Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
File: shUnDjtZdrRPOt7OVwR9HgeHunU.mft (raw, json)
Hash identifier: BdQJIxWoLX1ItS8GYXCGzGaH/aIBnKx+WNs3uL0GvCY=
Subject key identifier: 21:9E:4A:D5:D7:B3:46:87:DD:77:C2:00:BA:E1:A3:1D:C5:1E:1B:91
Authority key identifier: B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75
Certificate issuer: /CN=b215270e3b5976b44f3adece57047d1e0787ba75
Certificate serial: 019234DCAB0D0FEEEA1EF604611A28358B0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
Manifest number: 12D9
Signing time: Fri 27 Sep 2024 19:02:09 +0000
Manifest this update: Fri 27 Sep 2024 19:02:09 +0000
Manifest next update: Sat 28 Sep 2024 19:02:09 +0000
Files and hashes: 1: mMenwNhKAdIfW_wajXJsf8i4pRs.roa (hash: bWg8bt+zwetpGFHSAXSDBleG3++7MYRZEKuodpyHW/o=)
2: shUnDjtZdrRPOt7OVwR9HgeHunU.crl (hash: 52/VK6qNbGAe1JEb16CNGj4UbqAExmjAQtKy76e0IQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:34:dc:ab:0d:0f:ee:ea:1e:f6:04:61:1a:28:35:8b:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215270e3b5976b44f3adece57047d1e0787ba75
Validity
Not Before: Sep 27 19:02:09 2024 GMT
Not After : Sep 28 19:02:09 2024 GMT
Subject: CN=219e4ad5d7b34687dd77c200bae1a31dc51e1b91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c0:9d:86:5d:0d:bc:52:c8:b2:61:14:40:aa:
18:ae:20:85:ff:6d:e4:e2:ff:2e:d2:59:db:30:cb:
57:80:b1:91:42:fc:61:38:c3:d6:22:6c:42:0c:9d:
08:35:fe:a8:24:f7:64:c7:b1:37:9a:ba:25:cd:21:
5a:ae:d3:0b:8a:a3:1b:1d:e4:b1:7d:9f:84:f7:f0:
4c:8e:7d:85:b2:e8:79:ce:cc:fa:30:3b:59:84:ca:
bb:7e:b1:89:9f:5f:b0:67:05:37:88:fe:54:d9:35:
84:c2:6b:4e:97:96:a9:51:f5:ba:18:16:79:e1:64:
2c:f9:ea:b8:56:ba:c9:96:a1:33:3d:0f:17:1d:b2:
28:ff:54:74:b4:bc:f5:eb:fc:3a:d5:4a:c4:27:2a:
3a:2c:7f:8e:e0:d3:90:8e:bf:0f:26:69:ab:13:7f:
5d:7b:75:46:e8:e6:b2:74:3d:5e:d9:df:05:63:87:
db:b3:ef:d8:13:7f:86:11:9e:8c:08:cc:8d:8b:49:
eb:35:83:43:91:6b:97:88:3f:6c:ff:c7:f2:0f:db:
74:bf:c5:d2:ac:25:c5:1d:81:2c:9a:a3:45:9c:66:
a8:4e:56:fc:46:3e:d3:da:00:69:3f:48:dc:aa:76:
b5:46:28:de:53:b6:24:e2:06:30:be:02:66:42:9f:
42:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9E:4A:D5:D7:B3:46:87:DD:77:C2:00:BA:E1:A3:1D:C5:1E:1B:91
X509v3 Authority Key Identifier:
keyid:B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:2d:ab:3c:04:33:c4:92:e4:88:e4:09:0f:34:ec:1d:29:19:
01:ee:d4:c8:82:5f:a2:2f:04:4c:e2:72:49:d4:ed:fd:5a:d0:
0a:f2:bb:78:2e:b6:22:7e:80:d5:e8:b2:60:0c:aa:56:22:58:
a0:aa:66:af:f9:a9:c4:0c:ed:85:33:ad:49:79:52:7d:55:ae:
72:a4:31:b9:92:76:00:7d:af:f8:a1:4a:ca:82:22:ea:4a:ee:
46:3e:30:f5:ea:03:44:d1:e6:21:17:a8:ea:8d:b8:66:6d:46:
8d:5f:a0:96:b4:87:37:d1:d1:d8:c2:2c:5f:4a:a7:94:43:fc:
c3:83:66:68:ef:2b:5f:6c:84:99:23:97:91:e5:1f:95:c6:4b:
19:b1:f4:73:bb:d6:de:16:69:63:84:19:94:44:41:44:36:7f:
db:c4:f7:55:04:03:dd:4d:24:2a:0a:8e:7e:ce:7a:df:3e:b6:
5c:2a:39:0b:67:97:bd:e7:8c:70:b8:c0:7d:b1:d3:55:c7:e7:
c7:f7:54:28:27:17:84:ec:0f:e7:78:d4:dc:cb:eb:8d:95:ff:
c1:91:06:53:a4:8e:dd:11:60:6a:3f:2a:59:e1:ff:b8:72:96:
8d:22:bb:fb:9b:a7:54:c9:49:88:ad:0d:b0:36:59:6b:93:36:
0c:a3:7e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 22:14:52 2024 by rpki-client on console-fra.rpki-client.org