Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
File: 6OcnETayGhWK70CdMOLGAB1bDak.mft (raw, json)
Hash identifier: Th51ArFJd14U709nR2aPna9gvzRlsf7cgeRYEZPmTwk=
Subject key identifier: 02:E0:FD:87:78:C7:41:2B:DD:74:5D:7C:7A:1E:AA:1F:1F:FD:6A:92
Authority key identifier: E8:E7:27:11:36:B2:1A:15:8A:EF:40:9D:30:E2:C6:00:1D:5B:0D:A9
Certificate issuer: /CN=e8e7271136b21a158aef409d30e2c6001d5b0da9
Certificate serial: 0192587A6BD09B1A2D38B773F58AA26B48DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
Manifest number: 0C43
Signing time: Fri 04 Oct 2024 17:01:10 +0000
Manifest this update: Fri 04 Oct 2024 17:01:10 +0000
Manifest next update: Sat 05 Oct 2024 17:01:10 +0000
Files and hashes: 1: 6OcnETayGhWK70CdMOLGAB1bDak.crl (hash: 5JJQ1ZJd+ZTx5CuV3JWq/V/m3FjvGtXzAnoMZM7375U=)
2: J04ZRIGJ7eag6XPHLDgIPD5LGxU.roa (hash: Cht6tXwP66ZFEXysDMX8fgQRqZWO1doacXfGxX8v3DY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Oct 2024 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:58:7a:6b:d0:9b:1a:2d:38:b7:73:f5:8a:a2:6b:48:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8e7271136b21a158aef409d30e2c6001d5b0da9
Validity
Not Before: Oct 4 17:01:10 2024 GMT
Not After : Oct 5 17:01:10 2024 GMT
Subject: CN=02e0fd8778c7412bdd745d7c7a1eaa1f1ffd6a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6b:06:97:9a:18:aa:33:70:b0:d8:d6:24:ba:
bc:7c:88:38:5b:e6:67:d2:59:b3:32:6c:e3:a7:b3:
da:e4:6f:df:90:66:20:e0:92:8f:bb:82:45:87:ca:
84:ae:e6:28:83:f6:3b:c4:29:15:d3:c6:da:62:b1:
d9:61:48:ff:3d:54:4b:f4:94:54:42:7c:0c:3d:9c:
91:66:78:6a:f1:fb:c8:b8:d3:7d:1b:3b:43:75:11:
38:e5:dd:5a:1c:30:a4:e2:00:4b:9a:54:a6:4f:af:
e5:3e:ef:7d:3c:7a:b2:bd:a1:41:e0:a1:16:2f:27:
99:23:8d:7e:70:fb:14:f3:1c:c0:fc:31:56:8b:62:
53:4d:60:5b:05:64:9e:ae:93:6d:aa:07:f6:36:6e:
47:e8:31:18:81:22:de:90:c2:2a:dd:99:5f:aa:50:
7e:94:a1:f1:f2:1a:e5:f3:20:80:d0:fc:1b:60:b1:
18:b8:f9:ef:bf:14:e5:16:e6:ad:19:fd:cf:0a:a3:
de:09:ed:54:43:f6:c7:10:a5:9c:28:7b:a3:c2:67:
79:69:17:83:4f:c0:fd:62:f8:9f:bd:fe:05:ba:18:
b5:f2:08:e2:cb:c1:4e:ed:30:1b:67:41:c5:0d:1e:
3e:6e:3f:67:19:cd:73:e9:30:4f:fd:ab:53:fc:b9:
24:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E0:FD:87:78:C7:41:2B:DD:74:5D:7C:7A:1E:AA:1F:1F:FD:6A:92
X509v3 Authority Key Identifier:
keyid:E8:E7:27:11:36:B2:1A:15:8A:EF:40:9D:30:E2:C6:00:1D:5B:0D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6OcnETayGhWK70CdMOLGAB1bDak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cbf425-b958-4e49-9c96-8356d2d42771/1/6OcnETayGhWK70CdMOLGAB1bDak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ca:1b:40:cf:b9:b3:3e:dc:2e:47:73:3d:c6:84:23:0b:da:
7d:c4:99:69:03:aa:f6:42:55:5e:13:74:cb:ec:f7:40:a8:91:
c5:8f:ad:42:b3:92:d8:71:09:09:e4:63:d7:79:c3:39:2f:39:
07:18:9d:c8:bb:9f:3b:3e:c2:19:6a:f1:ac:2a:fc:39:74:07:
d6:6b:16:8d:53:6b:b8:7e:f1:09:ea:eb:dd:ea:b2:c6:2e:31:
4c:a0:e4:db:d8:b8:43:59:4c:a9:16:33:ca:d6:43:3d:d7:14:
3d:90:b9:38:44:06:7a:3c:eb:12:19:ca:7c:6b:a1:04:ba:8f:
07:84:d5:98:79:eb:09:ff:95:16:9c:3b:6c:75:87:16:e3:6c:
ad:38:a8:41:d5:8a:36:6d:dc:d0:82:4b:7f:4c:51:f2:8c:13:
f5:81:b7:be:d3:b8:f3:d4:59:23:31:d8:c2:d5:39:8d:66:03:
a8:0b:9b:16:57:3c:89:2a:8f:46:71:13:68:be:4c:69:a4:d1:
ce:18:06:0c:c5:e1:4f:ed:3a:2d:0c:8d:d6:22:97:9c:e3:5e:
d4:ca:93:94:b0:dc:bd:91:34:c6:bc:e0:6e:1f:be:ff:ec:32:
d0:93:a4:24:bf:c2:cc:a1:f4:15:8b:88:e4:7c:00:11:74:92:
75:5b:90:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 5 00:12:08 2024 by rpki-client on console-fra.rpki-client.org