Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: BMQFxOggX7GIh/JEhdS8321GdmEgEYGP/iDPhL3Hd1g=
Subject key identifier: B1:C7:83:B8:C1:91:9C:6A:8A:70:F9:C9:DA:B9:FB:05:14:DE:0A:8B
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 01935A6745BFB104049ED61338953301B861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 1306
Signing time: Sat 23 Nov 2024 19:02:17 +0000
Manifest this update: Sat 23 Nov 2024 19:02:17 +0000
Manifest next update: Sun 24 Nov 2024 19:02:17 +0000
Files and hashes: 1: GQrdkxCu8VAJvKWuR7jKOI8uXsw.roa (hash: Z6qm3aQmcT+hiytkD/Jsar7vvCj2QBXq8W256Wc9GFo=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: /XCUmFPk+Vwsn689a//+molvjjz+IuijWhoDVWKUxGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 19:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5a:67:45:bf:b1:04:04:9e:d6:13:38:95:33:01:b8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Nov 23 19:02:17 2024 GMT
Not After : Nov 24 19:02:17 2024 GMT
Subject: CN=b1c783b8c1919c6a8a70f9c9dab9fb0514de0a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:93:d5:55:43:48:38:3b:6a:6d:98:9d:f3:c0:
56:d3:a3:df:45:2c:1d:22:7d:aa:ed:81:c1:1d:ba:
ac:5d:ef:3e:4d:a5:3a:0b:c0:a7:18:1b:e3:9d:9c:
17:ac:85:e5:02:03:8f:11:04:40:fd:8d:f9:db:d3:
b0:b2:22:05:27:63:09:99:08:e6:31:09:c8:ae:f3:
3f:e8:0e:c8:ca:63:82:b3:ad:a1:9f:99:f3:b1:1a:
5c:b8:6d:5a:a9:12:83:16:f1:ac:3c:dc:a6:23:44:
9f:3e:bf:30:86:c3:72:35:0f:2e:71:80:83:4d:4e:
f3:39:be:7d:e5:d1:ae:05:8d:88:97:2f:02:aa:ad:
67:81:fa:93:71:26:1d:ce:6c:06:4e:37:e3:43:d6:
c9:92:ad:28:03:ec:d7:8d:aa:87:7a:7e:8f:b4:53:
2f:b6:ed:e0:3a:15:57:66:18:e0:b8:e8:03:ac:c6:
83:57:a7:75:d7:4c:67:c5:0c:27:a4:c3:69:57:28:
1b:fd:e9:12:6d:30:af:42:a3:02:96:a5:3e:2b:e1:
ba:de:1a:9b:3a:1a:63:72:6e:23:a3:78:bf:72:ec:
2c:c8:c7:fd:f2:36:96:e4:76:c7:9b:bc:2e:c3:b5:
19:c2:7f:e8:ca:9a:19:54:08:cd:07:54:52:f1:55:
2e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C7:83:B8:C1:91:9C:6A:8A:70:F9:C9:DA:B9:FB:05:14:DE:0A:8B
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:c1:99:11:96:69:67:71:f4:12:53:3d:04:32:f4:1d:f6:07:
8a:9a:e4:26:ef:db:a2:5c:a8:be:4f:a0:44:2e:35:db:4e:a4:
cd:6e:8f:5f:58:8f:a7:64:5e:4a:69:14:f9:0d:89:0a:ce:22:
dd:83:f1:99:56:93:aa:5c:4c:32:ae:78:8b:a6:c7:68:d3:b7:
b0:dd:28:b2:53:5f:43:15:6a:79:36:69:a6:d1:d1:97:d8:18:
52:4f:ff:1e:e3:4c:10:a5:41:83:e4:ce:8b:6f:7e:3f:90:d6:
ce:a8:c2:54:4b:41:19:df:6a:4f:b4:29:08:2e:c0:ea:76:20:
a9:64:74:dc:07:94:f7:69:d7:f3:f5:ed:a2:33:32:5e:58:87:
e3:0e:a6:43:f2:66:77:00:81:e6:71:e7:76:81:36:5f:a0:6c:
bb:47:d6:77:44:0a:23:17:5f:18:3d:d9:14:e2:e7:5d:9c:22:
50:08:03:83:86:48:40:ae:df:c3:11:f6:75:cf:f1:a4:10:6a:
b4:a8:2c:ed:31:95:3b:66:9b:0d:dd:6e:d5:a9:20:9a:d4:49:
97:dd:93:92:e3:fe:7c:94:28:39:a2:6d:94:3d:a2:17:4b:2d:
74:bc:44:05:50:15:65:6a:2f:5a:94:ef:a4:18:ab:db:42:88:
a9:ed:c4:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:10:22 2024 by rpki-client on console-fra.rpki-client.org