Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: jE/C5Nhwd6HQQ+s1DEzczgdiSpjQiXDg2o+V3yHt1Qc=
Subject key identifier: 45:4D:87:18:FB:06:51:9B:94:5C:B3:8A:2D:EF:52:3D:99:91:D5:AC
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 0193568AEC41FCAA9F35E648093A730B4986
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 03C1
Signing time: Sat 23 Nov 2024 01:02:45 +0000
Manifest this update: Sat 23 Nov 2024 01:02:45 +0000
Manifest next update: Sun 24 Nov 2024 01:02:45 +0000
Files and hashes: 1: 5G3qdHaQBrJcxSz7QxnWpt2MqRE.roa (hash: Vrr7ey/JQPv6LW5Bar3B+KccjP4H1f5SgFKY2zv2vKk=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: IHv6z+PSV1WdKW9eR3jDlO0WINYWTPuE/z/a2fZjeW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:ec:41:fc:aa:9f:35:e6:48:09:3a:73:0b:49:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Nov 23 01:02:45 2024 GMT
Not After : Nov 24 01:02:45 2024 GMT
Subject: CN=454d8718fb06519b945cb38a2def523d9991d5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d6:8d:2f:54:40:39:e0:21:6a:80:af:af:a6:
06:e6:2e:78:31:d4:57:6e:fc:f1:b5:6c:3e:a2:d1:
42:d0:49:8a:c9:91:11:e4:50:01:8a:c9:05:73:89:
24:8a:70:32:65:51:e9:51:bf:a5:ed:07:01:28:71:
b4:a7:06:46:7b:7d:a3:01:89:16:48:67:0f:62:33:
22:a4:10:6e:2e:c5:d8:8c:74:e7:f5:32:cf:7e:ff:
38:fa:77:f9:24:ff:69:65:b8:16:81:0b:65:fe:70:
23:27:46:1c:e6:e2:3e:5f:e5:79:8d:93:f4:70:05:
c3:15:ea:f2:79:67:3a:95:d3:cf:83:06:a7:a9:fe:
99:f2:64:6d:41:15:1c:96:c6:a7:cd:01:ac:25:60:
01:11:60:4a:dc:0f:6b:23:fb:f9:34:6a:b0:3b:5a:
ab:77:5d:ec:14:6c:58:4f:b3:ab:32:26:0b:51:7f:
4d:95:75:84:fa:c6:7b:32:09:94:2b:e0:cf:c7:ee:
9c:5e:a3:7e:96:85:f3:ad:7d:ca:73:47:85:94:92:
14:8d:40:65:a9:b7:2f:0d:3f:96:c6:da:e5:ed:d2:
82:fa:91:e0:9f:d8:5e:aa:65:4e:93:c4:66:5c:23:
75:5a:64:ab:e9:51:50:1d:ca:4a:5e:92:8d:20:56:
60:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4D:87:18:FB:06:51:9B:94:5C:B3:8A:2D:EF:52:3D:99:91:D5:AC
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:e2:ad:cd:b7:b8:ca:b0:b9:7b:ba:30:31:f2:49:0b:7a:d5:
58:cc:09:0e:c6:f3:33:e9:f4:0c:56:58:95:73:92:8c:a2:9e:
a6:f0:76:9c:64:5c:92:2d:2f:23:f8:59:13:58:d3:8c:c6:5e:
c8:cc:27:39:19:71:eb:3f:52:c8:3a:b3:bc:2c:5a:b1:0a:a1:
bc:69:e8:08:cb:e9:0c:4a:e3:27:fc:69:6f:b6:1d:58:85:6b:
a7:8f:e4:37:7a:62:f9:e8:a0:29:00:b4:91:f0:81:44:e9:b2:
9d:dc:b7:5c:c2:eb:5e:64:00:39:96:d2:d1:ac:b8:47:82:46:
02:91:d4:14:45:f6:3b:09:25:5a:0c:f4:10:d3:38:8b:24:20:
af:82:af:cb:64:ad:0d:86:15:f7:17:74:e7:e8:6e:cc:c6:6b:
ff:07:8d:0a:6a:c8:65:6b:6f:c3:38:2e:15:ce:79:91:fa:37:
61:74:0c:df:74:6b:3f:af:ab:6e:f6:40:a1:f0:d2:19:f1:2f:
b5:be:1c:73:6c:c7:ff:64:74:25:51:d7:db:96:b1:04:4e:1c:
10:5f:01:b8:0a:58:0f:a3:ab:af:0b:9e:d6:26:08:ad:be:f9:
eb:e2:c4:e7:00:73:74:97:b3:a1:f2:59:ee:62:1d:dc:c5:2c:
90:33:f9:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:14:11 2024 by rpki-client on console-fra.rpki-client.org