Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
File: tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft (raw, json)
Hash identifier: +wJCxSYik1NkjuhLHNsa4sZGNiaz7CQRR59bdVeSbFY=
Subject key identifier: 67:B8:03:CF:05:7D:6B:CA:1B:C3:F3:4D:37:06:A1:F6:E9:AE:FB:C8
Authority key identifier: B4:63:20:18:80:98:52:0C:36:62:77:F7:49:A4:F7:7A:1D:44:44:39
Certificate issuer: /CN=b46320188098520c366277f749a4f77a1d444439
Certificate serial: 0193568B14F247E16B00C4B4E1151ABDA251
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 01:02:55 +0000
Manifest this update: Sat 23 Nov 2024 01:02:55 +0000
Manifest next update: Sun 24 Nov 2024 01:02:55 +0000
Files and hashes: 1: hEIgD18GJdmgS6J8gOsgNtqzYug.roa (hash: IzxKFHWGq1NgzXol8F+KDfmDx88kRTpP8Dy57p6P0BA=)
2: tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl (hash: beV4sbzbMJHknqfIhWwesiw2GeJ6G+HRazVCq6mna+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8b:14:f2:47:e1:6b:00:c4:b4:e1:15:1a:bd:a2:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b46320188098520c366277f749a4f77a1d444439
Validity
Not Before: Nov 23 01:02:55 2024 GMT
Not After : Nov 24 01:02:55 2024 GMT
Subject: CN=67b803cf057d6bca1bc3f34d3706a1f6e9aefbc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e1:72:f3:76:3a:c3:b3:d6:b9:fd:72:5a:db:
16:6d:a9:2b:1c:50:3a:bc:47:fb:ad:99:9f:28:62:
c3:b3:f0:5a:e5:ca:9a:af:1a:e3:91:74:bf:d3:2a:
8d:a9:30:d8:99:58:b6:9e:0b:82:0a:1f:f6:bb:04:
f4:df:b8:cb:00:30:4e:11:97:68:1d:38:dc:26:8e:
9a:05:57:c8:b7:81:f0:82:c3:2e:52:31:de:a0:e5:
8f:3f:07:46:b0:e4:8f:d7:85:56:31:6e:8e:60:d2:
e9:cb:3e:1c:0a:5a:a4:18:ce:17:fb:37:4b:71:66:
f5:6e:29:8e:14:21:fa:02:19:e2:53:dc:a5:40:74:
b6:c8:76:d4:28:26:cf:c0:1c:1f:8e:50:39:96:07:
55:2d:ae:ab:ee:4d:1a:3a:0c:58:6e:b9:a4:be:37:
bb:2b:fe:5b:9b:a7:aa:19:13:27:50:78:76:7e:c3:
9f:7c:d8:45:ef:3c:be:76:df:42:69:b0:14:b8:5b:
e4:6c:b2:d2:24:02:b8:5b:b6:c1:89:72:2e:40:6b:
74:ae:08:7c:db:42:6d:1a:a1:a5:b6:29:6d:8a:a0:
42:65:ac:c7:83:f5:ba:d9:f9:70:0e:d9:dc:46:ea:
e5:ad:6e:13:e4:76:52:aa:5f:7d:ea:ba:45:6d:42:
92:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B8:03:CF:05:7D:6B:CA:1B:C3:F3:4D:37:06:A1:F6:E9:AE:FB:C8
X509v3 Authority Key Identifier:
keyid:B4:63:20:18:80:98:52:0C:36:62:77:F7:49:A4:F7:7A:1D:44:44:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:04:af:19:d1:9d:b7:20:a5:47:2f:e8:b2:89:43:7e:d1:7c:
7d:dd:d9:e8:bb:1c:38:df:d1:2a:d1:b7:6f:19:54:c2:65:12:
08:bb:35:b9:87:48:7d:22:c3:38:c1:6f:2e:e2:9d:5a:22:ee:
90:ad:d9:54:cd:d2:42:4a:ef:8e:db:dd:6b:3f:4c:3f:00:77:
59:ee:da:7c:16:0f:d2:b6:fb:ca:f8:ff:51:25:2b:23:f7:68:
9f:5a:1c:94:c3:de:e4:ae:21:d5:19:85:cb:7b:7b:71:78:5c:
1f:1b:d3:d9:e1:42:6e:e7:5e:79:14:79:dd:cd:97:d8:ee:af:
b5:c9:4a:65:c6:24:c2:21:cf:35:9e:61:54:26:6e:b6:07:39:
2e:67:f9:ed:54:52:b7:d9:28:7a:b8:24:d5:87:2a:6b:f0:f0:
e2:0f:f1:c9:23:d6:5c:4a:bd:f5:0c:fc:1c:05:03:51:c2:f6:
6c:59:67:e8:c3:7d:a1:4d:6f:11:9a:9f:a0:28:97:74:32:1a:
a6:9f:d4:ab:70:68:78:51:36:43:0c:d5:42:88:e9:c0:de:c6:
b3:99:0c:e4:98:46:7f:5e:2c:c5:23:66:69:df:9d:9a:7e:47:
29:cb:99:d9:e5:9d:53:a2:90:f2:d3:fb:1f:ee:f5:c0:c1:a9:
5a:f5:09:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:57:31 2024 by rpki-client on console-fra.rpki-client.org