fb:c2:66:af:b8:c7:98:90:31:bf:3e:72:0c:75:3c:b7:15:b4:
54:5d:6a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 01:16:45 2024 by rpki-client on console-fra.rpki-client.org