Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: h/5Y3cSdnhIZSy84kkCRG5G2hkQ2A9zVWmPUdLe6FgA=
Subject key identifier: E3:EC:72:51:29:1A:7F:C0:C7:FF:E0:A7:89:CB:70:63:5B:8D:B7:FF
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019356F67F723470B35F4F805B7ED56867CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 03:00:15 +0000
Manifest this update: Sat 23 Nov 2024 03:00:15 +0000
Manifest next update: Sun 24 Nov 2024 03:00:15 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: I+kcLG/Zrb3Y7Hb6XjtHjiCMY2gvX8J3DEyMJlmoMtM=)
2: E7xku3mxea4E7tDiPaH8IhNND4U.roa (hash: fCt795Ad8rD79d8StSBgkACtHH3FxJ0eL/mqLg3Ov2Y=)
3: h8XPCEl3Vo4TPJ9-ZN_Uy7RRsW8.roa (hash: BEY557N+kqWrh68Nk7TPzU6/hYu4ljswskjP4iClE/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:7f:72:34:70:b3:5f:4f:80:5b:7e:d5:68:67:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Nov 23 03:00:15 2024 GMT
Not After : Nov 24 03:00:15 2024 GMT
Subject: CN=e3ec7251291a7fc0c7ffe0a789cb70635b8db7ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5a:70:1a:8e:b0:74:3d:4f:7b:71:40:b1:11:
53:17:39:8c:76:b8:a6:e3:b9:34:30:32:1d:26:7c:
7f:c1:89:3f:df:c8:d2:5a:03:83:31:1d:69:1b:50:
fe:00:0d:60:73:8b:74:38:81:e6:64:ef:6b:90:aa:
d7:ec:df:c3:1c:26:c1:58:98:4e:fe:e7:f5:e8:53:
64:1a:e6:ad:7a:ef:40:43:f1:46:ea:39:5f:4d:43:
95:7a:97:33:5b:0c:7a:6e:fa:8f:83:71:06:21:b1:
c9:f1:26:ed:35:74:a6:d1:31:23:bc:c9:88:6b:c8:
ec:bd:ba:04:a4:82:da:10:1d:53:bb:27:2d:46:d1:
e7:ee:c5:ca:8c:f6:20:11:0b:fc:3a:14:97:84:ac:
d5:c7:da:24:23:0e:66:c4:51:d6:a1:f8:2d:30:d3:
0b:2a:42:80:c4:ec:6e:8b:95:67:3b:b5:68:87:d1:
29:8d:75:2f:7e:46:66:60:2e:b7:53:87:50:2a:a4:
61:3b:b6:64:24:8b:47:93:46:b4:d8:a1:07:bd:7f:
9f:fd:29:5f:09:09:4f:ab:b7:8c:38:43:ef:7a:91:
40:82:a7:67:6c:73:39:0d:7d:10:d3:c2:2e:2a:0a:
0f:db:8c:46:75:ea:ac:c5:10:44:50:f3:36:70:95:
dd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:EC:72:51:29:1A:7F:C0:C7:FF:E0:A7:89:CB:70:63:5B:8D:B7:FF
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:2c:6f:e1:0f:ab:8d:ca:fc:db:d9:d6:66:06:11:53:3b:0d:
68:1c:36:4c:a0:8c:f5:f7:14:cc:13:31:b3:5e:95:61:d8:13:
b8:ac:9c:34:ce:a9:ca:2d:11:18:75:65:0f:c4:f8:f7:6a:96:
59:e1:42:d7:d1:4c:c6:59:96:13:d9:ec:86:bf:0a:7c:ee:23:
6e:0d:a2:4d:93:eb:cc:9d:26:5b:97:8d:19:28:5b:50:c7:b0:
f0:1c:b0:5f:73:0d:ad:0d:05:7f:24:18:a5:6e:0d:d0:62:fd:
66:20:cc:ee:b6:40:b2:12:3f:a7:9d:35:f3:f4:ba:ae:d2:df:
75:09:64:28:70:76:fe:cb:fe:4a:cd:de:82:25:47:f9:7d:cc:
40:a5:f7:30:81:0d:5b:12:d9:2b:6f:bf:38:19:f4:d8:21:90:
ec:1d:81:29:8f:bd:bf:84:d1:a2:4e:3f:2b:52:d8:2b:c0:6b:
56:2a:0c:14:57:5d:9f:df:8f:02:49:19:d5:98:f3:62:43:bf:
a8:91:53:50:3d:a3:61:c8:46:e3:f4:38:bd:2b:3e:4f:9e:f9:
ea:4a:e8:18:b7:91:17:4e:36:e5:a2:d4:d4:04:2c:8e:78:cc:
3d:cb:0b:0b:54:e3:6f:e0:98:2d:bd:aa:8c:12:22:20:ba:40:
68:13:62:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:43:40 2024 by rpki-client on console-ams.rpki-client.org