Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
File: lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft (raw, json)
Hash identifier: qkcKLHa9bfnFK2NLvWeO0fzMFm2zEdbDaZmYapPG+rY=
Subject key identifier: 7F:FF:E2:B1:65:67:C1:91:EB:13:CE:E3:9D:61:2D:21:E8:28:8B:D0
Authority key identifier: 94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42
Certificate issuer: /CN=94282a6078ba98fb4a6e343e7603a960e7a63442
Certificate serial: 019210CF7A371FF850A74C8A73C5890B038E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
Manifest number: 1282
Signing time: Fri 20 Sep 2024 19:01:25 +0000
Manifest this update: Fri 20 Sep 2024 19:01:25 +0000
Manifest next update: Sat 21 Sep 2024 19:01:25 +0000
Files and hashes: 1: lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl (hash: KejzepKfri+vqpMV7amtjEKe3DjhVrAnxk8mttSe8HU=)
2: uzVTTvvF1-LVvJFX7Xie6DC32HU.roa (hash: wFtdB7OoqNJLNyNo4CXpvXlmdvlZPaTlN41a+VVI9iU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:10:cf:7a:37:1f:f8:50:a7:4c:8a:73:c5:89:0b:03:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94282a6078ba98fb4a6e343e7603a960e7a63442
Validity
Not Before: Sep 20 19:01:25 2024 GMT
Not After : Sep 21 19:01:25 2024 GMT
Subject: CN=7fffe2b16567c191eb13cee39d612d21e8288bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:67:0b:b8:27:20:f6:51:76:b1:74:22:bf:df:
23:57:dd:32:1a:ea:a0:3a:73:47:9d:c5:55:15:93:
4b:9e:27:b3:5e:a6:4c:96:cc:49:0a:35:0e:96:2c:
2a:3e:da:3c:f6:6d:b9:4b:aa:9c:ac:d0:1d:46:62:
8b:17:08:c6:3e:28:87:22:26:dd:43:23:04:6a:d1:
73:62:be:ad:86:8d:2e:f6:aa:b6:8b:f1:08:c7:3c:
a1:9e:8f:92:33:1d:7d:5d:1c:10:0f:a6:c6:77:5f:
fe:f1:27:dc:75:be:72:3a:20:6c:3c:81:86:ff:8d:
0f:7c:e5:b6:41:01:84:46:3a:30:ae:7a:13:5f:ae:
22:55:94:91:e2:9f:7c:ab:b4:7a:cc:2a:39:ad:d8:
36:d7:d9:f4:c7:98:be:89:ac:26:53:20:5f:3a:af:
10:56:9f:80:e7:a4:f7:54:85:b8:77:b7:61:f1:61:
98:67:e1:36:96:c1:ed:1f:09:24:69:37:6b:0c:e7:
f3:bc:29:34:89:df:2b:cb:13:95:5a:04:3c:e7:01:
d4:9b:82:3f:79:00:08:25:ab:2b:e8:95:1e:0b:5a:
95:8a:f3:07:8c:ca:a6:51:06:a2:2f:fa:8c:a5:3b:
e1:4e:f4:ca:38:54:97:3e:b3:ef:cf:27:d3:69:7a:
2b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FF:E2:B1:65:67:C1:91:EB:13:CE:E3:9D:61:2D:21:E8:28:8B:D0
X509v3 Authority Key Identifier:
keyid:94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:51:85:6c:ca:da:dc:bd:69:8d:0d:f4:b6:35:53:90:4a:b3:
76:3b:60:e8:be:4d:cd:c0:68:09:e4:9c:28:d5:f9:99:2d:9c:
a0:6a:5e:08:dd:0f:9b:e5:5f:8e:9e:7e:42:7e:5e:1e:99:88:
1a:d8:95:bb:a1:00:4c:93:0f:35:9c:72:63:34:30:20:32:7e:
33:a3:56:77:b6:ff:6b:2c:43:8e:cb:7c:a9:ae:fc:a8:a4:b7:
f9:ae:fd:b1:90:34:da:66:11:42:09:7b:cd:21:1b:da:b4:80:
5b:d4:fa:a0:06:2c:01:4a:fc:65:3a:29:91:6e:66:46:de:66:
2d:f6:af:c6:45:99:c4:03:7b:2b:c9:21:93:8d:14:e2:6e:25:
77:9c:34:1f:66:95:fb:ff:74:fe:a9:ca:13:60:f5:c6:b6:c3:
f9:e9:7f:91:e0:1b:5d:3c:6b:5b:4b:ce:22:63:05:c7:51:00:
2b:8a:13:29:79:00:fe:b4:a9:d4:9f:f6:72:3e:8e:d6:e1:f9:
e6:61:02:c5:83:4e:ad:4d:4f:51:78:71:22:6c:d4:71:58:66:
78:86:6a:20:9f:5d:24:33:56:61:f2:06:88:96:4b:c3:f8:ca:
14:57:8b:f7:0a:63:24:9a:20:c6:ff:07:b4:00:09:ec:b7:4e:
33:9d:5c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 20:35:04 2024 by rpki-client on console-fra.rpki-client.org