Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: nxlgD9fxLXzCXYTEtED8I39XxL8484WylHXPQ+aNH8Q=
Subject key identifier: 45:76:31:A2:A0:CC:69:69:05:37:23:6D:E0:D2:48:23:86:98:71:60
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 01935274EE26A25479651659EBC6803693D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 137A
Signing time: Fri 22 Nov 2024 06:00:14 +0000
Manifest this update: Fri 22 Nov 2024 06:00:14 +0000
Manifest next update: Sat 23 Nov 2024 06:00:14 +0000
Files and hashes: 1: 1-mEOz1QhH5qiSq05NM9If9vxbbA.roa (hash: TxDUT3PFtFrJIC/GAC0uMHooIlbt5yGsILTn9fWXvBw=)
2: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: Ajpl424D1D3HM6KDRjVQL3Up7e+zr97zOh0q+TtOLM4=)
3: 55UfVCt_9iB9lC8MG4ipoNmIsBU.roa (hash: Xe4xpS4ZUBXRv10mnBpRZyEy0XMMOxqkOlAoTl2LRPo=)
4: CH1fl6WexykPoDayWvPmQ-sD1wc.roa (hash: HbqT26ZpcMSbdvWRL+5JKal/TKMYKW/jjpuTSRHhXws=)
5: CLLC0H2MR8_tWsqFTOP-vLjoUtI.roa (hash: aT2IDdB2eQQMAyN7OShCQUcR1yfX8FAMgHt+2Velkr4=)
6: J22rva46d9b4wbv-anwRtY-Aq2o.roa (hash: mURWgZd+OUh0Tqcz1pS1zLRXgorBIFJ+tDvDDRGn4X0=)
7: WN2xDupGKIx9nCtbS27igEXDwUk.roa (hash: Km53IdYf4oetmNCnPTcUgrTDzqb19yNtxEuTeHgFwEU=)
8: cLtxP9SauzgQ5rTzBkbCaZZdefY.roa (hash: AAVRl1diRH6nGcr5XzrSB5GXTgLC5uB2UyZByM5tBJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:74:ee:26:a2:54:79:65:16:59:eb:c6:80:36:93:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Nov 22 06:00:14 2024 GMT
Not After : Nov 23 06:00:14 2024 GMT
Subject: CN=457631a2a0cc69690537236de0d2482386987160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:46:28:02:c6:46:43:79:b8:5d:2b:13:50:e9:
6c:83:17:cd:0f:7a:de:2e:43:01:41:71:47:49:54:
fb:9a:3b:fa:ef:fe:06:c6:ad:ff:fd:42:47:bc:72:
d9:32:f5:67:b3:26:84:9b:7a:66:e4:5f:08:1d:19:
28:25:a3:17:39:fb:ae:7a:94:10:e8:6d:21:29:65:
a8:4f:f0:ab:e8:96:ec:34:5c:3e:42:24:39:55:18:
04:61:63:04:4c:c4:8f:f3:83:5c:3f:88:9e:1d:ab:
b7:84:ae:34:5b:3a:e0:0e:38:1e:46:d8:ba:91:84:
5a:33:3d:17:45:0c:74:11:ac:53:b0:c5:88:10:93:
50:27:b6:9f:b9:b8:c1:2e:47:37:5f:6a:db:4d:80:
65:6b:82:6b:6d:6b:28:c6:6e:6c:b7:e5:e3:eb:bd:
91:be:b7:fb:9c:78:20:c3:6a:0c:16:48:f4:e2:88:
7c:bc:dc:41:7a:c2:0d:d4:d0:10:28:3f:1b:f5:e9:
e5:5e:52:68:5b:ed:f8:0c:93:14:0c:a1:8f:f3:dc:
bc:f1:01:a9:73:51:62:52:e5:72:d5:ba:09:86:b7:
29:19:eb:6c:16:8a:8b:e4:36:b7:e0:34:c3:a7:2f:
3e:62:b5:5f:f3:5b:f6:cb:e3:16:2c:1c:45:54:2e:
91:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:76:31:A2:A0:CC:69:69:05:37:23:6D:E0:D2:48:23:86:98:71:60
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:76:62:c6:10:8a:e0:d5:29:be:15:db:27:08:de:c2:c8:d9:
4f:d1:d4:1b:c3:cd:26:03:d3:71:0e:de:e0:61:82:72:9c:96:
9c:f3:7e:53:ca:95:c7:d0:70:f3:f0:cc:6e:5e:84:f2:b5:d5:
9b:b8:a2:bd:84:89:f8:ee:ee:e9:92:6a:aa:71:d0:96:d1:57:
4f:79:c3:e6:fc:ee:1e:fe:9b:02:e5:12:76:31:75:2a:0d:de:
bf:65:8b:50:c0:3c:b1:68:29:27:aa:e0:6d:7c:b4:98:d3:5c:
09:ba:25:02:c4:ac:3e:37:b3:ca:7c:86:1b:92:77:8d:ff:7f:
56:50:ad:81:b3:c1:6b:b1:c8:91:35:d8:d5:ed:1d:78:bb:5f:
01:83:84:36:ab:d5:88:59:55:aa:7c:64:b0:ea:86:1a:f6:7f:
cf:f7:d7:89:8b:a4:a9:70:d3:d8:5a:ae:cc:74:2e:cf:dd:02:
6b:72:1b:96:9b:ae:fc:85:6a:53:16:46:a4:0f:9f:06:4d:af:
77:31:95:4e:4a:6c:cd:20:fc:07:00:06:1e:20:00:ce:9a:d8:
95:e4:da:26:84:56:e6:72:86:74:b5:e0:9e:19:b1:a8:1e:c0:
6a:07:60:0a:ca:88:9c:91:87:a0:e9:c2:86:52:85:7d:00:3d:
da:c3:5d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:56:12 2024 by rpki-client on console-fra.rpki-client.org