Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: JiHeFs4c48ysa04vHEQLx+oITmuTmX/swK/BzIkVwdI=
Subject key identifier: 9F:F3:C3:50:AD:BE:01:7D:62:4C:67:C8:13:FE:F7:FA:41:B8:73:CD
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 0191F9A2F68051A2D5944DD2868141BF388D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 0114
Signing time: Mon 16 Sep 2024 07:01:32 +0000
Manifest this update: Mon 16 Sep 2024 07:01:32 +0000
Manifest next update: Tue 17 Sep 2024 07:01:32 +0000
Files and hashes: 1: U8u9wC94rUlOkgrzM74UjKdJyZo.roa (hash: JF9xqjVHmrm9XilKBx+FFBS7ElKnlTrvbYkFgPuk2wA=)
2: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: lKns2PBYsAivnw7c/H88Ol3fF1LwB8qvVd+QPrH3UrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 07:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:a2:f6:80:51:a2:d5:94:4d:d2:86:81:41:bf:38:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Sep 16 07:01:32 2024 GMT
Not After : Sep 17 07:01:32 2024 GMT
Subject: CN=9ff3c350adbe017d624c67c813fef7fa41b873cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f0:88:2d:2c:95:a3:b6:ed:98:c7:76:6e:d7:
be:1e:5a:2a:a6:f4:71:f3:25:72:dd:89:59:d4:80:
76:3b:3a:27:28:f7:65:f4:8d:81:d5:b4:80:47:fd:
0e:60:ba:1b:83:20:74:d0:08:23:92:04:12:bd:01:
1a:67:f3:a2:bc:1c:aa:1c:a0:35:04:9b:95:3e:07:
73:7a:60:d9:60:ba:07:50:fc:90:dc:98:6f:b0:84:
7f:e3:1a:6d:48:83:47:42:96:8e:5c:4e:f0:8c:97:
68:23:68:fb:b0:8b:93:a4:3a:d2:8d:b7:23:51:62:
3f:bf:1c:9e:d1:78:7f:c0:1e:d4:e8:5a:5b:95:91:
a4:f0:a9:ce:7b:24:22:c7:5c:89:fc:aa:51:49:d5:
9a:4a:fd:5c:ec:94:6a:77:ee:6d:4f:3e:77:29:59:
58:1a:f1:02:9b:b5:c1:ab:73:0e:28:a7:8c:7e:4d:
bf:cc:f2:ec:75:88:82:4b:d6:ff:e2:0f:c5:83:4e:
f7:bf:83:d3:21:56:99:4e:8e:98:a5:2a:02:d4:5b:
92:03:71:12:27:f3:2b:f0:ed:c9:c3:8a:6b:18:f5:
11:3a:6e:d2:8e:1c:cf:1a:0d:a7:12:a4:7a:ac:bd:
99:69:fb:37:fa:91:76:0e:a7:34:be:38:08:d9:df:
f1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F3:C3:50:AD:BE:01:7D:62:4C:67:C8:13:FE:F7:FA:41:B8:73:CD
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:2c:0e:35:d1:25:69:75:d4:a8:eb:39:82:3c:db:67:21:47:
66:8c:52:d8:33:f3:4b:77:52:ab:a0:51:f0:d4:0c:34:81:a8:
c6:d2:33:f6:92:b3:f8:aa:f9:bb:f2:0f:51:70:e2:fd:54:17:
7a:0b:c7:a1:43:3d:3c:d7:08:d6:e8:04:5c:44:dd:88:3c:e7:
51:76:56:ae:f1:a6:26:a2:63:9f:88:86:6b:55:be:3e:bf:67:
02:79:d2:f4:17:bf:ff:c4:f5:54:c9:4e:ec:c1:c0:bf:fd:b9:
95:ec:af:dc:86:c9:9a:8f:d8:54:a5:e0:7c:21:9b:cc:0e:42:
cd:e0:42:9a:bf:cb:2d:a9:77:a5:87:27:e4:94:78:9e:95:1f:
1f:e2:66:13:dc:8e:61:80:07:ed:46:f4:1a:e8:56:b9:3b:33:
d9:ae:84:f7:8b:c6:3f:ee:0d:d7:62:ea:39:19:9b:a0:fb:35:
32:83:3c:f9:c6:2b:9b:d9:f4:85:76:87:ee:a9:04:d5:b0:47:
f1:1f:2b:d0:b4:b7:ee:08:88:95:c9:5f:2e:e4:22:e5:60:02:
c1:20:46:07:c1:19:41:ac:76:76:6e:9c:1e:d6:25:73:b0:e0:
21:a0:75:d0:f5:f7:4e:58:8e:e0:c2:3b:b8:b9:45:02:34:68:
92:7a:1a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:30:57 2024 by rpki-client on console-ams.rpki-client.org