Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
File: dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft (raw, json)
Hash identifier: GQKUDxAShukPCFQb/8JPVqYteGT0F5dl30TEJo9gWdI=
Subject key identifier: 32:FF:7E:FD:FD:E0:71:BB:5A:A0:A3:6D:AC:1D:18:92:27:58:2E:1C
Authority key identifier: 76:57:21:1F:8A:66:56:1B:57:70:FF:19:B4:71:AE:F5:11:E8:37:78
Certificate issuer: /CN=7657211f8a66561b5770ff19b471aef511e83778
Certificate serial: 019365571228C5F71F6F4C185DC1904647E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
Manifest number: 0232
Signing time: Mon 25 Nov 2024 22:00:25 +0000
Manifest this update: Mon 25 Nov 2024 22:00:25 +0000
Manifest next update: Tue 26 Nov 2024 22:00:25 +0000
Files and hashes: 1: OX_G3WyeZWwDDZJnwVZpY0uZido.roa (hash: KTwW6CkvOOE+KHbfV74pJu+g+UMTKesrxiNMa8wRLy0=)
2: dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl (hash: EbQYevNArGGWYK0SizjFO613/m9cyB0cAuG+0pWsR6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:65:57:12:28:c5:f7:1f:6f:4c:18:5d:c1:90:46:47:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7657211f8a66561b5770ff19b471aef511e83778
Validity
Not Before: Nov 25 22:00:25 2024 GMT
Not After : Nov 26 22:00:25 2024 GMT
Subject: CN=32ff7efdfde071bb5aa0a36dac1d189227582e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:07:f4:61:38:de:8e:88:1e:c1:e5:5b:64:08:
ba:a7:9b:1e:9a:83:78:78:fc:a3:02:31:1b:27:b1:
5a:7c:f2:12:69:85:f9:31:28:9f:db:f5:ce:6c:3c:
9f:f6:77:56:00:66:24:f6:4c:9c:79:09:b5:e5:cc:
84:52:a4:84:b1:07:dd:51:1d:a4:d8:b0:71:da:fc:
00:6f:5f:d1:9f:98:a9:63:95:38:59:0b:54:9b:a7:
87:c5:bc:bc:15:8b:1d:7b:f8:1e:c6:1f:14:56:35:
64:40:8c:bb:69:f8:35:19:0a:21:9a:53:47:69:e2:
95:e2:ba:78:32:2e:e0:28:9b:79:ee:ef:66:c2:bf:
63:7c:1c:18:d2:6b:93:02:2b:46:f1:d1:7a:4c:4f:
7a:da:1f:0d:be:b1:c7:96:38:eb:24:42:24:8f:2d:
21:19:6d:c3:99:8f:1e:97:9b:59:a5:8f:5b:3f:08:
8e:3c:d7:c6:e5:15:d3:8e:c3:18:92:86:01:bf:fd:
32:49:fa:ed:13:df:29:96:d1:a7:8b:f5:19:66:71:
70:95:07:2f:55:f0:94:96:6e:a6:7f:60:bf:ac:04:
e5:ec:9c:43:f0:51:3b:bf:64:22:a8:c5:1f:6f:91:
96:c4:b4:9b:fe:94:d4:02:42:19:91:80:15:b3:35:
21:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:FF:7E:FD:FD:E0:71:BB:5A:A0:A3:6D:AC:1D:18:92:27:58:2E:1C
X509v3 Authority Key Identifier:
keyid:76:57:21:1F:8A:66:56:1B:57:70:FF:19:B4:71:AE:F5:11:E8:37:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:2d:ba:fb:09:05:41:9c:3c:cb:b9:07:2c:85:7e:cd:7f:e7:
3e:40:89:cb:56:fa:e9:fe:12:61:0d:04:64:a2:21:d1:38:0b:
63:b9:c4:9e:4c:b2:1e:80:73:aa:1a:3b:a9:5a:1e:b7:f8:41:
15:66:92:23:77:85:69:50:0c:6b:97:06:f1:56:2f:9f:fb:f5:
a4:df:93:c6:c7:ac:e1:11:5a:ef:73:c6:ab:65:2a:db:21:e1:
f1:78:30:46:86:80:f5:51:a9:19:2e:56:e7:09:9f:0d:d0:a4:
12:d2:89:ae:6e:21:9a:77:1a:fe:19:e7:7e:ac:da:12:e2:37:
5d:fe:b4:09:38:97:81:b6:8a:2e:07:b2:19:fd:df:f1:c6:7a:
60:f1:bc:31:c2:96:e5:3e:75:d4:2d:12:bd:b8:5d:46:77:6a:
4d:47:87:f8:ac:da:a5:07:66:47:99:48:61:16:50:a6:9d:8d:
4a:04:ce:25:77:a1:65:21:b7:30:72:17:b0:92:34:b8:34:41:
09:ad:5c:c2:df:20:6d:ec:d7:ae:2e:44:40:f5:61:1e:1d:a5:
bf:22:03:0a:93:42:c2:3a:13:63:7c:62:80:65:f3:98:98:04:
a8:5a:a0:84:db:ba:1b:b5:30:b4:51:e5:fc:91:b3:7b:61:54:
34:ca:71:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:23:26 2024 by rpki-client on console-ams.rpki-client.org