Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft
File: ha9TEIBex1YaGiL5yJDJcx-23r8.mft (raw, json)
Hash identifier: POwU8i14qeEI7Wnvhq7XD9L7mhkDwVzU4Z3Lrf8QK4Q=
Subject key identifier: 60:16:8F:65:CD:93:42:32:4F:B5:DB:F0:02:09:E4:32:F7:CE:52:9E
Authority key identifier: 85:AF:53:10:80:5E:C7:56:1A:1A:22:F9:C8:90:C9:73:1F:B6:DE:BF
Certificate issuer: /CN=85af5310805ec7561a1a22f9c890c9731fb6debf
Certificate serial: 01936A0F59409BA7C640B84C20D52E1C26DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft
Manifest number: 137E
Signing time: Tue 26 Nov 2024 20:00:10 +0000
Manifest this update: Tue 26 Nov 2024 20:00:10 +0000
Manifest next update: Wed 27 Nov 2024 20:00:10 +0000
Files and hashes: 1: 18KM6bducT4q0JOa87aIhR3aQus.roa (hash: Rq1T6dviRS5070136ku9inoD+rgM965NXOkaYap4ZEU=)
2: ha9TEIBex1YaGiL5yJDJcx-23r8.crl (hash: lB7swHAJbc4qpDSLS+MFbWdOj7YQXu2eMYOPBnKqpOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:0f:59:40:9b:a7:c6:40:b8:4c:20:d5:2e:1c:26:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85af5310805ec7561a1a22f9c890c9731fb6debf
Validity
Not Before: Nov 26 20:00:10 2024 GMT
Not After : Nov 27 20:00:10 2024 GMT
Subject: CN=60168f65cd9342324fb5dbf00209e432f7ce529e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4b:64:82:51:1b:3f:37:82:10:5a:e2:86:e4:
a5:48:32:0b:47:34:80:f5:c5:fe:f4:7c:67:c1:85:
c2:34:fc:03:7c:ef:9f:1c:df:88:e7:a0:55:18:31:
97:1e:96:e5:51:48:ff:cf:e7:4e:bc:a0:f3:52:eb:
cb:e8:67:bb:15:e4:ef:a5:5d:4a:e6:b9:c2:2c:08:
d7:c8:a5:d8:6a:77:f6:3d:51:42:b2:dc:21:63:b0:
80:55:9d:70:39:b8:3b:33:e4:b3:4c:26:1d:06:e6:
6c:ef:b9:3c:91:88:ab:04:38:df:9d:04:7d:74:33:
ae:83:41:c7:0f:8b:41:07:37:6f:82:d5:fb:27:26:
b5:24:ce:18:05:7f:f4:30:ca:42:de:13:9b:7f:6a:
d4:0b:91:d4:cd:e6:59:7a:19:5b:c9:e1:09:f8:40:
f1:24:db:a0:75:44:b8:2c:9d:50:fa:e2:b8:ac:40:
17:88:9c:6e:3b:3b:16:f3:2a:07:fb:9f:00:0d:cf:
7b:f5:6c:a0:ea:31:7e:25:5a:f6:56:e7:ce:74:34:
d8:d1:32:cc:93:cf:b6:d4:2e:ec:ad:6e:be:34:1c:
a5:6c:10:7a:78:8c:6a:10:e8:0c:0a:27:7f:87:b6:
4b:98:12:8f:00:20:64:21:b4:ef:dc:c1:57:64:45:
86:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:16:8F:65:CD:93:42:32:4F:B5:DB:F0:02:09:E4:32:F7:CE:52:9E
X509v3 Authority Key Identifier:
keyid:85:AF:53:10:80:5E:C7:56:1A:1A:22:F9:C8:90:C9:73:1F:B6:DE:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:df:b3:1a:9c:08:cb:f9:ca:ee:ff:9f:2e:07:05:72:8a:d1:
ec:7e:56:38:53:db:93:19:29:2a:9d:20:b8:ae:3e:96:50:29:
10:31:18:2e:21:c1:98:d2:f7:78:0d:16:cf:4a:82:07:eb:35:
0c:b4:55:88:0d:b9:8c:a0:fc:88:07:07:98:c8:bb:53:6c:23:
0f:00:3c:e2:71:6c:21:2a:d5:14:c1:31:90:27:25:e4:36:01:
e6:de:c6:8d:8d:9a:af:09:55:34:0a:c4:a1:f7:bc:10:3f:c5:
3e:19:2a:04:81:81:32:05:9f:9e:5d:53:09:07:bf:59:c1:48:
70:6e:64:ba:c3:56:62:26:f1:71:75:a0:57:53:7d:ab:ea:cd:
a0:d9:4a:77:b2:9f:a6:3f:93:c1:62:7d:d2:8f:48:38:10:f4:
e9:d4:34:66:75:4e:25:12:d4:7f:5e:f9:b7:76:b3:fb:84:80:
42:d1:90:63:b4:35:1d:24:db:8a:c0:7a:e4:47:61:da:e6:5a:
af:14:b3:4e:fe:a3:cf:07:5d:da:80:95:5d:45:7f:a5:e4:49:
c7:56:4f:86:4b:1c:24:f8:5e:09:2d:d3:ab:6b:6e:71:9a:a0:
40:80:8f:7f:e1:38:f7:46:10:06:6b:41:0e:8f:0a:1c:a4:0a:
e1:ed:b7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:23:44 2024 by rpki-client on console-ams.rpki-client.org