Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: K/F7JkoBo4dw/OUUKCUIbwpQYEiyw8YEny21X+uw9jI=
Subject key identifier: D9:BC:D6:1C:C0:03:57:0A:43:02:8B:71:0F:DE:F1:59:F3:02:A7:8A
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 0194067CBC3F9B09108D3580B1BF4E228A24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 3C
Signing time: Fri 27 Dec 2024 05:00:25 +0000
Manifest this update: Fri 27 Dec 2024 05:00:25 +0000
Manifest next update: Sat 28 Dec 2024 05:00:25 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: pLvf7dCZAt/9E3fGBqosAFLIL1LCPhq9HqvohMw84lE=)
2: oIkCE0DR1olFJIW_ktb4Nf7WoOk.roa (hash: 6K9gQbJFzPzNtS6cpg9CcCd2TEfqzhll6gxxFA3vDLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:7c:bc:3f:9b:09:10:8d:35:80:b1:bf:4e:22:8a:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Dec 27 05:00:25 2024 GMT
Not After : Dec 28 05:00:25 2024 GMT
Subject: CN=d9bcd61cc003570a43028b710fdef159f302a78a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:38:6b:7a:e7:9f:cf:34:2d:49:85:36:8a:f4:
62:50:ed:6e:9a:ab:54:29:92:5e:70:fd:a9:cf:8b:
76:d3:b5:97:90:f6:23:f8:10:12:ad:a8:40:ca:fd:
f9:2a:cf:e4:7e:d4:07:9c:17:f8:0b:a3:ae:75:b4:
2c:79:7c:65:84:3f:64:88:08:88:a5:c6:fd:7a:e0:
62:91:41:b7:dc:cc:02:62:39:be:5b:e9:fc:4e:bf:
44:08:7c:80:de:26:ff:ab:f2:61:f3:31:fa:06:dd:
ed:da:1f:9e:19:7e:02:79:21:58:2c:b4:66:f1:a3:
49:b4:0b:fb:4b:f3:94:cd:7b:c1:b5:93:bf:be:74:
31:cb:9a:0f:a7:4c:ca:71:67:2d:65:14:fe:c8:c8:
43:1e:21:8a:3e:26:33:fd:3a:ab:b7:b3:16:3c:57:
de:1f:1f:14:1d:e2:ca:10:bd:e2:b0:86:ef:31:b4:
51:41:d5:c6:37:d3:49:19:79:61:1b:f0:a0:35:ef:
4c:db:2c:ef:2c:cc:f7:2f:6b:9e:95:7b:c6:ff:a6:
da:46:90:20:3f:f7:aa:94:ab:ad:c7:f9:0e:03:56:
a8:de:a6:e3:7e:e2:86:e8:df:f3:3a:33:ae:f1:ff:
84:55:05:c5:ae:c8:0d:e1:d2:73:86:bc:63:33:f1:
09:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BC:D6:1C:C0:03:57:0A:43:02:8B:71:0F:DE:F1:59:F3:02:A7:8A
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:69:36:e4:b5:39:49:74:bc:b1:4f:fb:ae:df:d3:39:3a:18:
5a:0f:c8:13:b3:0f:7a:96:8d:89:53:7e:41:da:2b:04:93:0a:
f8:fa:76:60:d0:8a:69:3e:e5:ac:9b:04:76:d8:26:93:a3:4c:
96:61:e5:48:fb:6b:95:09:4a:fa:e1:27:ed:a5:00:5d:c0:3b:
4b:95:df:80:04:7a:86:a5:f7:bc:a9:88:2f:df:75:ec:19:46:
91:04:78:2b:f3:6f:74:55:e3:3a:1e:b0:d3:ed:6b:9c:85:63:
6c:cf:3b:e6:b2:53:67:05:d1:6d:ef:2c:55:ab:92:88:58:82:
e0:30:2e:2e:2c:e9:66:d5:66:3e:dc:ba:06:4d:0d:10:81:d2:
3a:3a:5e:e4:99:62:ab:78:30:a5:c2:13:c9:6a:93:2d:77:3d:
31:86:e9:6a:50:6a:a3:c0:76:0b:1e:48:6b:14:16:26:9f:7f:
9f:9a:be:2f:89:fc:e8:3b:6f:78:4b:86:e2:2d:82:6a:dd:b6:
e9:c3:0c:8d:90:f0:dc:54:ad:c9:2c:03:16:9d:c4:41:8a:7f:
6f:2e:ee:3e:ff:10:ef:98:fd:c6:1d:73:12:a2:c7:43:ca:1a:
c7:a2:0b:44:79:29:e6:56:0f:0e:50:d9:a0:d8:35:1e:5f:f5:
04:44:cb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 13:22:12 2024 by rpki-client on console-ams.rpki-client.org