Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
File: CkGloqGDOWKcwTA-beyLtgXdymU.mft (raw, json)
Hash identifier: 0BInbQDol4ieGZk4wVgHtM17gsjZh/w8xvtWD9rNs74=
Subject key identifier: 3E:EF:E1:CB:35:79:3F:B5:9F:E3:95:55:3C:95:40:AA:51:23:D0:38
Authority key identifier: 0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
Certificate issuer: /CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Certificate serial: 019355E490D4A6CDA2431C3D8B978DBC9592
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
Manifest number: 1373
Signing time: Fri 22 Nov 2024 22:01:02 +0000
Manifest this update: Fri 22 Nov 2024 22:01:02 +0000
Manifest next update: Sat 23 Nov 2024 22:01:02 +0000
Files and hashes: 1: 4182DbXhnidvHYsIY1la_46VfnM.roa (hash: CD5W1lbEN9rx2MuDpr4dc4mx3Ow25km9Mp/r9MNpjhA=)
2: CkGloqGDOWKcwTA-beyLtgXdymU.crl (hash: kfu08DY8bLXgrZJzn+fNAxdMXTfn8uVyyjw1SF/c3iA=)
3: TWaOIXjPFRZqVkPQo1OccG_3Rik.roa (hash: DVTfkoHz02FotrquY3dvBMX+HX2XhfkjZcURnTdUH6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e4:90:d4:a6:cd:a2:43:1c:3d:8b:97:8d:bc:95:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Validity
Not Before: Nov 22 22:01:02 2024 GMT
Not After : Nov 23 22:01:02 2024 GMT
Subject: CN=3eefe1cb35793fb59fe395553c9540aa5123d038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ee:92:e7:db:67:16:79:6d:3e:3f:bc:bf:f0:
a3:09:1c:78:d3:09:cc:c5:7d:34:e8:2f:e5:c9:7e:
52:b1:68:ba:7f:fa:1d:3e:c2:e4:2d:a7:f0:2c:0f:
f3:14:70:b8:7d:d3:59:fa:a9:55:fb:cc:d1:8f:0d:
d8:02:63:ef:f5:17:ce:db:32:7e:e2:e3:5f:78:21:
77:58:23:95:44:48:d6:2b:7d:13:84:d5:cb:e6:76:
80:27:47:df:76:a5:b0:b2:e7:bd:3a:54:80:46:88:
de:1c:11:db:ce:03:eb:7c:d1:a1:83:60:36:33:b3:
9e:50:7e:3b:ed:e0:92:3a:c4:82:2f:4f:5f:6e:12:
08:77:3f:7e:01:60:4a:33:83:02:ef:ba:f0:c3:2c:
c4:3b:25:8a:bd:3b:89:8e:ff:72:67:d1:f7:77:57:
b6:45:1d:b0:a5:fc:26:5c:8b:19:05:7b:bb:25:eb:
f2:c6:ef:a0:5a:e4:bc:af:12:16:b7:ff:22:39:43:
e2:4e:7f:04:8c:7e:8c:69:0a:4d:b9:4d:0a:0f:08:
15:45:8b:29:33:10:6f:10:ee:92:35:de:69:5f:02:
b1:e6:13:ce:0f:06:65:9b:6c:a4:af:9f:84:23:a6:
53:b3:5b:38:bd:dc:28:92:2e:c0:4f:c0:e5:62:5e:
05:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:EF:E1:CB:35:79:3F:B5:9F:E3:95:55:3C:95:40:AA:51:23:D0:38
X509v3 Authority Key Identifier:
keyid:0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:70:a1:9e:75:9a:56:1a:d9:4f:57:09:9e:85:96:85:d0:55:
b8:89:97:0b:23:63:6c:ae:e8:45:66:63:ad:40:e5:40:fa:b8:
a3:e0:67:b0:65:bc:a7:56:c1:9e:57:1f:98:e1:9a:48:5e:98:
38:9c:2e:e1:bb:21:48:6c:b8:c7:f8:15:8b:de:4b:27:71:aa:
be:33:33:f9:bc:64:d3:d6:42:37:b9:20:d1:5a:33:89:8d:86:
27:46:81:8a:77:e9:9d:63:2a:a5:61:73:10:e7:59:43:e8:f3:
27:dc:92:0e:3c:e8:1d:21:19:36:8b:9e:be:5c:68:e4:99:67:
cc:07:59:c4:13:21:74:99:3c:40:82:9b:c4:8b:25:21:96:a6:
e6:bb:ad:c2:72:cb:5d:3b:07:15:c1:d8:77:94:70:fa:6b:51:
0a:08:33:d8:8f:dd:d4:47:2a:dd:bb:10:61:32:67:95:c9:d3:
54:52:17:95:b1:0a:a2:a2:05:80:1a:43:1a:7e:4c:1b:11:38:
76:0d:92:3f:93:bb:9c:10:08:b7:31:01:d4:c7:fd:fc:72:95:
55:48:04:ab:23:d5:e4:e9:ae:fe:d1:e1:e9:91:3d:d9:a6:04:
3d:8c:6e:87:1b:b2:0f:e4:f0:12:52:cc:05:26:f5:41:3c:16:
45:53:64:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:34:36 2024 by rpki-client on console-fra.rpki-client.org