Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json)
Hash identifier: 6m/Pp0qj/BDUyTlW+CMjNIb2YWV0hvKVIxvyzeHX6VE=
Subject key identifier: 39:DA:52:B2:8A:ED:12:62:3B:F8:A4:3D:D9:A1:9E:45:9F:CF:C8:B8
Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236
Certificate serial: 019358095455E51325234957C74655A858FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 08:00:26 +0000
Manifest this update: Sat 23 Nov 2024 08:00:26 +0000
Manifest next update: Sun 24 Nov 2024 08:00:26 +0000
Files and hashes: 1: 8Fyf1ulcFghwi42KexsVuvoEXpc.roa (hash: h6eEpzUfho/RZX45FYjsW5t4mkxHI424diFGdLSK6UM=)
2: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: cdZleQG31cVu3TjTC7vISXMEBKlzCvhhFVOqdmjyNhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:09:54:55:e5:13:25:23:49:57:c7:46:55:a8:58:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74198f7022b9560501db448af60301fa285e9236
Validity
Not Before: Nov 23 08:00:26 2024 GMT
Not After : Nov 24 08:00:26 2024 GMT
Subject: CN=39da52b28aed12623bf8a43dd9a19e459fcfc8b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:39:00:a0:b7:d7:59:54:08:5b:1c:25:f9:b4:
ce:cb:16:85:5a:8c:6f:04:dc:1f:15:36:28:4c:b5:
26:5a:44:40:79:d4:fa:16:41:fd:f7:70:b3:52:57:
d6:9c:dd:a4:62:b4:80:98:99:fe:7a:08:2d:06:6e:
50:41:b6:d2:d0:95:36:54:26:2a:7f:3e:16:4d:e6:
5f:e7:e6:36:17:60:18:a8:8f:cf:00:82:17:65:a0:
e5:e6:e1:bd:cd:d8:b9:d1:46:5a:24:d0:f9:04:62:
5b:7e:c5:37:aa:c4:d1:e5:5c:82:04:a0:c7:18:0d:
34:27:4a:82:9f:78:72:51:1f:80:aa:8a:6c:0e:ba:
2b:cf:73:81:37:82:76:25:bd:64:aa:49:66:54:b3:
d9:e9:63:62:ac:6b:4b:5a:f3:7b:b0:4e:3e:af:04:
af:51:a3:a3:b4:f7:35:4d:5b:3b:95:ba:7e:ae:6a:
67:a6:d4:76:fb:93:2e:7f:ad:bb:e9:0f:ea:fb:c1:
00:56:43:ad:16:3c:67:15:c1:e4:fe:76:12:09:67:
a7:eb:f7:9c:c6:c9:35:46:60:55:ac:a7:ce:99:ca:
c4:bc:02:6a:22:73:30:9f:37:3d:77:e3:c4:b1:61:
65:e4:e2:c3:8d:8a:22:5c:22:28:15:39:04:80:ed:
6e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:DA:52:B2:8A:ED:12:62:3B:F8:A4:3D:D9:A1:9E:45:9F:CF:C8:B8
X509v3 Authority Key Identifier:
keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c1:98:f1:e7:07:27:e6:a8:f7:5d:2e:0c:ae:99:62:0e:2e:
b3:4b:80:46:b2:07:9c:73:68:8f:57:e9:ad:0c:e5:90:d3:9e:
d7:e9:ac:0a:79:04:fc:8e:5b:44:8c:00:15:2c:93:4b:db:1c:
85:ab:8c:d8:70:41:74:b2:8c:2e:cb:a2:6c:e1:d1:ed:92:a9:
d5:c1:32:08:66:25:f5:5f:64:b5:8e:09:1c:b9:77:c4:37:57:
89:5c:12:7e:55:96:45:af:f4:8d:0f:24:f8:f5:6a:8e:99:dc:
5b:45:13:46:4f:56:6b:fb:76:d2:f2:72:44:6c:3e:13:2b:2e:
c0:a4:13:79:a5:e9:93:7d:ea:f5:66:eb:d2:bd:9d:1e:91:a4:
2f:c4:d1:e0:73:a1:89:fe:28:39:18:05:ac:3e:2d:ab:7f:55:
b7:75:b1:3c:5a:c9:ff:fc:a1:94:57:1b:b6:6e:b4:0e:69:0c:
e4:79:d4:7f:81:a3:3b:f9:fa:d7:64:c7:88:38:71:71:1e:0f:
e5:0c:c5:61:10:16:1f:77:ad:68:05:6b:8c:0e:fc:20:d4:c2:
11:5b:0d:2e:b8:f6:4c:8c:4f:15:c7:31:9e:93:1c:fb:15:71:
42:68:c6:6f:6c:1a:58:98:c5:69:b8:2b:e9:64:de:c6:08:28:
f1:9d:ad:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:03:32 2024 by rpki-client on console-fra.rpki-client.org