Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
File: 8HH00RnQt0-2bjen74eNRJ1U3cg.mft (raw, json)
Hash identifier: d6H4/7gicB669rpFUFB+qd1KyIV9VD0/vjx1fUTvrwk=
Subject key identifier: BA:FE:B6:7D:91:80:52:7E:70:D9:1F:5F:8A:54:7C:21:AC:7A:29:04
Authority key identifier: F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
Certificate issuer: /CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Certificate serial: 019364B23852DDC7C45864242F998741AC27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
Manifest number: 137A
Signing time: Mon 25 Nov 2024 19:00:21 +0000
Manifest this update: Mon 25 Nov 2024 19:00:21 +0000
Manifest next update: Tue 26 Nov 2024 19:00:21 +0000
Files and hashes: 1: 1G-n2HriGdK8DVRt5tto0QlD1WE.roa (hash: AhgqwBGfEntxffnAqfhjJZ8RuM43VAbjnNCbM3v8xek=)
2: 8HH00RnQt0-2bjen74eNRJ1U3cg.crl (hash: 8469YtaBgRHCtwOqKtofTA77KiN243eIlnCZ98m/QS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:b2:38:52:dd:c7:c4:58:64:24:2f:99:87:41:ac:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Validity
Not Before: Nov 25 19:00:21 2024 GMT
Not After : Nov 26 19:00:21 2024 GMT
Subject: CN=bafeb67d9180527e70d91f5f8a547c21ac7a2904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:37:0e:38:cd:83:33:a4:f4:fe:77:19:3d:3d:
22:17:d1:01:26:d6:05:27:75:9d:ae:9b:bc:75:6d:
75:b6:93:15:b3:6d:a6:98:61:96:df:4c:a7:2d:a3:
21:d0:6b:ae:40:21:90:4c:5a:1d:3f:66:15:63:57:
3b:87:f0:1a:db:61:11:e2:27:12:10:1c:bf:75:9d:
e6:e1:47:9a:9f:e2:40:34:4f:ee:93:a3:f4:3d:dd:
69:db:0e:51:cc:e1:63:22:c5:f2:f5:88:fe:72:1e:
ae:c5:48:fa:8f:0c:24:56:0b:ec:40:90:69:42:30:
04:bc:21:00:ca:35:3a:5d:37:4b:e0:20:3d:7d:5b:
ea:78:1b:f0:d5:fd:4f:90:70:c2:f5:73:25:c2:bf:
14:70:23:45:45:b6:5f:a4:c7:bc:e7:b6:23:37:c4:
b1:e7:fa:69:9e:57:e6:65:c3:f1:a4:63:12:d8:b4:
1e:a3:70:bb:c6:65:a1:c4:8b:e7:27:54:25:90:fc:
bd:b4:c8:bc:8b:c6:69:65:60:92:6f:46:d1:dd:b9:
0e:a9:42:f6:93:46:dc:bb:63:1c:6b:50:6c:7d:d3:
d6:30:a8:ee:40:ff:57:d0:0b:1f:58:7d:57:32:89:
b2:08:89:e8:5e:0a:64:cf:05:84:46:d7:d1:64:f9:
b7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:FE:B6:7D:91:80:52:7E:70:D9:1F:5F:8A:54:7C:21:AC:7A:29:04
X509v3 Authority Key Identifier:
keyid:F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:1e:69:9c:ae:d3:58:e9:ae:c0:a3:6c:06:3c:c7:41:59:a8:
58:7c:2f:97:93:a1:de:06:5d:e3:b3:a8:d6:a6:01:fe:da:69:
fd:9e:80:02:4b:13:d4:d6:55:e5:ea:93:d5:70:70:e0:3f:49:
57:b3:01:41:ee:2f:09:90:75:15:26:bc:d9:a9:c3:17:02:c3:
5a:86:a6:17:78:3d:49:4a:a6:cf:ec:15:d8:72:ef:96:1b:c8:
fc:a6:6f:29:ca:d6:5a:34:d8:2d:41:46:98:ee:50:c8:26:02:
26:27:c6:f1:7e:2b:9e:2a:92:fd:10:43:7f:9c:8a:52:74:22:
d6:3f:f1:c4:99:db:c6:3c:c9:21:92:af:a2:8d:83:17:a4:f5:
c4:0a:06:a4:8d:9c:ee:fa:8d:cd:3e:82:a4:25:44:c9:ef:48:
15:7a:2a:1b:cc:8c:26:83:e5:e3:2c:b0:5f:51:cc:ca:e7:e1:
18:c8:3c:36:26:35:ce:9d:36:52:8f:7c:2f:81:64:b8:cd:fb:
54:fd:42:d7:78:13:0e:01:80:ff:cc:fc:c8:61:75:a3:28:80:
ec:73:54:9e:1d:c3:7c:70:70:69:7a:4f:10:bb:bf:d3:2c:6c:
23:08:8e:c0:2f:20:a2:a8:91:cb:5a:c5:74:dc:fd:f9:73:7a:
ad:cf:79:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:36:44 2024 by rpki-client on console-ams.rpki-client.org