Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
File: h0HsF9wDCbE9iKZ-oi3Luyak46E.mft (raw, json)
Hash identifier: mEs4PX0dGF5dBxo+El9kzaDSSdYjDvB8Il24TSxia3I=
Subject key identifier: F9:1F:91:DA:9E:86:ED:A6:D1:27:50:C8:8B:24:5F:A7:CF:6E:49:47
Authority key identifier: 87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
Certificate issuer: /CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Certificate serial: 019369A18918652E8DD66C82FF3098D1D25A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
Manifest number: 06A6
Signing time: Tue 26 Nov 2024 18:00:14 +0000
Manifest this update: Tue 26 Nov 2024 18:00:14 +0000
Manifest next update: Wed 27 Nov 2024 18:00:14 +0000
Files and hashes: 1: XvfSLjhoVhrDWlKhd4RiYCrFulQ.roa (hash: 2ezV8CQoOgrFf84zgF805ts2yAkrNGR0+Vkdd61ZSco=)
2: h0HsF9wDCbE9iKZ-oi3Luyak46E.crl (hash: pFC0VAxf57AM7YnWLlQAFzUOyW+AuX2NkxpHpzSEWnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 18:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:a1:89:18:65:2e:8d:d6:6c:82:ff:30:98:d1:d2:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Validity
Not Before: Nov 26 18:00:14 2024 GMT
Not After : Nov 27 18:00:14 2024 GMT
Subject: CN=f91f91da9e86eda6d12750c88b245fa7cf6e4947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:88:ab:1d:aa:54:58:be:b7:53:8a:41:e1:9d:
4e:18:3a:ea:2e:90:9a:3d:32:73:da:45:37:73:b1:
e5:62:f3:34:d2:3a:cc:bb:6b:92:03:06:32:34:cf:
73:65:32:24:3f:72:0d:6a:2e:4f:99:56:78:43:5d:
79:9d:54:ff:d6:03:60:56:67:f7:b8:02:a3:96:2e:
e9:7e:76:c3:e8:8f:50:1f:6a:bd:70:71:08:27:7d:
26:4c:8b:10:ca:ad:f9:99:aa:1f:18:34:96:ba:ba:
ab:2f:83:7a:07:62:3b:53:b7:ff:66:8f:35:b7:b8:
c3:30:6e:66:94:59:e2:bb:fc:5d:9a:30:62:8e:61:
bd:79:6a:b2:83:cb:9c:3a:de:57:7e:9d:af:64:67:
5d:32:6f:40:3c:c8:24:e3:92:ea:fd:ab:b5:42:b8:
80:bb:d9:ef:b3:7a:91:38:3c:b7:ba:95:54:e9:b3:
e0:94:f2:90:61:c0:88:3e:bf:a1:25:55:c1:60:88:
81:01:15:0d:0b:d4:b0:5f:24:31:b7:aa:aa:a4:d2:
45:b9:32:a2:51:e5:98:8e:54:e8:f3:20:ba:d9:da:
53:09:50:aa:e3:7a:af:1b:c6:be:66:22:95:53:3a:
40:a8:a4:99:99:bb:69:3e:ff:83:d8:45:93:e6:b7:
5d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:1F:91:DA:9E:86:ED:A6:D1:27:50:C8:8B:24:5F:A7:CF:6E:49:47
X509v3 Authority Key Identifier:
keyid:87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:ef:df:26:a5:5f:09:90:31:17:7b:8e:ed:a7:29:f3:f4:d4:
14:33:ba:14:9a:dc:7e:a5:17:37:0a:1d:47:1a:7a:31:35:87:
de:7d:34:dd:6e:1d:00:cb:be:1b:fc:68:fa:0a:68:eb:d5:ac:
e3:a5:f6:cf:fe:5e:f4:dd:d4:ae:d0:57:ab:66:02:19:13:8b:
59:6b:c2:5c:11:d3:68:a5:33:81:1a:a6:fe:db:6f:ac:10:a3:
3f:cb:a0:1d:7a:73:71:fa:c5:ac:df:7b:64:d0:8e:be:e0:ac:
76:14:34:d8:3f:51:2a:c8:13:d4:9a:63:81:ef:c9:8e:55:ba:
bd:62:cb:6b:93:c8:b7:b2:c4:98:c8:43:ec:cb:16:00:c8:4b:
58:cf:f5:5a:f9:0e:ce:a2:da:6b:7c:cb:5a:6c:7c:35:2f:f5:
d9:e5:4c:20:5a:cd:b0:1b:05:f0:00:09:ba:9b:ef:0f:f0:48:
be:d3:91:ec:b4:92:43:0b:cd:88:54:8e:b3:8c:d1:b6:ce:51:
f8:90:a1:bd:29:c4:78:7b:ef:81:86:20:04:64:78:d9:f3:3c:
aa:42:12:cc:83:8b:b0:1f:1b:f5:fd:59:2a:44:e9:9c:c6:89:
bf:cf:22:25:16:4c:0c:cb:41:e7:e2:eb:fe:29:dd:dd:6b:1a:
f4:a9:1e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:37:13 2024 by rpki-client on console-ams.rpki-client.org