Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
File: jghAgExmgMQfIehybzgLleaelEc.mft (raw, json)
Hash identifier: U/lc+r8+hhs2UNT5gvejoa4VJc0npMkXUYb4QIt3LEY=
Subject key identifier: 85:EF:16:25:F7:8C:E0:68:E5:D8:B9:09:91:E7:6D:5E:04:35:B3:33
Authority key identifier: 8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
Certificate issuer: /CN=8e0840804c6680c41f21e8726f380b95e69e9447
Certificate serial: 01935689FC545BFFC700F0E63B52576AE775
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
Manifest number: 08C0
Signing time: Sat 23 Nov 2024 01:01:43 +0000
Manifest this update: Sat 23 Nov 2024 01:01:43 +0000
Manifest next update: Sun 24 Nov 2024 01:01:43 +0000
Files and hashes: 1: RT3J7RweelZjFAa5g3tboUv8NmA.roa (hash: EHj0eOx09It5sAkDFKhlL3UEmT/PziTQeXUOwFWCZM0=)
2: jghAgExmgMQfIehybzgLleaelEc.crl (hash: JR4JWpUSUUkN2//L3cjP8MEF8xgfoWUi4OreiNRKMM4=)
3: uXj2wCvJaQ-F8e38VF0a8MZUM-8.roa (hash: NbNdD+qLDELB7Ys2Bbjo3azUSiU91geIyr0sCg4lFuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:fc:54:5b:ff:c7:00:f0:e6:3b:52:57:6a:e7:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0840804c6680c41f21e8726f380b95e69e9447
Validity
Not Before: Nov 23 01:01:43 2024 GMT
Not After : Nov 24 01:01:43 2024 GMT
Subject: CN=85ef1625f78ce068e5d8b90991e76d5e0435b333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bd:49:9e:ac:cb:e6:19:42:a7:3d:56:f8:ae:
dd:7d:3b:e7:d1:e6:02:25:51:f5:bd:93:28:f7:9d:
6d:51:fd:07:31:91:7f:d9:58:23:69:fb:48:2c:a7:
3b:e8:2c:c4:00:64:52:65:27:3b:60:02:94:91:7d:
94:4b:b5:5f:b3:17:24:11:58:3b:03:bf:5d:b8:a1:
fb:0c:36:98:41:1b:eb:d6:77:8f:44:fa:3f:37:3f:
61:52:52:f4:6c:ad:52:c7:23:18:d6:51:66:31:43:
df:af:c4:7c:45:d0:e4:01:04:12:42:74:cc:21:32:
6d:8d:4f:08:9f:01:b9:4b:93:e0:35:c8:18:05:dc:
18:e9:c7:a7:93:b1:85:6f:96:e8:f6:0c:32:66:b1:
49:68:19:88:ff:70:c4:e9:88:09:7b:c5:e6:d7:d8:
f0:0c:4e:e8:a8:91:7c:7d:c1:3e:50:db:8e:12:a2:
6a:90:35:11:93:95:52:c9:2a:fe:69:a4:e1:0f:28:
6b:1b:ef:06:15:9a:dd:ff:ab:25:93:12:7c:60:4a:
c7:1e:da:86:b6:08:0c:34:f3:50:d1:cb:f4:0d:77:
a0:91:d7:02:4c:89:83:9a:e2:2f:44:40:65:b7:0c:
d9:e4:1e:e5:c8:f9:d8:bc:14:da:b6:bb:ba:49:28:
e9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:EF:16:25:F7:8C:E0:68:E5:D8:B9:09:91:E7:6D:5E:04:35:B3:33
X509v3 Authority Key Identifier:
keyid:8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:e4:36:31:5f:07:59:da:49:10:63:36:42:a0:37:63:4a:f5:
c4:1e:7a:ff:03:7e:11:ef:cc:10:33:d0:12:07:be:39:4d:15:
5e:03:3c:2f:5c:e9:1c:3f:c2:b9:7e:80:b8:56:42:88:2e:c0:
24:76:e8:2d:62:fa:69:58:d1:9d:9f:97:71:70:45:29:5c:ab:
85:e9:0a:c9:d9:e2:a3:24:c3:f4:b6:5f:e3:00:b1:18:e4:e3:
7f:38:11:4a:da:80:41:52:45:99:54:e6:5a:5a:78:bf:1f:11:
5d:ba:de:f3:2e:a7:47:9e:59:3e:a0:58:50:2f:af:d6:28:b4:
6d:d1:5a:50:eb:56:16:e6:03:19:ff:e5:11:c3:58:8f:85:24:
c7:35:49:a7:80:98:e1:1e:10:fb:fa:e6:63:ee:a1:47:a0:51:
be:c1:dd:3a:64:a9:2a:ae:73:6f:81:e6:3a:c7:83:80:dc:b5:
8b:57:1a:75:3d:bb:27:e8:e3:bd:7c:66:b7:1d:26:5b:7b:18:
15:81:77:97:f4:31:bf:54:56:e2:e0:4b:11:04:af:ed:bf:fa:
29:f0:e0:65:1c:60:a7:05:0b:28:0e:3d:10:e8:84:31:62:0e:
9a:75:ba:8a:b3:79:f2:20:4e:b3:e4:7b:76:f8:fb:6d:b0:5a:
0d:dd:32:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:15:11 2024 by rpki-client on console-fra.rpki-client.org