Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
File: tm6nNZIhwbd9bMAG97ZwapqQgpk.mft (raw, json)
Hash identifier: 4w0JBJUnvR/STcm6jCpSU2GjWaIVOKIRxCqAZ7hzUBU=
Subject key identifier: 8B:7A:C1:2B:3E:0A:BF:0E:05:5B:1A:1E:85:60:22:59:30:B5:77:FE
Authority key identifier: B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
Certificate issuer: /CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Certificate serial: 0193549ABE049274EF27B4BA507443A6D553
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
Manifest number: 1376
Signing time: Fri 22 Nov 2024 16:00:47 +0000
Manifest this update: Fri 22 Nov 2024 16:00:47 +0000
Manifest next update: Sat 23 Nov 2024 16:00:47 +0000
Files and hashes: 1: O-7sU9_MZlIvdSG5HPeR_I0IJ4A.roa (hash: H7N9np4xGeenYMCvYq01MCB4NhXmKz+Ecv+xsHlcYKY=)
2: tm6nNZIhwbd9bMAG97ZwapqQgpk.crl (hash: fngfwkfELwjZ8R18wYjcWVTR+YeAqLjTjyRP8y4HJKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9a:be:04:92:74:ef:27:b4:ba:50:74:43:a6:d5:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Validity
Not Before: Nov 22 16:00:47 2024 GMT
Not After : Nov 23 16:00:47 2024 GMT
Subject: CN=8b7ac12b3e0abf0e055b1a1e8560225930b577fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bc:45:b2:7a:7c:3a:38:7a:9b:b9:59:d7:48:
81:6a:5e:88:d9:fa:fb:b5:b8:54:21:76:24:c0:bd:
dd:ea:b4:50:eb:39:fc:bd:2e:0f:f4:8b:be:db:9f:
07:ff:e0:d2:62:26:e6:e6:94:75:1c:2e:df:bd:af:
b5:5f:05:f3:8b:cf:89:c5:a8:1b:36:d7:01:e2:e7:
a0:d2:92:4d:fb:19:40:fe:d5:7c:fd:44:e9:46:07:
b5:57:7a:d6:8d:1d:a5:f2:1b:fd:97:65:14:dc:03:
7d:20:eb:19:21:79:f2:cc:38:c7:4b:23:f0:02:ad:
7f:cd:eb:95:86:ea:0a:e6:32:3d:5c:1e:77:31:df:
75:f3:d7:40:18:e6:57:40:38:63:45:90:ac:1b:f9:
7c:ce:4b:85:3f:04:fd:e6:77:10:ff:90:92:98:75:
e7:40:e1:d8:81:a8:1a:5e:1b:51:a4:18:40:0c:f7:
6c:1d:81:cd:84:12:3f:46:77:89:84:18:ca:54:ed:
20:85:25:a4:7e:12:af:4a:f7:9f:6b:27:5c:df:30:
11:bb:c1:42:a2:78:78:0a:01:4f:7c:ea:d6:0e:87:
4d:55:de:3a:61:e9:7e:4b:aa:6b:da:9c:de:d8:a8:
c4:ba:d8:eb:8f:a3:9d:65:1b:51:37:c3:b9:fd:c4:
11:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:7A:C1:2B:3E:0A:BF:0E:05:5B:1A:1E:85:60:22:59:30:B5:77:FE
X509v3 Authority Key Identifier:
keyid:B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:46:77:22:c9:e1:bc:e2:81:44:73:f8:ab:39:39:c9:59:af:
b5:c6:ea:22:50:2f:bb:00:ed:f5:a6:45:cf:d6:7e:55:85:33:
5a:17:e2:54:4c:ad:f9:36:65:0e:9e:39:8b:e8:91:39:45:21:
a3:f8:50:aa:0d:ea:f3:f1:4b:1a:45:0d:95:4f:75:78:af:bf:
93:d1:a0:31:1b:07:6f:c0:4a:99:41:82:f4:25:19:10:eb:06:
a3:12:a7:95:8c:9b:06:19:b7:b0:67:0b:43:b3:5a:c7:42:a4:
28:ed:7d:15:bc:a4:22:02:03:a1:c7:62:1a:ca:c4:06:5e:a0:
57:d1:17:78:3e:1c:51:65:95:30:fa:7e:6f:57:1c:28:7a:e3:
31:7a:fa:a7:62:c7:83:6a:19:33:cf:62:26:9b:80:90:cb:b5:
37:90:03:1e:1a:1a:bd:80:ff:51:ef:2c:8b:52:09:9e:7f:d1:
96:79:2e:42:0d:48:ba:87:a7:7d:c4:40:88:5e:0c:93:02:57:
b6:53:70:90:bd:06:ed:af:ed:44:0e:c2:4f:5a:53:a4:98:22:
49:34:30:7c:f6:1b:b5:5b:55:5c:dc:b3:20:99:24:3f:bf:25:
21:64:75:84:1c:7d:e4:62:16:04:a9:3a:83:05:6e:a8:7c:7d:
6d:16:75:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:23:47 2024 by rpki-client on console-ams.rpki-client.org