Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
File: o8p7HBOn17MSMUErj7aUehdH250.mft (raw, json)
Hash identifier: 2OZqgIfLMnmAhaoRh/fih8+M+DPUNZ+neIJId1WkaTE=
Subject key identifier: 71:57:70:CE:00:93:78:06:F3:73:35:78:68:9E:C0:49:98:8A:DE:4D
Authority key identifier: A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
Certificate issuer: /CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Certificate serial: 019353BE99B6D8B16207297A1CCB6F8092D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
Manifest number: 015C
Signing time: Fri 22 Nov 2024 12:00:20 +0000
Manifest this update: Fri 22 Nov 2024 12:00:20 +0000
Manifest next update: Sat 23 Nov 2024 12:00:20 +0000
Files and hashes: 1: PN0itIylp2digoBbgo-ys2K55SM.roa (hash: 30855XuE8sz1bJF+ug6KbPMv6uM+fD82yEr1JfN0nYs=)
2: U_B2xWBhou3uIdWLQ3WIdVwRoI0.roa (hash: OIXHna+Q/eccDeY8gf7RJ+eCf3MyZwUAnoNbj6G/+UU=)
3: o8p7HBOn17MSMUErj7aUehdH250.crl (hash: T4vXCjLKT8D0OmfBdR6f3DO/6Ojx5W72IotToDdVKMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:be:99:b6:d8:b1:62:07:29:7a:1c:cb:6f:80:92:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Validity
Not Before: Nov 22 12:00:20 2024 GMT
Not After : Nov 23 12:00:20 2024 GMT
Subject: CN=715770ce00937806f3733578689ec049988ade4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2a:c6:24:ac:ee:65:5a:89:ee:fd:11:df:0c:
db:9a:98:13:03:2b:4e:31:3d:c3:a0:23:77:b4:3d:
a9:ec:fa:0e:27:d2:e4:6e:f3:8a:c2:e2:ed:f0:c9:
6e:e5:ee:52:3a:b4:7c:3e:1a:70:eb:53:0d:27:47:
bb:cd:80:f3:a9:ca:6a:b0:73:fd:ac:64:3f:03:53:
87:4e:7a:a5:03:1e:be:59:1b:9c:ad:5b:a7:f6:b4:
46:37:b8:04:51:4c:c9:78:dd:82:93:80:02:d5:12:
7e:38:bb:3b:d5:92:3b:1f:51:f3:37:ab:fd:e2:fe:
e9:5a:f7:c8:62:aa:84:bc:14:30:db:d7:27:14:82:
a7:fb:90:7e:6f:11:d4:82:6d:0a:07:c5:9a:39:cf:
61:2c:23:4b:21:68:4c:da:38:fd:41:50:05:e1:6b:
1a:a7:ea:2d:a9:63:16:e0:65:d7:37:13:23:81:d8:
0f:df:e8:d2:7a:bc:c5:af:d5:90:62:27:2b:1c:67:
b6:a5:37:5e:9a:d1:21:e8:53:55:22:79:82:04:76:
b1:95:0a:c9:93:c2:51:0e:86:7a:62:23:e6:eb:f0:
c8:0c:39:be:a0:bf:6f:63:61:85:a2:6a:1e:e8:21:
b4:fb:6b:d2:8b:f7:c8:6f:68:0a:a8:ee:ad:1c:b3:
9f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:57:70:CE:00:93:78:06:F3:73:35:78:68:9E:C0:49:98:8A:DE:4D
X509v3 Authority Key Identifier:
keyid:A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ca:dc:c5:42:75:81:50:dc:39:ad:c9:4d:d9:be:f6:be:3a:
2d:03:25:cb:dc:41:9c:fa:c5:91:d5:1f:ba:14:f9:4b:54:f9:
63:43:aa:4b:49:8a:d4:f7:5e:40:1d:15:ef:5d:1b:76:42:f3:
86:fe:27:67:ec:c9:b5:1d:d9:60:54:bc:5a:65:6e:ee:2a:29:
1c:b4:9b:02:6b:18:73:82:3f:fd:56:c6:f3:b3:7b:ca:37:92:
ff:13:70:83:51:73:03:32:0d:9c:b9:ae:b1:2f:c2:81:71:2e:
e4:0a:e6:64:8e:65:2b:b6:80:d3:aa:b4:ca:62:ea:cb:88:f4:
e8:0a:f2:5a:46:40:c7:94:46:19:38:8d:2a:a1:8f:2a:c9:77:
1d:07:e9:1b:a5:47:a6:1a:18:41:29:62:a0:24:69:b2:c7:28:
45:0c:2a:92:28:9d:ab:56:d8:49:b0:07:bb:a5:22:71:0e:1c:
0c:37:d8:57:76:55:94:16:b2:61:d7:2e:2c:23:75:c4:d9:cd:
55:49:44:13:49:3b:09:4a:f7:b7:60:be:71:2b:e7:10:b3:a8:
6d:05:cb:78:98:1c:6f:c1:8f:24:10:62:b3:51:fc:1e:87:ac:
e2:96:b8:93:0c:5a:d3:27:b8:96:b1:b9:ec:3b:bf:97:8e:fe:
85:c1:34:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:07:24 2024 by rpki-client on console-fra.rpki-client.org