Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
File: HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft (raw, json)
Hash identifier: RWHvoUo8+4V8EtWlZ5kVzQuZY60gIOlJ/Xq17Oua5yw=
Subject key identifier: 98:6D:C5:01:C9:E6:0A:62:57:F4:1A:C1:C1:BD:6B:E8:06:A4:5B:B9
Authority key identifier: 1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
Certificate issuer: /CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Certificate serial: 01935952ED431B2FCD9EF6F9982FAC826CDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
Manifest number: 08CC
Signing time: Sat 23 Nov 2024 14:00:27 +0000
Manifest this update: Sat 23 Nov 2024 14:00:27 +0000
Manifest next update: Sun 24 Nov 2024 14:00:27 +0000
Files and hashes: 1: HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl (hash: bIc1N8VETUxP21Nl8Z+EzywARhL7tXOPegS/WiOvMoY=)
2: ZG0HUOzad5KiJiqTf9pYkDFYO_I.roa (hash: E4TiSXCkXS1SRFzIcZTrg5hDQNcvyOf3H2WFmzx7S7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:52:ed:43:1b:2f:cd:9e:f6:f9:98:2f:ac:82:6c:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Validity
Not Before: Nov 23 14:00:27 2024 GMT
Not After : Nov 24 14:00:27 2024 GMT
Subject: CN=986dc501c9e60a6257f41ac1c1bd6be806a45bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b3:be:78:f9:cd:cd:c8:22:fd:d6:98:bb:6c:
8a:00:0a:45:13:67:31:9f:bb:23:a3:fb:3d:52:91:
eb:87:09:ec:37:3d:7b:50:a1:ed:f3:41:80:c4:76:
54:6b:b5:c7:ae:95:15:cc:08:bd:2a:56:dd:a5:0b:
42:16:d4:6a:a8:da:d0:75:d1:00:43:7b:2e:3f:d8:
dd:23:7b:a4:82:e1:01:36:9a:18:b7:f9:2a:e5:bd:
55:ce:82:83:42:76:61:4d:ec:47:aa:16:75:53:1f:
54:84:d0:ca:db:d9:cb:ad:cc:3c:4d:fc:b7:0a:24:
d6:6b:5b:aa:70:d3:72:4f:e0:0e:ad:84:ff:86:c9:
4d:20:13:cf:8f:74:f2:ad:e9:a3:49:65:0c:68:1b:
09:92:da:7c:ec:e4:d3:66:07:bd:94:8d:a0:8e:44:
9f:73:fd:aa:f5:17:9e:08:09:33:f6:4f:96:d7:10:
c8:e8:e7:56:0d:cf:a6:bb:03:be:d6:ee:84:87:61:
8c:5b:71:b5:d1:b1:26:57:b1:08:bf:85:45:49:72:
8b:c8:11:ad:c9:84:8d:d7:33:0c:e2:1e:1e:a2:b3:
a4:e0:37:a4:99:52:ee:8c:f2:f2:4c:2a:62:1b:66:
e6:e8:47:e0:01:af:fa:46:6c:74:ac:f6:bd:37:4d:
dc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6D:C5:01:C9:E6:0A:62:57:F4:1A:C1:C1:BD:6B:E8:06:A4:5B:B9
X509v3 Authority Key Identifier:
keyid:1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:0c:11:49:ee:fa:c9:29:37:eb:95:17:27:12:5e:7d:55:04:
37:d5:9d:db:fa:e1:47:7b:94:ed:a6:7a:4a:ee:23:07:1e:b2:
aa:97:e4:79:8d:1d:d9:24:77:d6:a5:78:0d:81:31:e2:2b:99:
51:c2:fe:a3:70:6c:e7:42:17:7a:4b:4a:5c:9a:5a:5a:35:09:
2d:19:13:98:a1:d1:80:d7:2c:02:8d:d8:71:88:ef:56:88:a5:
92:09:9c:d4:08:93:8c:e2:86:e3:ca:f0:d9:28:5b:f3:50:8b:
92:55:fc:98:b4:78:a0:4d:3a:5f:b3:56:bb:88:2b:1b:57:28:
9b:d2:e9:b0:86:f2:8f:e7:d7:be:9e:e1:b0:2a:f3:f5:b6:bf:
3c:ab:63:61:60:7e:26:1d:39:78:b5:ab:36:a4:a8:0d:75:bf:
d3:10:dd:b9:a1:63:a0:f7:85:a9:ae:24:48:a7:b4:85:dd:bd:
b7:07:fa:c8:39:22:e4:65:3e:b3:b5:ad:9e:b7:20:a5:62:8b:
f2:7e:48:e9:4d:a3:a3:e8:98:20:1b:81:5d:e5:15:a5:ac:1d:
49:ec:cd:d5:a2:ef:f8:35:3f:ad:20:c3:6f:dd:f7:02:79:6f:
97:0a:5f:ab:85:6c:2f:94:4d:18:fd:60:d3:13:dd:36:75:0a:
8b:da:59:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 17:12:11 2024 by rpki-client on console-ams.rpki-client.org