Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
File: bhWkM20vXhvWBzfelXlomSp0cOk.mft (raw, json)
Hash identifier: m13WzQagehoMr7TUz7VkOb07ni+EDV3fRKZXPiqEy9Y=
Subject key identifier: 79:3A:A0:90:44:94:C4:48:89:80:CD:68:AB:29:D9:1C:73:8F:B8:7E
Authority key identifier: 6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
Certificate issuer: /CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Certificate serial: 0193549BBF7A78078443F06C30E206F0BC3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
Manifest number: 1370
Signing time: Fri 22 Nov 2024 16:01:53 +0000
Manifest this update: Fri 22 Nov 2024 16:01:53 +0000
Manifest next update: Sat 23 Nov 2024 16:01:53 +0000
Files and hashes: 1: KFFA_gPkDLwQTldVO5wkU8JXzig.roa (hash: LpzWagRlyPLbV0aIFWEtnWhixb71IpWsIFreOHJ4OiA=)
2: bhWkM20vXhvWBzfelXlomSp0cOk.crl (hash: zgicnaFn9Kcpv+e+CppohJ67J3F2Vojq7m5kJHjjhFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:bf:7a:78:07:84:43:f0:6c:30:e2:06:f0:bc:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Validity
Not Before: Nov 22 16:01:53 2024 GMT
Not After : Nov 23 16:01:53 2024 GMT
Subject: CN=793aa0904494c4488980cd68ab29d91c738fb87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:51:60:47:56:f2:cb:97:d1:47:32:45:7a:ed:
6c:c4:35:82:bc:1d:05:b3:b4:51:73:73:11:78:36:
5d:ec:98:ef:b2:32:e0:c8:23:ae:b1:b0:44:51:53:
fb:f6:55:ff:c6:5b:23:62:4d:6a:4a:7e:4b:a7:3b:
77:b8:27:f9:ce:82:cc:89:ec:88:7b:f9:1e:44:d9:
92:b4:72:fa:06:ef:de:8f:1b:dc:e2:43:72:10:63:
4d:b6:a2:d4:55:a6:62:77:c8:78:ea:13:c5:a5:28:
0b:e0:09:ad:87:79:9e:54:1c:9b:13:57:58:7a:5e:
30:b6:5d:49:8b:ba:18:85:d6:79:22:01:e8:d4:20:
43:fd:57:6f:08:42:c1:88:c5:f8:bd:ea:07:56:f3:
64:44:b8:10:18:a2:66:b3:74:48:74:58:61:f6:21:
8f:7b:a2:99:d5:81:33:4b:0c:d8:d4:dc:73:0f:de:
49:72:17:bc:57:c3:ba:92:ca:22:7d:15:b9:6f:5e:
16:74:19:58:94:21:95:7f:e5:9f:89:72:7e:fc:3d:
a7:6a:74:cf:61:8b:c8:1a:81:64:0e:7a:88:76:b9:
3a:61:94:7f:7f:29:c6:6c:8f:4b:75:32:68:62:51:
63:07:09:68:a4:fb:36:e7:ae:b2:3b:9c:0e:76:6b:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:3A:A0:90:44:94:C4:48:89:80:CD:68:AB:29:D9:1C:73:8F:B8:7E
X509v3 Authority Key Identifier:
keyid:6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c2:f1:0a:85:70:86:8a:bf:ef:fc:4d:f8:88:ee:b5:37:95:
7c:4c:d1:47:a0:d6:59:d1:1f:ea:cc:25:e5:5c:bf:9d:0f:20:
6a:d9:a9:83:be:ca:c6:6f:d5:2c:6b:43:70:53:59:d7:a0:da:
52:7d:31:ba:c6:5b:30:be:1c:e1:7e:a3:ad:aa:92:4d:6b:a9:
c6:73:20:2b:37:27:96:54:12:c4:9b:e5:89:44:3b:ed:bc:ed:
ee:a9:12:35:95:52:31:f3:5f:a5:9e:50:45:4d:a9:49:9b:16:
7e:2a:4a:91:2b:09:23:62:28:f0:4a:14:fd:9b:21:82:92:4c:
fb:f3:77:a1:27:c8:c8:ea:89:78:ed:a7:fb:c2:26:c0:fe:4b:
92:42:76:86:1a:91:15:a1:49:d0:b0:51:81:a2:d7:f5:d7:c4:
fc:96:12:75:43:d9:d0:50:b6:42:25:2c:69:75:ac:91:6c:ba:
bb:22:a6:8d:63:a3:12:91:7c:54:7d:69:a9:ab:ad:3a:a0:a9:
9e:e9:57:11:10:e9:24:35:b4:c8:b5:86:b7:ce:29:93:e7:d3:
fb:55:8d:ae:e1:80:ab:91:91:54:a8:51:b3:13:3c:13:41:1f:
56:07:7d:fc:a3:26:32:5e:cc:bd:2d:bf:8f:ec:a1:61:fc:ea:
fe:bb:b8:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:09:45 2024 by rpki-client on console-ams.rpki-client.org