Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json)
Hash identifier: VQ/cfFlpHD3DGa1NHPjXj7wxrliMc7To6n7OWLygDKM=
Subject key identifier: 13:58:44:5E:78:35:DA:20:C7:A5:AD:04:1F:56:1B:5E:BE:48:05:D7
Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Certificate serial: 0191F96B718906E1A91971C91DC9ED023DB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
Manifest number: FC
Signing time: Mon 16 Sep 2024 06:00:53 +0000
Manifest this update: Mon 16 Sep 2024 06:00:53 +0000
Manifest next update: Tue 17 Sep 2024 06:00:53 +0000
Files and hashes: 1: F2tTxdAMZ9cundJPo_hvAu60SEk.roa (hash: GktWY6fl5sAaSDccgRTHmwEHMx0Zmv64V5aRj1qu4H8=)
2: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: TOL21EFsOm41nNlLWtEE/cxkERucWoHNZ5Va+vnhPNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 06:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:6b:71:89:06:e1:a9:19:71:c9:1d:c9:ed:02:3d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Validity
Not Before: Sep 16 06:00:53 2024 GMT
Not After : Sep 17 06:00:53 2024 GMT
Subject: CN=1358445e7835da20c7a5ad041f561b5ebe4805d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e6:00:dc:7f:0c:2f:c1:32:87:a3:d9:a3:52:
a0:93:15:de:79:a7:15:0d:05:fc:7e:a6:51:b8:43:
33:5f:7d:b8:2d:b5:13:09:07:a7:ef:ec:f6:fd:a1:
50:8e:8a:fb:12:27:ba:f0:2d:a3:18:e9:c1:f3:62:
f0:ad:9e:3f:6f:08:89:84:e5:e9:06:c7:6b:0b:6e:
d9:07:11:6b:de:88:c9:a0:53:4c:02:b6:40:e8:c1:
98:d3:39:35:31:f2:11:ae:71:c3:0d:40:07:f4:19:
49:5d:6c:62:0d:5e:2f:0d:fe:48:b2:e5:68:47:ca:
7a:09:c9:8f:ab:32:b0:f6:27:71:ee:61:be:c6:88:
31:7b:b5:54:be:50:76:fb:73:b9:07:09:7c:da:ac:
a1:43:81:30:a0:f1:9f:e3:75:46:b2:77:dc:29:7c:
ed:be:81:3f:48:83:5c:53:a8:0b:0a:7d:e0:da:9d:
6e:57:f4:35:9f:92:58:6a:16:8d:a1:de:5a:22:5e:
81:7d:99:1f:d8:e7:b7:c6:ac:10:f3:d2:ee:bf:cb:
1b:fb:bc:b2:84:9d:f9:67:cb:5c:7c:17:37:84:d5:
a0:60:b4:2d:27:8e:d8:35:a5:d4:61:4a:d5:5d:a1:
53:ef:9a:13:13:6c:95:13:10:19:ff:c3:da:e7:c2:
15:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:58:44:5E:78:35:DA:20:C7:A5:AD:04:1F:56:1B:5E:BE:48:05:D7
X509v3 Authority Key Identifier:
keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:56:87:79:c5:6c:62:89:6a:a5:dc:25:cf:07:77:ac:e4:c1:
55:81:ea:f3:be:58:eb:d5:f9:74:7d:e5:ba:60:5f:54:15:52:
e7:f4:b7:79:e6:a7:82:7e:5d:3a:f6:f4:57:fc:b5:bb:c4:30:
1b:f8:24:31:ca:2b:44:ad:90:0c:ef:1f:fa:e2:37:a4:f8:9d:
2e:1a:50:7d:8f:e8:37:6b:b4:c7:ae:3f:94:58:82:cc:2e:a5:
7a:84:8e:68:2a:b6:92:8a:9f:ff:d0:e5:10:d7:e8:ad:75:73:
be:9d:ff:ef:38:12:f2:3b:3c:47:9a:d8:96:6e:5e:75:7f:bf:
9b:24:52:36:d2:93:1c:9b:ee:47:4a:8e:1e:ce:8f:c6:bc:e0:
00:6b:a2:58:15:8d:35:95:5b:38:8c:c5:e5:ce:34:dc:7c:1d:
38:fe:16:ec:ed:33:8d:6a:34:d1:41:4b:5b:9d:20:44:e3:8f:
a4:30:61:22:f7:e3:d7:3a:e0:44:ba:3c:d6:32:35:2c:7f:09:
8b:63:18:fc:8f:0c:b5:17:e3:a7:ae:6c:5f:7b:4f:f9:47:c9:
a2:88:47:a7:2d:22:09:52:65:09:5f:18:ed:d9:83:4c:98:7b:
32:c4:8f:13:e2:fd:75:b4:74:eb:a7:68:2d:cb:5d:dc:15:1d:
89:1f:1e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:28:37 2024 by rpki-client on console-fra.rpki-client.org