Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: TjMiqvJj0TIQkd0McLOLMCCZRpm+y9NmIKS30yBQlFU=
Subject key identifier: CD:2B:DD:63:6D:B7:74:78:4C:85:2A:72:6C:E3:6A:D3:2F:5C:63:5F
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 01935764953A911469203C8926222DB3BD14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 136D
Signing time: Sat 23 Nov 2024 05:00:29 +0000
Manifest this update: Sat 23 Nov 2024 05:00:29 +0000
Manifest next update: Sun 24 Nov 2024 05:00:29 +0000
Files and hashes: 1: TZF3V6rxJRPGv2c3gJ27BH8p2s4.roa (hash: NEhUEdZFKrh5u9EluRtSpMC3NaUzgqSNmInFgYrn9IU=)
2: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: gvbTmC1yuQawsjczzuNEG7eSucFrow8/Oc2tfYxZ/Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:95:3a:91:14:69:20:3c:89:26:22:2d:b3:bd:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Nov 23 05:00:29 2024 GMT
Not After : Nov 24 05:00:29 2024 GMT
Subject: CN=cd2bdd636db774784c852a726ce36ad32f5c635f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:64:6e:e9:8b:1c:c5:57:73:8a:9d:62:dc:56:
3d:86:38:0d:fa:c2:50:53:cd:ce:36:0c:47:26:ec:
30:b3:a3:22:12:cf:87:ba:bf:19:83:09:0a:58:2e:
77:a1:61:04:43:40:b3:e7:a1:33:eb:14:8a:43:4b:
ce:50:51:0b:cc:42:4f:92:13:72:12:b9:de:9b:b6:
9c:a7:45:10:df:49:b0:73:59:9f:2d:79:8c:89:9f:
53:c5:e9:ae:4f:7f:c1:19:68:c7:59:05:f7:95:f6:
9e:8f:0b:c6:c4:f0:15:9e:2e:5e:85:1f:93:26:5f:
63:33:39:87:b6:53:dd:35:ff:3c:bc:12:c2:77:43:
6a:d6:9a:36:2f:a0:6f:4f:b7:be:e9:3c:d9:82:a2:
be:1e:d8:ac:c0:34:a9:56:e8:60:ea:f1:40:81:a9:
45:ae:51:01:3e:12:3d:ca:2a:cf:6c:78:31:78:90:
65:2e:c8:a0:06:3c:d3:d7:2c:49:cb:50:76:7a:14:
e3:fe:e9:f0:3a:53:eb:ea:07:43:8f:d4:3f:c1:7c:
fb:89:59:fc:52:21:26:e5:58:df:08:b9:2a:45:b2:
ec:6d:39:7a:53:ea:7e:c2:a3:bd:a6:ba:2f:2f:13:
c4:e8:e2:7a:27:af:4b:c5:67:c9:fc:25:f6:1a:bb:
07:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2B:DD:63:6D:B7:74:78:4C:85:2A:72:6C:E3:6A:D3:2F:5C:63:5F
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:a1:96:fe:89:87:47:0b:5e:7d:b7:5b:4e:79:4f:f7:04:bf:
26:fa:23:21:d0:21:8d:98:85:52:6d:fd:5f:08:49:f9:9b:c4:
1f:56:e6:6e:b3:a3:be:3c:fe:04:eb:0a:79:67:76:c0:8d:22:
17:7f:94:48:4a:27:ac:3b:9f:4e:bc:7d:c4:fa:a3:57:e8:70:
cd:8b:17:fa:19:6e:74:95:5a:59:50:f2:b9:6b:c5:60:85:e8:
0f:25:97:1e:9c:ac:d8:21:b0:1d:85:6e:96:a2:2d:e1:bb:36:
0a:f2:80:08:16:b7:3d:58:95:e9:b8:ba:c9:48:3b:0c:d3:b0:
bf:a1:7b:dc:16:f6:19:0c:ef:27:e1:fe:e7:23:c8:b0:a3:4a:
99:7b:68:25:39:ee:0c:31:72:8a:6e:1c:7f:01:05:5e:02:10:
ab:41:85:dc:51:2e:79:07:d3:23:40:66:3b:13:da:f8:8b:11:
74:39:7a:d8:66:ad:4a:dd:e8:41:55:01:dc:e2:7b:ba:13:16:
7f:57:77:e0:f9:aa:6f:13:6e:ea:e1:35:5f:39:0b:1e:15:19:
a4:ce:50:c5:90:b5:d8:e2:2e:e6:4e:1f:9d:65:e9:1b:6f:5a:
e1:7c:3f:36:52:7c:3a:54:95:fb:b7:17:7f:f4:38:df:e3:7e:
0d:af:25:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:56:33 2024 by rpki-client on console-ams.rpki-client.org