Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: VjwK3rrL+sdbM6Wtov4DaRfxEAElYmfzHLCXocbmU1A=
Subject key identifier: 70:CF:DD:67:41:6E:1D:3D:50:3F:27:77:F7:4E:F2:65:B9:02:02:52
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 0193568A69A7230E8807191B1DB0AAEFFB66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 4E
Signing time: Sat 23 Nov 2024 01:02:11 +0000
Manifest this update: Sat 23 Nov 2024 01:02:11 +0000
Manifest next update: Sun 24 Nov 2024 01:02:11 +0000
Files and hashes: 1: IaJCuEhmGQZXCByax7XJAsHh8RE.roa (hash: PTS4CwiiulCjmjunfNBLkQCsAq9sdDUyK0cZ0YqND24=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: 9GVBGc/BXYXerDqL8vW6hKZd7h/BKPNVM92GsoKZfKo=)
3: mSEHKkz3V0zvul37WohG5gxzmHs.roa (hash: sHyPtQAiJZ+DXxaHC0YV3Ah/ZK7DSvwbtr1l4b+nOho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:69:a7:23:0e:88:07:19:1b:1d:b0:aa:ef:fb:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Nov 23 01:02:11 2024 GMT
Not After : Nov 24 01:02:11 2024 GMT
Subject: CN=70cfdd67416e1d3d503f2777f74ef265b9020252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:52:c0:13:bb:d9:01:5c:07:b8:ca:14:93:4b:
7e:cd:3b:8e:b4:2b:93:c3:e0:86:0f:46:97:7c:9f:
0d:a9:fa:2f:9b:e3:ea:b6:2b:55:b7:f8:86:42:b9:
22:6b:97:a6:e8:53:6e:d4:39:85:9a:6c:0e:17:dc:
fe:81:3d:96:c3:69:f3:46:9f:88:f3:f8:6c:c0:9d:
30:fc:28:aa:28:12:1d:04:97:82:ec:9a:f2:d3:21:
3f:8f:81:c2:cc:78:d3:81:71:f7:12:d9:89:d9:fb:
da:c0:ba:55:64:d6:c0:61:fc:c1:8a:65:36:fd:5a:
52:f4:ec:63:47:ac:11:7c:fe:0a:52:17:05:57:d4:
6b:ff:21:a1:4e:f4:f4:26:8d:8c:e1:6a:b5:28:b1:
e9:77:35:50:5f:00:1c:94:ac:33:b1:92:a3:f3:78:
3b:ce:9d:1e:53:4b:10:82:03:f1:ad:b4:6d:ec:ea:
0a:5e:80:9f:b0:0a:7c:7b:c2:11:a6:52:71:6d:8b:
80:a3:98:16:f5:13:98:c0:8f:d0:d9:63:5c:71:87:
8c:b3:3b:68:3d:80:c5:34:1a:b6:46:ee:65:ad:5d:
c5:e9:8b:86:29:2d:f9:2d:44:fc:a6:90:69:ee:14:
98:47:f5:71:65:76:4c:6e:3c:d7:f7:77:25:fa:78:
24:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:CF:DD:67:41:6E:1D:3D:50:3F:27:77:F7:4E:F2:65:B9:02:02:52
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:14:61:42:8b:d1:b0:5b:5f:6d:07:d3:a4:a0:48:ab:1f:e7:
a6:88:a0:94:6c:87:96:3d:3c:2c:47:38:da:22:a4:a7:18:59:
09:9a:9b:dd:15:a5:a7:ed:39:33:51:25:cc:82:68:e7:a3:f3:
2e:40:3a:f8:d7:ed:ff:3a:88:09:ef:14:54:75:81:d5:46:cf:
54:a9:80:d2:97:e8:00:d3:63:5d:7e:17:e3:e1:0f:36:8d:6a:
81:3b:a9:f1:82:7b:6b:f3:09:9d:a6:2c:dd:9a:82:53:e7:93:
7d:fc:12:5b:2e:a1:61:7b:d2:2b:32:4c:fd:14:ab:2d:54:dc:
22:c2:b9:f1:99:62:52:c6:34:15:2f:43:b1:d7:f7:f1:d5:da:
26:dd:e9:f6:1f:e4:51:ae:d9:bc:68:42:93:3a:ab:b3:69:55:
21:fb:b4:0a:c7:54:57:b5:72:d1:03:9a:cb:1d:3f:5c:92:02:
36:65:cf:00:28:e1:30:78:48:04:46:53:04:cf:d0:b3:a1:67:
27:9f:87:09:c7:ac:e7:77:99:d3:2e:f8:f3:a0:da:d7:d3:82:
8d:a1:d4:db:32:88:da:f0:fe:55:4b:d6:d8:65:62:c8:a5:25:
f5:09:48:6a:19:dd:be:d0:71:d9:5e:06:87:02:e0:8f:66:5f:
fd:a0:0a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:12:06 2024 by rpki-client on console-fra.rpki-client.org