Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
File: eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft (raw, json)
Hash identifier: sfNodPvO85+J3+C37ZNTCAIbU4RiyhpT6jqGsgsoI54=
Subject key identifier: 81:B6:E1:C2:0F:32:DC:17:FA:A2:10:D3:EC:22:2A:32:74:EE:D1:C1
Authority key identifier: 78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
Certificate issuer: /CN=7870621fc0afc8ec18eef20633f6148813279976
Certificate serial: 019358ADEB33B253622E4C223F83640F453C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
Manifest number: 0237
Signing time: Sat 23 Nov 2024 11:00:12 +0000
Manifest this update: Sat 23 Nov 2024 11:00:12 +0000
Manifest next update: Sun 24 Nov 2024 11:00:12 +0000
Files and hashes: 1: NnKePw-_oywEb4qfNL0fsmUkLL0.roa (hash: 42QB5rJJaSTPJYC/g23BcTtSHTE0xCthwS9OBZjTmBk=)
2: eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl (hash: /it+uDtB3XbqSe8PgfMMOCFYrh/v7gD9ccgFonmpISc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 11:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:ad:eb:33:b2:53:62:2e:4c:22:3f:83:64:0f:45:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870621fc0afc8ec18eef20633f6148813279976
Validity
Not Before: Nov 23 11:00:12 2024 GMT
Not After : Nov 24 11:00:12 2024 GMT
Subject: CN=81b6e1c20f32dc17faa210d3ec222a3274eed1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b2:bc:0a:c8:4f:85:4e:25:af:ba:43:77:d4:
4a:84:be:ba:e1:35:04:f6:b7:f0:40:89:a9:a4:bc:
92:8c:59:fd:07:0c:88:7f:b8:d6:22:58:8c:e2:ee:
d5:fa:dc:0d:84:5b:9e:92:99:5f:1f:9d:72:9a:93:
74:6b:04:94:dd:7e:88:4d:b2:3f:33:1a:65:66:80:
b3:7c:46:76:95:b8:12:16:e0:f2:08:8b:39:73:ba:
e7:e1:08:10:44:d3:14:97:c8:ac:a5:bc:29:0a:b1:
28:74:90:1a:63:ca:7b:66:6a:3b:25:86:b3:81:a4:
ec:41:86:13:f3:46:48:b4:29:58:c9:75:0f:2a:f7:
c5:70:30:f7:66:05:5f:a1:55:4b:9c:81:be:8a:15:
aa:54:83:74:8d:bf:c7:9b:eb:b9:7e:2d:cf:5b:b8:
f1:03:d7:94:a4:21:90:c1:81:c5:ff:6c:63:0a:8e:
fd:16:12:cf:7e:e1:e1:04:35:5b:8f:5d:5e:7f:19:
41:8f:8d:70:db:b0:a9:df:4b:dc:c7:f8:43:f2:73:
1b:fb:51:1f:af:76:84:c2:ff:b0:2d:4e:ad:8e:75:
ed:3b:1f:95:bc:a6:f0:fc:37:be:05:7c:c5:a4:1b:
34:69:c4:48:b2:d0:f6:5a:25:82:64:62:91:bd:fb:
e4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B6:E1:C2:0F:32:DC:17:FA:A2:10:D3:EC:22:2A:32:74:EE:D1:C1
X509v3 Authority Key Identifier:
keyid:78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:b6:57:ab:e0:f4:3b:de:54:e0:21:1b:59:0d:84:fd:e3:72:
0c:68:63:c5:b5:fd:83:67:88:1a:49:50:51:1d:12:2c:d6:86:
20:8f:90:d2:2a:b8:5e:56:dc:5c:c8:b9:17:b5:fd:d5:f0:ad:
0b:84:67:88:55:e4:4b:5c:70:e8:c5:f5:3a:0a:81:6a:81:fe:
ad:66:1c:ea:7f:4c:f7:b0:d2:27:86:9e:36:30:30:6b:f1:d0:
b5:57:3b:23:dd:56:af:5d:47:cb:7f:24:97:65:d3:b4:5c:b0:
69:bb:ff:33:0d:17:d0:4e:90:20:4c:53:b7:c1:3f:55:36:95:
60:b1:68:b6:83:74:40:50:f3:72:35:57:f5:dd:ba:32:3a:29:
b8:a5:26:ff:82:b8:7f:bf:da:57:a7:37:c4:28:ce:5b:87:68:
2b:55:18:e9:a6:a4:93:b2:ab:2a:f9:09:f0:df:f2:df:04:f4:
87:eb:f9:d3:f4:f4:1f:be:be:cb:0d:5b:af:e7:25:87:d7:eb:
89:87:dd:5a:0d:d9:7a:30:f6:58:64:85:53:9b:a9:9e:18:0a:
eb:17:22:4b:d3:eb:0d:11:3f:45:a4:f0:ee:12:5d:46:8a:b7:
40:97:20:4e:c0:1f:01:61:e7:b4:8d:7c:ca:2a:9b:7b:84:81:
70:08:cf:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 18:59:42 2024 by rpki-client on console-fra.rpki-client.org