Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
File: pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft (raw, json)
Hash identifier: Yj40k5m+Dk6aqCT/xZMaelHP3OvFg3L9ihIq3rxjVIU=
Subject key identifier: EA:16:E6:62:60:82:9B:B8:8F:21:ED:92:C4:DE:22:26:F9:3D:3A:F9
Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Certificate serial: 019352E2DDD9481489596F2F0D5AD0822121
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
Manifest number: 137A
Signing time: Fri 22 Nov 2024 08:00:19 +0000
Manifest this update: Fri 22 Nov 2024 08:00:19 +0000
Manifest next update: Sat 23 Nov 2024 08:00:19 +0000
Files and hashes: 1: 1-4jzbmtSTcBAUlg6orQYcyRoMBQ.roa (hash: SofyizN4KaphZCwQJ4t4941TXk7OTJH0ZUFH7zBDgT0=)
2: fR7QmjF7dqMOdVLhmcIACqgge78.roa (hash: S5f4e+EJvJ3ZeW/xtEccXogXezDgXFlJxCyCGI1Mp1U=)
3: pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl (hash: BKeIF5XQI14YJzztUMgwr2jtog9FhXARaGm4qpM8kcM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:e2:dd:d9:48:14:89:59:6f:2f:0d:5a:d0:82:21:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Validity
Not Before: Nov 22 08:00:19 2024 GMT
Not After : Nov 23 08:00:19 2024 GMT
Subject: CN=ea16e66260829bb88f21ed92c4de2226f93d3af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:51:98:39:b1:4e:41:8c:e9:77:aa:4d:61:ce:
a4:69:42:6c:e4:7a:ee:c1:ea:1f:63:cd:4e:9d:31:
e1:dc:63:3e:1a:a2:5e:af:7b:5e:55:97:a4:c0:5f:
cf:0c:94:89:f8:a4:b4:d6:13:12:73:76:65:69:83:
a4:92:ec:ff:86:34:e6:0d:ca:24:e9:ef:e4:0a:f0:
7e:25:91:e9:31:d1:b3:3d:a2:2e:43:c1:8e:0b:f2:
4d:44:96:42:fa:ce:d9:6b:19:76:1d:0b:c7:d9:bd:
38:91:b4:1b:ca:8e:85:ae:1a:09:f1:dc:02:e1:8c:
60:0d:9c:f9:5f:5c:cf:d9:3e:1d:e0:0b:be:70:69:
7f:98:34:17:d7:d5:63:7c:14:83:f8:d4:45:43:cf:
07:b9:e0:e1:35:41:c0:24:69:97:b1:10:8b:65:8b:
8d:49:b7:8f:1c:29:d2:10:2d:4f:0e:a8:65:ed:0e:
52:18:7c:4b:7a:dd:e5:98:37:d2:50:08:66:e7:bd:
97:32:6d:b4:c1:1a:65:2e:2a:96:80:b3:d5:da:7d:
20:2a:d7:f9:de:c3:6c:57:15:85:be:84:46:ae:4e:
5d:c4:88:12:91:9b:15:85:2c:9e:d4:bb:10:32:c0:
7d:67:25:4c:61:d1:10:b8:84:54:9f:de:51:ce:d3:
7f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:16:E6:62:60:82:9B:B8:8F:21:ED:92:C4:DE:22:26:F9:3D:3A:F9
X509v3 Authority Key Identifier:
keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:fd:6e:34:03:ed:e1:52:51:9a:a6:f1:c0:d1:41:c0:6d:03:
c4:36:71:dc:69:b6:ba:ae:0f:ba:6d:f0:27:dd:5e:8c:34:ec:
2c:91:41:85:d9:6a:72:03:d6:0d:cd:99:02:df:22:99:af:b0:
16:bc:d1:4f:13:5a:81:2b:1a:0b:c3:36:1a:90:19:e4:18:32:
6c:8e:21:83:21:38:da:ce:c5:5a:c2:57:84:f1:01:7b:95:b4:
ae:b6:29:a3:26:f5:9e:1a:51:6b:92:24:d2:d4:1f:a2:b2:75:
39:d4:44:74:fa:f1:e8:1f:16:d5:74:4a:b1:e5:ce:67:e8:c2:
43:9a:2b:a6:29:0b:47:26:1e:90:15:71:8c:4b:08:8a:aa:2d:
71:78:49:8b:b0:af:e1:7d:2d:c1:2b:ad:93:8f:8f:b5:29:22:
32:77:3c:bf:ed:dc:e8:28:c0:17:ef:07:13:20:73:c5:9d:b1:
1d:5f:d6:a9:27:b6:cf:ae:79:8f:e7:9f:d6:00:d4:20:76:f4:
b2:b1:52:b1:12:7f:d1:31:72:b6:d1:de:a2:98:b5:e6:54:77:
71:a7:79:be:7a:f5:2b:3b:29:df:5b:a6:af:3b:e2:21:03:8a:
6e:7c:06:de:2e:14:e7:6f:b6:f5:d2:21:9e:e0:0d:d7:e2:64:
a4:54:3e:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:57:03 2024 by rpki-client on console-ams.rpki-client.org