Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
File: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json)
Hash identifier: bkmrGJQhOghgazoibGnss3wOMQdicChWl8wbcQFSes8=
Subject key identifier: 9A:84:19:6E:10:E7:65:36:58:31:E7:E4:B1:61:A1:E8:1C:E8:38:DD
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial: 01938C9B7147220D857BFE7F554F0A6E0BFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
Manifest number: 1320
Signing time: Tue 03 Dec 2024 13:00:17 +0000
Manifest this update: Tue 03 Dec 2024 13:00:17 +0000
Manifest next update: Wed 04 Dec 2024 13:00:17 +0000
Files and hashes: 1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: gm09TctXx0FRzqGbNwQK2WaYtyQIKQzvO6WOTnP/F/c=)
2: eHGcoK_Q0gSUcSF-0LcDwiitdpA.roa (hash: 8J9hVRlx3VC3YTGF6qOb2UNpZrY6+WJwCVXEkAWa/1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:9b:71:47:22:0d:85:7b:fe:7f:55:4f:0a:6e:0b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Validity
Not Before: Dec 3 13:00:17 2024 GMT
Not After : Dec 4 13:00:17 2024 GMT
Subject: CN=9a84196e10e765365831e7e4b161a1e81ce838dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:a9:4d:54:ac:11:ba:28:1d:d1:5d:83:08:81:
08:d1:b2:47:4e:b7:fe:0b:06:56:23:1d:43:57:79:
97:67:80:de:76:e1:b1:6a:36:c9:6b:7d:c4:9e:84:
7d:68:33:f9:c5:ff:c8:79:da:cc:96:5b:2e:d7:7a:
c9:d3:c9:29:64:c0:b1:4e:73:5e:76:8d:fd:be:32:
0b:4b:eb:c7:23:0d:3d:63:32:1c:4d:e0:ad:ea:fa:
ef:18:3d:64:c9:7e:29:d2:2c:4d:95:00:5f:1b:e8:
bb:7d:ed:bb:ff:b9:1f:3b:49:8e:be:84:fe:4c:2d:
61:40:0e:1c:e6:bf:fc:d1:63:2c:68:6e:28:1f:bb:
44:7d:f7:91:3e:0f:89:4a:d3:c2:49:8e:bd:8e:4b:
c7:d7:fc:39:eb:47:6e:6d:d2:1d:19:ab:47:f2:d6:
1f:55:a0:35:be:04:c9:0e:46:72:d7:9d:80:03:b0:
52:9a:57:51:68:79:c7:27:f0:30:d2:4a:b9:3d:cb:
d5:2b:01:d5:42:42:19:88:7c:bf:cb:c5:a4:6d:53:
a2:c6:5d:53:da:e6:5b:48:89:07:ca:db:a1:c9:2d:
49:85:70:bb:93:1b:24:f5:15:9e:10:3f:43:c2:0e:
22:8d:ab:24:fd:db:90:d3:f8:3c:87:a4:5d:6a:cf:
1b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:84:19:6E:10:E7:65:36:58:31:E7:E4:B1:61:A1:E8:1C:E8:38:DD
X509v3 Authority Key Identifier:
keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:87:fb:71:f8:e4:1c:dc:c0:31:30:e5:0b:fb:3d:54:28:af:
3f:b7:31:c7:ce:8b:a2:38:75:99:0d:e9:a0:68:31:a3:a8:8f:
29:9b:1e:41:95:85:28:79:3b:5d:c0:2f:f5:66:c9:04:a7:a6:
8a:4c:75:ea:fb:76:7b:ce:23:48:8c:64:58:be:20:bc:66:74:
12:85:55:b8:d2:fd:b6:01:53:f4:38:eb:ce:f1:e5:7b:90:db:
7e:03:fb:5d:ed:29:89:43:c3:5e:36:ba:da:d3:a1:50:0c:a1:
37:3b:e2:8e:1b:df:7e:f9:48:92:f7:0b:72:5f:b6:98:97:64:
84:c8:96:27:b2:fd:0f:bd:49:5f:4c:cc:37:1c:c6:72:87:dd:
da:43:b7:e8:62:b5:94:61:a5:6a:b0:1d:6f:2f:75:49:bd:21:
4f:2d:9f:c8:cb:69:b8:d8:48:20:7c:58:46:4f:ec:d9:6c:23:
1e:32:82:78:3e:c3:0d:2a:98:57:b8:2b:cf:59:c0:d5:d8:ae:
5b:90:79:2a:76:db:a6:6c:81:55:b6:d6:90:3e:ac:08:c8:4e:
79:13:42:de:44:84:4c:92:87:ae:a5:2f:0f:34:dc:d9:ae:2e:
67:b1:e2:5b:37:55:6a:a9:82:22:4a:51:d0:a7:de:dc:92:0a:
05:53:99:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 14:42:51 2024 by rpki-client on console-fra.rpki-client.org