Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
File: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft (raw, json)
Hash identifier: E+S2YkvGpDySg/D+obUycWzcZ8akcnnAijDrIiFbWac=
Subject key identifier: 5C:E3:74:E0:64:9E:8E:66:F5:0F:DF:6B:35:AB:B4:73:A8:88:B7:17
Authority key identifier: EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
Certificate issuer: /CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Certificate serial: 019358793BD96B4C25D0C3B18ED2C534B37F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
Manifest number: 0C7E
Signing time: Sat 23 Nov 2024 10:02:40 +0000
Manifest this update: Sat 23 Nov 2024 10:02:40 +0000
Manifest next update: Sun 24 Nov 2024 10:02:40 +0000
Files and hashes: 1: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl (hash: DyuY0qqDAoGVgxevQb/d1vSK5BTqTA8TywQx4U/OSYE=)
2: rXYAsgpop4FJnePlGJv5Vaz1SR8.roa (hash: /+MrVQeGg9NyhozDwBDr6CNIwsovR2RGxqLjplAyURo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:79:3b:d9:6b:4c:25:d0:c3:b1:8e:d2:c5:34:b3:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Validity
Not Before: Nov 23 10:02:40 2024 GMT
Not After : Nov 24 10:02:40 2024 GMT
Subject: CN=5ce374e0649e8e66f50fdf6b35abb473a888b717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:74:e2:63:b0:17:0f:86:c2:bc:08:b4:b6:41:
2d:16:75:49:ef:bf:01:f6:71:77:b6:6e:e0:5a:37:
9b:2a:2d:e7:ac:37:18:98:72:9e:8c:ab:d3:8d:d5:
19:ba:b4:ba:35:ef:fe:f7:f9:51:3f:5a:2e:fa:3a:
29:9e:09:52:3c:68:14:f0:e4:5a:af:71:42:2c:28:
5c:a1:05:84:88:1c:39:2c:ff:d0:9b:15:87:ac:23:
38:cf:ce:11:0b:61:eb:05:50:62:74:1a:4b:f6:61:
0c:eb:0a:f5:85:68:66:f9:ff:c2:18:eb:4f:5e:d7:
c1:7d:0f:04:0c:95:7a:0d:e6:45:52:5e:4a:97:c4:
55:b5:0f:65:3c:d0:b8:0e:a1:03:42:9e:c8:72:e3:
71:be:c0:bc:b7:c8:31:73:db:62:03:00:1a:0d:60:
f0:e3:54:31:d7:1b:9c:4c:1d:a7:6f:61:c6:22:12:
f4:c9:c0:ea:ab:69:58:54:a6:cb:11:17:b7:89:c4:
72:1e:28:8c:19:cf:30:dc:07:0c:50:e2:cf:94:84:
22:9e:94:ef:27:83:a6:9d:22:aa:c1:c1:d1:ae:00:
ae:da:12:90:ea:e8:ef:1c:d9:00:42:31:33:83:04:
46:de:15:b0:9b:bc:2a:d8:d9:06:e1:c0:6c:58:db:
ac:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E3:74:E0:64:9E:8E:66:F5:0F:DF:6B:35:AB:B4:73:A8:88:B7:17
X509v3 Authority Key Identifier:
keyid:EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:8b:8c:0e:d4:64:eb:53:fc:11:b9:11:e4:c1:55:38:b0:75:
d4:27:79:eb:95:00:73:e6:55:7d:cb:9f:24:44:58:27:15:5c:
70:cc:92:a8:aa:1e:55:77:b5:ba:01:ef:47:5d:be:51:f8:a7:
78:c8:a8:d5:e7:cb:f7:b7:f2:31:05:2b:00:3c:7e:d4:b9:26:
93:32:a5:d5:01:62:6e:93:6c:21:40:4a:90:47:53:34:11:0e:
13:42:17:45:e5:8f:9f:b5:48:f7:9f:05:76:1e:73:44:51:92:
57:48:53:10:3b:86:cd:b5:31:8a:d4:a1:b6:a9:bf:33:0f:9a:
cd:a9:ba:6f:4e:26:9c:76:96:2d:b0:04:3f:5d:9a:b1:ec:c0:
24:12:6b:be:a6:db:34:81:62:1f:5d:94:1d:23:40:6c:1d:1f:
cb:3c:95:17:57:53:62:46:b2:ea:1a:f2:48:46:d3:ef:fd:1f:
be:c6:4e:e0:b1:3c:cf:3e:f4:76:89:f3:76:e0:2d:8c:14:e3:
ef:a8:44:69:be:21:a3:e7:d0:03:5e:4b:2b:d8:9c:c2:c1:69:
e4:08:b9:13:ac:3d:20:76:e8:24:58:7c:c0:4c:7c:b3:5f:20:
b1:ae:d7:92:a7:9e:62:e5:f6:ca:ff:64:72:7a:8e:2c:5d:02:
82:d3:11:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:04:52 2024 by rpki-client on console-fra.rpki-client.org