Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
File: xLejOGcjuooupILHtoAxpUEirE8.mft (raw, json)
Hash identifier: 9+QNaIwYdd45cAWKb88J1xHJIsJ9hns8cJj7j/FN5d8=
Subject key identifier: DD:E2:59:DD:C5:E5:23:97:44:A6:00:74:4E:30:FF:31:B8:FE:F0:38
Authority key identifier: C4:B7:A3:38:67:23:BA:8A:2E:A4:82:C7:B6:80:31:A5:41:22:AC:4F
Certificate issuer: /CN=c4b7a3386723ba8a2ea482c7b68031a54122ac4f
Certificate serial: 0191FA7E1105F99921D02DE41794176603F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
Manifest number: 0122
Signing time: Mon 16 Sep 2024 11:00:51 +0000
Manifest this update: Mon 16 Sep 2024 11:00:51 +0000
Manifest next update: Tue 17 Sep 2024 11:00:51 +0000
Files and hashes: 1: QC4dbXrWzmsaI3ieu6ZmyifgWrw.roa (hash: 4T1/w9dTOwish0pRWO+dm1pJfu9SriTHmdVD15gaeLo=)
2: xLejOGcjuooupILHtoAxpUEirE8.crl (hash: 6KPViWb2WJB+/wV51gGWlB2QnOw5ad7utMJto50BJKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 11:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:7e:11:05:f9:99:21:d0:2d:e4:17:94:17:66:03:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b7a3386723ba8a2ea482c7b68031a54122ac4f
Validity
Not Before: Sep 16 11:00:51 2024 GMT
Not After : Sep 17 11:00:51 2024 GMT
Subject: CN=dde259ddc5e5239744a600744e30ff31b8fef038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2b:c4:60:65:95:5e:66:e0:9c:10:34:68:4e:
78:dd:7f:0e:11:a6:73:1e:5c:c5:0b:70:33:ab:b2:
54:2d:7a:3d:3d:72:cf:84:45:36:79:e7:12:67:00:
5e:44:53:8a:b1:76:0c:f4:d7:f9:ae:c1:a5:99:8a:
16:07:13:37:f4:a0:d8:d7:e7:4f:95:5e:e9:2f:1c:
71:9a:8c:8c:77:83:99:80:6c:59:74:30:24:28:50:
ac:82:17:9e:16:89:d9:3c:a1:4c:1a:64:32:64:74:
0c:7e:4d:86:82:c2:a6:c1:4a:1c:b2:7f:61:4e:0d:
98:5c:f2:81:e6:cc:3b:35:e4:0a:cd:b6:e2:2a:86:
3c:bd:69:72:43:c0:d6:5e:5d:5b:ce:9c:88:ea:85:
9a:58:b6:6b:a7:fa:29:20:01:c2:b1:2f:22:b3:6a:
c3:ba:49:ff:06:04:cf:f2:48:b7:56:6e:44:f6:fe:
e9:86:93:04:83:62:be:14:a4:11:e7:1f:20:17:0b:
c8:a0:4a:ac:f9:fe:11:5c:47:59:a8:7e:39:b0:9d:
88:f1:91:f8:ef:35:3e:26:04:1e:58:21:b9:62:e4:
d8:38:de:f3:48:4d:1b:2e:7d:6d:19:2f:5c:5f:5a:
11:2d:a3:1d:77:d1:13:83:08:a1:cd:e5:3a:d5:0e:
74:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E2:59:DD:C5:E5:23:97:44:A6:00:74:4E:30:FF:31:B8:FE:F0:38
X509v3 Authority Key Identifier:
keyid:C4:B7:A3:38:67:23:BA:8A:2E:A4:82:C7:B6:80:31:A5:41:22:AC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:62:8f:2c:3f:e6:da:a5:19:f0:3a:1b:6f:76:71:96:d0:e9:
6e:0b:26:40:01:e1:a8:02:2c:5c:a9:66:01:c5:c1:27:29:92:
d1:08:30:01:81:ac:88:cd:9b:b8:5f:f5:69:b1:74:2c:6d:d9:
c5:f6:4e:e2:7e:e2:78:02:49:fc:2a:60:22:a9:76:34:68:6d:
ad:6f:3c:8e:42:8c:58:ce:72:45:89:c9:97:75:63:b5:04:27:
ce:30:1f:07:5a:b0:6b:95:07:b8:5e:d7:7c:50:08:5b:fe:65:
3d:15:9d:38:c9:41:4b:f3:41:81:8b:02:51:89:90:c8:03:84:
f0:10:8e:55:71:d1:3b:23:b0:98:70:43:3e:98:90:a6:0e:e0:
dc:00:02:32:54:62:13:ea:06:c0:e3:47:8b:5b:02:45:ff:f0:
3f:95:4b:ad:66:a0:7c:ac:d9:cf:0c:3b:48:1f:e9:89:79:03:
40:9e:63:6c:75:b2:51:08:10:09:bd:00:7a:76:94:c4:b8:7e:
04:ed:91:27:cd:9f:64:c2:ef:e3:42:8b:d2:ab:a4:66:77:c3:
5d:7a:c5:7e:29:87:96:bc:6e:c8:eb:fd:d6:c3:ab:65:ff:6c:
94:21:51:87:f7:21:9b:99:cd:5b:29:2a:1a:58:a5:4f:b1:14:
5d:ee:91:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:14:48 2024 by rpki-client on console-fra.rpki-client.org