Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
File: 0HCWDtmg2hybfiRX6ry2YEeNCK4.mft (raw, json)
Hash identifier: KNa2Xo8XacAFN/fj0RIauVK1pUEL9ySoWlxEPTwUg7k=
Subject key identifier: DC:91:CC:01:D5:B4:90:B6:CA:D8:5E:30:8E:0C:D3:AE:A1:50:87:C6
Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Certificate serial: 0193549B81399F939A0CACC89E48CD98F9D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
Manifest number: 0450
Signing time: Fri 22 Nov 2024 16:01:37 +0000
Manifest this update: Fri 22 Nov 2024 16:01:37 +0000
Manifest next update: Sat 23 Nov 2024 16:01:37 +0000
Files and hashes: 1: 0HCWDtmg2hybfiRX6ry2YEeNCK4.crl (hash: 2E0jS/K4VKVeUs1caqV9rUfTGxYiyW2HtZsASlAT8XY=)
2: cFXBblys90fFErArMqif0v9AFwY.roa (hash: wLvHSplD3zmQepXMZ09m+imzE5sekdAtcdAkf3hgatM=)
3: vKd982t0iqnhF8FWCKtT_mqXS5Y.roa (hash: fR6863I02oEd6aGmH66pon+9/qyaBrToERi9yvaR0S8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:81:39:9f:93:9a:0c:ac:c8:9e:48:cd:98:f9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Validity
Not Before: Nov 22 16:01:37 2024 GMT
Not After : Nov 23 16:01:37 2024 GMT
Subject: CN=dc91cc01d5b490b6cad85e308e0cd3aea15087c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:15:ab:d4:84:58:de:c7:ee:8e:3a:52:22:b8:
1a:62:66:5d:49:19:9b:d4:a5:7f:3b:b2:86:e6:15:
92:5f:6d:e1:1c:c8:4e:51:b4:54:e4:d2:f8:1c:5f:
70:40:1b:51:f8:97:c6:54:44:be:d4:5a:e2:45:35:
cb:e4:4b:ad:2e:57:11:95:a0:c1:20:fe:e7:97:52:
80:72:ad:3d:22:91:5e:e2:0f:15:cb:6d:b9:71:ab:
30:5d:ef:6b:27:28:b3:26:46:ad:fb:79:aa:2b:1a:
cf:bd:50:29:f4:24:21:20:d2:63:93:8c:6a:c2:81:
6c:d9:77:9b:2c:18:a4:e9:b2:ab:33:17:b0:be:17:
d8:cf:3b:3d:9a:82:fa:20:17:56:27:f0:c9:98:21:
3c:c5:9e:e1:8a:8a:49:66:4d:fd:bd:4e:41:93:d1:
ee:7b:50:70:d5:af:0a:1d:f0:89:67:70:7e:17:ee:
2a:1f:2f:cc:1c:0a:1d:55:84:d8:4c:3d:71:f0:16:
5a:d4:16:61:2c:60:82:0c:3e:c4:c0:79:26:c8:49:
4b:49:f9:47:7b:f2:b3:e2:1b:d2:e6:22:ba:bb:25:
ba:43:3d:64:f1:c8:68:34:ee:49:e3:aa:39:fd:16:
ee:b4:a1:94:bb:4f:58:8c:66:2d:1c:c4:93:87:c7:
74:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:91:CC:01:D5:B4:90:B6:CA:D8:5E:30:8E:0C:D3:AE:A1:50:87:C6
X509v3 Authority Key Identifier:
keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:cc:58:8c:14:a4:9d:0a:29:fc:12:d9:49:17:21:42:64:69:
f5:6a:f1:8e:d3:74:47:21:74:e0:a6:1d:0d:e5:10:a6:de:ab:
57:85:83:7a:2c:b5:69:15:8b:a6:17:0c:85:04:f2:36:09:45:
db:be:f7:f0:ab:6c:4d:44:2c:aa:2f:30:ab:df:f9:d0:01:d5:
db:e9:6f:cb:bd:7c:58:4f:8d:b7:0e:5a:60:d9:12:f5:da:e0:
19:b9:af:c1:46:0d:53:a1:5a:b4:88:38:40:56:a4:32:5b:6d:
be:61:07:a5:80:c8:c8:f6:96:b7:2d:c7:5c:0e:2a:f5:d3:7c:
f5:66:00:5c:c1:c1:93:45:7e:76:63:b1:b2:58:a9:c1:ff:53:
06:45:89:5d:aa:f4:0b:ad:a6:ff:3b:7e:60:f8:1a:9a:b4:3e:
26:52:98:a8:f2:69:ca:51:3e:d4:e5:01:ed:94:dd:21:24:7f:
c0:74:1b:2e:1f:f0:ce:bd:4e:34:ca:92:a7:c8:06:f4:b3:7c:
60:ed:be:25:e9:98:70:4f:f5:4e:00:62:0e:1f:98:a9:30:af:
39:f1:ab:f1:40:91:15:bf:4a:98:6d:38:ca:6a:c4:50:5f:c4:
c7:39:5d:36:d1:c5:2c:e5:8d:9b:48:2f:26:0c:c3:69:38:57:
33:af:78:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:14:09 2024 by rpki-client on console-fra.rpki-client.org