Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
File: hRwoH1drQ6HKuVPJIEHOlZknDHg.mft (raw, json)
Hash identifier: XCdhPja1kIBcFgbhckFTKmEIX5KB3AHT5XcByeUgEYo=
Subject key identifier: A0:D5:74:D9:C6:80:7E:5D:73:7A:D0:45:09:07:8D:3D:5D:91:8C:A3
Authority key identifier: 85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78
Certificate issuer: /CN=851c281f576b43a1cab953c92041ce9599270c78
Certificate serial: 01938B52312EB5CA74E57BE3A1E6BF2D6AA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
Manifest number: 1211
Signing time: Tue 03 Dec 2024 07:00:39 +0000
Manifest this update: Tue 03 Dec 2024 07:00:39 +0000
Manifest next update: Wed 04 Dec 2024 07:00:39 +0000
Files and hashes: 1: NAamPDal-rVrjA1r9N5wbsERf_g.roa (hash: HG5fuPvi1F4hgTZKEOUt3IthR4taUqyfwJw7AujO8A8=)
2: hRwoH1drQ6HKuVPJIEHOlZknDHg.crl (hash: V/h0kF/86HTJAHlWnYpS8AR9Hupibtve4syvE/PwAGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 07:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8b:52:31:2e:b5:ca:74:e5:7b:e3:a1:e6:bf:2d:6a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851c281f576b43a1cab953c92041ce9599270c78
Validity
Not Before: Dec 3 07:00:39 2024 GMT
Not After : Dec 4 07:00:39 2024 GMT
Subject: CN=a0d574d9c6807e5d737ad04509078d3d5d918ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4d:f3:d2:43:93:24:30:bb:1c:ba:9a:30:06:
18:53:25:cb:13:b8:44:9e:ec:12:d0:87:2c:3f:82:
1a:09:7d:33:54:be:59:ef:3a:4f:0e:63:f7:9a:26:
98:1b:03:0c:05:ae:6b:5e:88:90:33:48:f2:c1:08:
2c:6f:67:ad:8c:67:d7:0e:7c:c7:b2:71:55:96:bc:
e9:92:53:a6:a0:9f:c4:d4:97:9b:7d:ae:81:fb:20:
3f:15:a3:32:f8:de:1c:99:c3:90:ad:f3:ff:2a:ef:
9f:18:e4:2a:35:3b:6b:13:c9:4d:65:2e:e6:1b:ab:
08:b3:d6:99:83:26:72:39:ec:0d:13:16:47:ec:ca:
c9:6e:c3:1b:23:11:33:44:9c:d7:27:ed:4e:22:3a:
ce:55:78:fc:f5:e6:d3:49:61:9e:48:bb:a7:d1:99:
10:bc:42:63:3e:cf:05:d7:6e:5e:1c:af:b4:eb:a8:
2f:88:9a:0a:5d:b4:4b:b6:7a:9d:18:2c:72:53:00:
23:63:74:68:89:d0:54:29:36:f7:16:14:85:5f:f3:
75:c5:e0:41:8c:44:bd:c1:f3:50:dc:7d:07:cb:51:
4c:af:76:88:7a:a9:4d:a0:3b:9b:f5:ac:20:a9:03:
40:03:67:db:2a:e0:6b:e5:2a:42:cd:b0:fc:ed:13:
81:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D5:74:D9:C6:80:7E:5D:73:7A:D0:45:09:07:8D:3D:5D:91:8C:A3
X509v3 Authority Key Identifier:
keyid:85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:be:65:01:e8:65:54:c5:04:e1:82:c3:6c:e7:52:1e:4f:44:
ce:3c:51:55:7b:14:b1:65:a3:0b:0f:e4:20:73:e4:46:bd:09:
73:e4:d8:f0:20:82:ef:14:7d:bf:8b:01:1c:8f:7e:b4:20:02:
ce:29:31:91:a5:90:ee:03:05:7a:f3:50:0a:c6:f3:87:62:40:
6d:b9:cd:22:a8:43:ec:db:03:ef:ab:53:51:ec:e7:91:67:65:
a2:15:d5:47:b4:f4:be:59:a5:08:4e:c5:75:22:1c:09:d8:4d:
0d:67:d0:86:cc:63:90:6b:c8:66:4e:07:f7:a9:6e:c1:2b:76:
2d:07:98:a8:55:db:5c:b6:2d:d6:e7:1a:41:81:79:74:72:cd:
82:ae:c9:bb:c6:68:1b:22:e2:47:c4:ea:ec:cb:81:4f:44:4d:
74:2f:1b:38:c6:bc:b0:08:29:4a:09:7c:08:a3:22:f6:9c:cd:
3a:27:5d:31:e2:94:dc:3c:f3:43:0f:76:f1:88:d3:53:44:27:
0a:4e:73:5d:d4:a5:8e:95:b5:2f:a0:bf:d4:dd:89:c4:73:7d:
fa:d8:df:8d:dd:c7:5a:c3:36:aa:26:e7:0a:05:40:8d:95:9e:
60:64:c2:0b:39:31:e9:b8:70:c6:0e:dc:96:ca:81:a4:30:6f:
d2:a0:7f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 18:14:29 2024 by rpki-client on console-fra.rpki-client.org