Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json)
Hash identifier: YteX0Ai/zt0jK/RpfKhN4b7L7v5wQ2C4HRDSKCpCzSE=
Subject key identifier: 1F:02:94:6C:F4:59:17:29:2E:13:C3:32:F7:7C:32:13:56:E2:1A:0D
Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Certificate serial: 019358094CEDD0961FB2A857E942B6B4C3FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
Manifest number: 0376
Signing time: Sat 23 Nov 2024 08:00:24 +0000
Manifest this update: Sat 23 Nov 2024 08:00:24 +0000
Manifest next update: Sun 24 Nov 2024 08:00:24 +0000
Files and hashes: 1: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: aj2Vjj4DQdLBYPPHUsur9bqe6Eom3uCVISJjAJOlyWE=)
2: RqM-sosJkdh-H9DbQhfUBazqt9w.roa (hash: b+1j8XdMh6ZEJE2rHNOa1SHYHJU7kyg28BPBgdACxFo=)
3: SO_HUTd0-Gl9BaYzrqlfSWa_QVQ.roa (hash: EkHZRdEzR6KVt391UlNURvABOCf18xzs/st+hIUFqMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:09:4c:ed:d0:96:1f:b2:a8:57:e9:42:b6:b4:c3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Validity
Not Before: Nov 23 08:00:24 2024 GMT
Not After : Nov 24 08:00:24 2024 GMT
Subject: CN=1f02946cf45917292e13c332f77c321356e21a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:61:d8:c3:1f:76:40:68:87:80:62:87:de:a4:
e6:9d:14:d8:89:93:be:d6:c2:f5:e6:ca:7d:1d:71:
45:f5:51:5e:e0:fa:f4:1f:30:b3:b3:da:e4:35:a0:
b4:97:20:cb:a5:10:bc:1e:f8:a8:eb:26:94:68:6d:
07:de:75:7d:5d:23:62:8f:68:64:bc:6b:d8:8d:2a:
6c:48:1d:99:49:94:0e:c6:34:8c:86:49:75:3e:87:
2b:9f:9e:aa:33:10:8f:52:79:84:e0:d9:1b:2a:1d:
02:1a:65:09:07:4c:35:6b:60:c6:ff:8b:48:82:05:
0f:cc:75:41:72:80:19:50:54:1c:fa:8e:04:bc:4e:
b7:fe:19:dc:e8:0b:3f:29:de:1e:59:b7:f0:51:c3:
50:b3:99:c1:10:45:fc:be:a2:9c:6e:db:bf:ce:98:
c3:68:5c:6b:a9:fe:c6:7e:03:8a:08:b5:32:73:1e:
8a:d3:79:d1:29:73:76:88:f8:bc:d7:1c:c7:06:b0:
e4:f3:ee:3e:0a:51:1b:d4:dc:e0:38:04:4d:d1:d5:
1f:2b:9c:c3:61:46:4c:8d:64:87:6d:41:4c:e7:41:
36:04:37:d9:73:17:79:ce:23:5b:10:48:05:f7:2f:
41:28:0c:b6:df:e4:2b:54:c7:b8:2b:e9:6c:09:4b:
9f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:02:94:6C:F4:59:17:29:2E:13:C3:32:F7:7C:32:13:56:E2:1A:0D
X509v3 Authority Key Identifier:
keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:73:33:09:f6:33:d8:44:28:fb:08:32:4d:be:8a:b0:5f:cd:
13:94:51:2e:bf:d4:da:7b:0c:c3:92:28:9d:ab:39:1d:d3:a9:
ba:ac:08:29:ca:66:42:1d:9b:6e:7c:49:52:03:97:6f:31:c5:
9b:13:96:86:5b:71:48:f5:fa:43:19:d8:ad:73:80:fe:d8:66:
6c:3a:49:80:25:61:44:17:29:96:f0:c7:29:d7:8f:17:4e:ce:
03:6a:70:a6:9e:b2:4c:ed:e4:a1:24:ca:8c:1c:d1:39:64:13:
51:b9:b7:6e:cc:da:cd:75:20:4e:ef:8d:cf:90:10:f6:0c:be:
be:76:63:dc:6a:e9:89:88:d9:37:f1:8f:a6:b6:0b:3f:d0:1c:
f0:84:5c:5d:b8:db:c1:26:19:8c:e7:5d:fd:29:88:81:73:37:
83:cc:24:c0:94:25:e8:04:9f:1a:60:8b:53:b3:f4:fc:85:c4:
ce:52:81:a5:5a:f1:11:ca:ac:73:16:f7:ee:b7:e2:65:39:fd:
d5:e2:9e:74:3a:5f:64:87:a4:3b:c9:5a:db:68:e6:de:74:8b:
1d:f1:61:f1:9d:95:f5:ef:fc:2a:2a:d4:e1:5f:c0:8b:9e:3c:
6e:a6:66:b4:cb:ef:62:3b:a3:fe:33:71:69:c3:57:8f:96:3f:
eb:92:ff:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:53:00 2024 by rpki-client on console-ams.rpki-client.org