Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
File: mKUzMIdAu70he_adzpCz9UEghFc.mft (raw, json)
Hash identifier: CFInTTy3Q3J+6d/ce2ePUnEpvtGMcNPgcrWB3z4tACU=
Subject key identifier: 34:BC:70:6D:45:51:9B:F2:83:0B:C9:8B:FF:35:C1:43:5B:00:F5:2E
Authority key identifier: 98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
Certificate issuer: /CN=98a533308740bbbd217bf69dce90b3f541208457
Certificate serial: 019259FB39126A624E8FB3A08C8B3B471202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
Manifest number: 12F0
Signing time: Sat 05 Oct 2024 00:01:29 +0000
Manifest this update: Sat 05 Oct 2024 00:01:29 +0000
Manifest next update: Sun 06 Oct 2024 00:01:29 +0000
Files and hashes: 1: PJiX8lGaCywCSJg9obEeKowBMxc.roa (hash: iTlA9ES4WoSbt7R0h/pb8YI/UEBgKq5pg+m+D4nW0tY=)
2: QUETcbVecVuAGuX_LUV8Z0Cyw3s.roa (hash: piqAxhBMnadJrfXJRS0oUBgKIPRgBXXB6K46D898HbQ=)
3: mKUzMIdAu70he_adzpCz9UEghFc.crl (hash: +Eikc5+Wa3L0iZC+pnRxUUS/O1JrlUUInf9xiJ7ZGpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Oct 2024 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:59:fb:39:12:6a:62:4e:8f:b3:a0:8c:8b:3b:47:12:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a533308740bbbd217bf69dce90b3f541208457
Validity
Not Before: Oct 5 00:01:29 2024 GMT
Not After : Oct 6 00:01:29 2024 GMT
Subject: CN=34bc706d45519bf2830bc98bff35c1435b00f52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d1:e8:a2:27:de:a8:6b:4d:88:c7:14:a4:5c:
4b:47:bd:03:43:c1:80:cb:62:9d:8d:d2:ec:b5:b4:
29:86:7d:da:e9:18:08:e9:cd:38:3a:25:68:bf:b8:
41:df:fa:76:ed:c8:1a:07:60:1b:76:4c:b1:d8:b6:
33:87:c3:63:42:72:6b:72:26:38:1d:53:30:e2:7a:
20:91:33:ab:20:da:ed:ea:11:c1:31:96:20:4e:59:
a0:50:75:f1:f5:e7:82:9d:57:61:e4:d5:cc:7b:10:
77:6b:65:74:f5:f6:62:f6:8e:ff:32:49:67:b6:67:
24:ff:c5:fc:4b:07:63:0f:19:ec:e4:51:0f:e7:f8:
ad:84:52:f1:4f:17:78:62:34:47:19:12:04:28:7c:
cd:f5:66:71:78:70:08:f0:96:f2:a3:cd:03:73:9d:
3f:ce:26:66:c4:07:19:ff:ee:d6:00:74:ef:a6:40:
81:e4:10:ef:f3:a6:36:6f:c4:97:ad:d0:52:c5:2b:
df:94:84:31:6a:fc:52:f9:bd:5a:74:eb:0c:3a:15:
5b:70:96:1f:16:79:2f:e3:05:0b:02:37:64:52:16:
34:9f:d1:8e:a8:b5:dd:90:40:e2:05:cb:3b:e2:86:
55:df:0c:8e:5b:73:1e:b4:a0:67:39:c6:a8:79:3d:
01:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:BC:70:6D:45:51:9B:F2:83:0B:C9:8B:FF:35:C1:43:5B:00:F5:2E
X509v3 Authority Key Identifier:
keyid:98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:06:1d:91:36:59:69:d8:f1:5e:29:81:f8:68:e7:0e:ad:1a:
28:71:e7:ab:73:ba:7e:05:04:e2:dc:23:4a:da:bd:19:0c:01:
4c:c4:7b:49:e4:09:a6:82:61:6c:44:3b:59:a6:16:24:58:cb:
ba:be:32:74:c9:0d:9b:0c:dd:7d:13:0f:ed:9c:96:f7:46:1c:
ee:61:83:dc:aa:0e:01:c4:f2:d8:a1:3d:e5:31:8f:c4:66:ec:
42:09:c2:14:95:76:7e:19:b9:09:a6:47:46:6f:95:f5:98:b2:
23:6b:74:51:99:92:a3:d0:13:34:ba:a3:5c:7a:f1:48:0a:49:
ba:70:24:5f:39:de:36:b7:a6:74:1e:98:b2:9a:40:84:3c:c5:
6a:3c:18:9f:c4:91:41:5b:1c:80:d7:57:0c:19:61:2f:83:5d:
16:c1:9c:a2:02:7a:00:0b:ea:16:fe:f3:6d:02:43:47:44:ea:
ed:5f:8e:b4:6c:c4:d8:10:89:71:3f:33:6d:cf:ab:c6:26:6b:
55:bf:2e:5a:05:c6:55:9a:2b:ab:94:2b:05:43:78:6b:25:f9:
9c:e1:a8:47:13:66:32:93:ad:79:6b:4d:04:3f:2e:ab:32:28:
c6:9f:53:a8:a2:83:6f:06:45:80:69:d0:c7:65:2c:1f:58:da:
8c:ec:8d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 5 03:59:48 2024 by rpki-client on console-ams.rpki-client.org