Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: PMIZarksto785o4fTX9IgTQKcz4f9zBiNdiE6mFF5kY=
Subject key identifier: B3:9E:B7:BC:41:3E:D4:D7:CE:82:02:60:56:FC:4E:47:96:7A:5F:96
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 01935689B0972791325A5FAB7001AA70FDA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 1194
Signing time: Sat 23 Nov 2024 01:01:24 +0000
Manifest this update: Sat 23 Nov 2024 01:01:24 +0000
Manifest next update: Sun 24 Nov 2024 01:01:24 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: icnZneUK8n4WUTUm2E/idaZVhlUmAxI1Dis4OTrdkjg=)
2: bVfJlgxWXUi-7pt2ys-EY--Qluw.roa (hash: EBSFeWUcyJFbah5XzGdG4DihaN1WdcJmtnJ7yCTVrcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:b0:97:27:91:32:5a:5f:ab:70:01:aa:70:fd:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Nov 23 01:01:24 2024 GMT
Not After : Nov 24 01:01:24 2024 GMT
Subject: CN=b39eb7bc413ed4d7ce82026056fc4e47967a5f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:09:f3:5d:30:d5:0b:a0:ef:88:34:88:87:bc:
79:0e:a4:1e:0b:67:d9:fc:ec:d8:60:9f:50:68:b1:
12:16:1e:07:50:d4:67:4e:09:3d:91:95:f2:d1:74:
f7:48:0c:d4:9d:54:03:47:fa:cf:c0:50:a7:eb:9b:
ef:5f:49:59:bd:93:a8:30:74:ff:7c:0d:53:5b:d0:
d1:95:7b:0a:8b:87:d3:e4:0f:b7:b3:91:97:00:00:
94:d6:85:a9:66:04:a7:c2:e3:36:e2:a5:40:3c:05:
2d:cc:81:fd:a4:69:19:17:bf:6e:8e:8b:01:09:2d:
b6:32:88:14:99:5c:b0:0d:f8:b6:d0:e0:36:b3:9a:
41:2d:34:f8:6d:87:a4:d4:97:63:8c:9f:10:40:bc:
8e:93:40:cc:40:85:83:f0:15:01:ed:a5:ed:2c:f6:
86:93:37:4a:67:2d:b9:18:65:c3:1e:37:07:70:f3:
5f:80:f8:38:7d:f2:8f:0a:d1:6d:3a:0b:7c:d6:e1:
d0:7e:37:93:69:c4:13:d9:fc:64:a3:c1:7b:48:db:
b0:a4:ed:51:72:12:7b:71:21:24:a6:59:45:a7:01:
c6:5a:db:5b:51:f2:6d:ea:34:c0:d9:40:5a:49:6e:
46:6a:6d:9b:ac:30:96:83:56:2a:6e:a2:da:28:df:
4a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:9E:B7:BC:41:3E:D4:D7:CE:82:02:60:56:FC:4E:47:96:7A:5F:96
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:85:67:0c:21:cd:2f:7b:7b:59:a0:c0:7c:dc:76:4f:de:f5:
a4:58:8c:5c:db:86:d7:a0:08:0c:d1:7d:7e:cf:20:af:6b:c4:
58:de:77:96:59:b0:eb:35:6a:85:62:43:80:07:ac:fc:f0:28:
53:11:da:82:22:80:5a:02:9d:b5:6e:d0:e8:bf:c5:c7:26:07:
14:f8:cd:6f:56:8a:77:e6:54:63:79:cf:5e:b9:38:be:d8:67:
a0:7d:9b:25:6d:4b:3c:7f:19:47:6e:42:68:ca:68:c1:6f:53:
ef:75:c4:b2:71:06:f3:fa:b0:d6:85:4d:cc:2c:7b:06:f7:e2:
30:4a:7f:fb:c1:28:29:87:dc:70:62:0c:b5:58:d5:e7:bc:7d:
de:5f:51:88:c5:f5:59:e4:fc:67:1d:e6:df:3c:6c:3f:1e:c5:
5f:6c:db:50:1a:19:f4:72:41:60:7a:43:1f:3a:d3:28:fe:19:
84:69:86:3f:91:c1:11:9d:6d:7b:2b:7b:90:c3:f0:28:92:6b:
11:28:dd:85:ae:d4:d5:78:eb:5a:d2:ec:d0:b6:90:90:ba:ca:
c8:7c:42:b1:20:37:e9:99:20:f1:57:47:24:5d:5e:46:7e:69:
89:a1:02:52:e6:c8:62:e0:98:f3:ab:4b:1e:f1:67:57:18:01:
35:c4:95:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:38:44 2024 by rpki-client on console-ams.rpki-client.org