Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
File: 8hWid5SXEbLAHNxmnkDhcTlYVbs.mft (raw, json)
Hash identifier: eKedf2PJvhg1NeaetAiRX+dRp2gnE2eH/JNSpyVw8XU=
Subject key identifier: 51:F5:37:EF:99:AA:54:7D:05:7C:F2:13:67:E6:48:0E:EF:95:E1:BD
Authority key identifier: F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
Certificate issuer: /CN=f215a277949711b2c01cdc669e40e171395855bb
Certificate serial: 019406B4264B9FC05569B368C2F82961BB63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
Manifest number: 13CD
Signing time: Fri 27 Dec 2024 06:00:57 +0000
Manifest this update: Fri 27 Dec 2024 06:00:57 +0000
Manifest next update: Sat 28 Dec 2024 06:00:57 +0000
Files and hashes: 1: 8hWid5SXEbLAHNxmnkDhcTlYVbs.crl (hash: K4/ft7tCNZVTFLemyg7dYpxfkPXFW4qOKHa2SRHKnlQ=)
2: UizrqC8wWRX57ztTM4vDeGUEBHI.roa (hash: JJ3pexXSVSQ4/neNTxS/NVKY3ENlLhNVmZ2bq7hT/mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:b4:26:4b:9f:c0:55:69:b3:68:c2:f8:29:61:bb:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f215a277949711b2c01cdc669e40e171395855bb
Validity
Not Before: Dec 27 06:00:57 2024 GMT
Not After : Dec 28 06:00:57 2024 GMT
Subject: CN=51f537ef99aa547d057cf21367e6480eef95e1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6f:f1:ae:5f:88:81:be:9c:7f:9b:04:92:ff:
58:47:b2:e7:90:7d:f3:fe:24:10:69:8c:11:ae:51:
df:7a:2b:4d:1e:0d:3a:0a:6f:f3:93:ba:de:d4:71:
e3:c8:8e:84:a9:fe:b5:87:4a:36:2f:05:d6:b6:4f:
0d:5a:8d:ec:2f:a8:17:d2:95:76:d9:b2:f3:9d:06:
06:55:85:5c:c1:18:14:0a:ad:37:9c:ab:be:29:0a:
6a:af:8c:c0:09:5e:53:7c:5b:af:1a:17:de:f7:ee:
04:ed:1b:e2:e7:e7:07:66:65:da:d2:70:ff:32:8a:
d5:84:ba:b9:73:a5:79:ec:79:69:2b:b3:d9:df:55:
c2:bc:b2:c8:ac:9c:5c:5d:a6:1f:19:ec:07:93:65:
ba:01:7a:29:e0:1c:b3:d0:ab:91:c0:e2:41:f6:63:
d3:00:7f:ec:0f:f3:01:2c:ef:f7:2a:83:4a:fb:11:
fb:14:65:fb:96:cf:77:e2:b7:6c:24:ff:6b:e1:ff:
c7:c7:8c:7a:52:42:f0:8c:b8:c2:4a:ee:f0:4f:35:
76:ac:0c:87:cf:29:9f:3d:25:2c:d9:37:c2:4d:69:
93:f0:00:12:c1:55:f3:7c:9a:f4:46:f6:57:e2:e3:
ae:34:d3:88:06:6a:ed:1b:00:30:20:14:e7:e3:14:
36:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F5:37:EF:99:AA:54:7D:05:7C:F2:13:67:E6:48:0E:EF:95:E1:BD
X509v3 Authority Key Identifier:
keyid:F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:a1:ed:54:87:7f:fe:af:cf:34:08:8c:bd:03:12:3f:85:ee:
47:09:e3:03:4e:13:93:79:1f:00:ad:e3:60:c7:ba:82:99:0e:
22:3d:75:8e:98:86:b3:49:61:d7:9d:ce:98:bb:36:36:4a:0d:
8b:49:5c:39:0d:c0:93:e7:6e:48:23:78:b5:46:36:07:26:e1:
81:59:a6:f9:3e:59:7e:07:62:d9:92:a2:96:20:05:b5:d9:d7:
eb:4e:e2:19:c9:00:69:5f:2c:9e:1c:fb:78:71:63:56:e5:81:
24:a3:6b:c5:b6:69:ed:c4:96:2a:b5:dd:d8:31:a3:b4:40:1f:
1e:74:d4:c6:ca:1e:2a:41:4a:aa:6e:c2:92:52:70:fa:23:70:
a4:7d:6e:d0:61:09:33:89:04:2f:83:6c:50:99:45:38:1a:a9:
15:c2:a8:d6:37:0e:23:d8:ef:2a:e9:c4:32:1f:97:85:5b:8f:
07:d3:76:6b:8a:33:7f:c2:ab:89:06:87:e8:58:2a:aa:0b:d5:
cb:04:6d:97:40:1f:d3:47:06:3a:a3:8e:9c:b7:b8:9c:3f:b5:
ff:4f:20:b9:e5:68:31:8b:44:47:82:15:fa:8b:f1:65:50:6c:
c8:65:ed:cd:8c:87:cc:1e:8e:ce:23:60:a1:07:cb:42:d7:1d:
74:82:f8:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 11:10:56 2024 by rpki-client on console-fra.rpki-client.org