Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
File: a3sSBFsa8JrPlmLuNbos1-HIW60.mft (raw, json)
Hash identifier: ihad8W53C9vj3pfokDRC04uiHvswS0L2d/EhaAfDvCc=
Subject key identifier: AB:D6:81:C8:1B:60:AA:7C:67:C1:E4:93:56:7A:CC:6A:AF:AE:57:99
Authority key identifier: 6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
Certificate issuer: /CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Certificate serial: 0193579BDA289EC2ED49D48687184C1C161D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
Manifest number: 031C
Signing time: Sat 23 Nov 2024 06:00:51 +0000
Manifest this update: Sat 23 Nov 2024 06:00:51 +0000
Manifest next update: Sun 24 Nov 2024 06:00:51 +0000
Files and hashes: 1: a3sSBFsa8JrPlmLuNbos1-HIW60.crl (hash: tckK6ZTVkHxZUYpK3B3VArrH4aTORhsSr12snwhqU/4=)
2: q1lEY3xi11zHhTVjWaxEiNFexpY.roa (hash: Tmt82GunstXuvia++GveLtZqE2yNGaE992+pjQr8vj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 00:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:da:28:9e:c2:ed:49:d4:86:87:18:4c:1c:16:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Validity
Not Before: Nov 23 06:00:51 2024 GMT
Not After : Nov 24 06:00:51 2024 GMT
Subject: CN=abd681c81b60aa7c67c1e493567acc6aafae5799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1e:29:2e:4a:53:c2:98:8f:1f:46:26:e6:f3:
ff:44:69:07:a7:0d:b9:ec:c2:f1:84:60:88:77:c1:
6b:8d:cd:cb:b6:01:be:0c:49:b1:b0:b5:71:77:58:
00:c9:b1:e2:54:31:1a:97:e4:0e:07:fc:a4:2a:91:
45:62:bb:00:db:cb:88:43:c3:20:f0:15:af:e3:ec:
e3:8c:9f:49:ab:bc:0b:3a:24:e0:03:be:2e:7b:a0:
c9:73:cd:d5:b3:63:7c:7f:dc:2f:c7:46:7a:eb:46:
18:94:1e:e6:28:7b:4e:e7:1c:3e:a9:d4:bb:9e:ed:
ac:3a:dd:39:27:a7:80:85:03:34:31:71:ab:17:3e:
0b:28:21:72:05:24:74:1f:05:d0:db:fc:7a:12:9b:
52:3a:f0:f9:47:98:d8:67:d3:82:37:fd:47:63:f7:
fb:83:da:9c:98:7f:c2:86:09:8a:e3:ea:32:f5:00:
12:a7:09:85:50:df:37:2e:9b:e8:c1:f5:17:df:82:
d6:7b:0a:5b:be:b9:f6:80:b7:22:24:08:bb:da:6a:
c4:23:1a:36:0b:b0:1d:f8:0f:29:cb:d1:3f:a4:cb:
f8:96:ed:ed:9f:19:7c:bf:88:4f:09:51:0c:e0:fe:
8d:8e:e8:85:11:40:e4:92:6b:61:dd:1f:59:df:9b:
92:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D6:81:C8:1B:60:AA:7C:67:C1:E4:93:56:7A:CC:6A:AF:AE:57:99
X509v3 Authority Key Identifier:
keyid:6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:3b:42:26:86:aa:77:ca:eb:03:40:ac:13:5e:b6:68:74:4a:
bd:96:b4:a9:a2:35:6b:cf:98:91:c4:4b:47:53:f1:ad:65:d6:
b1:df:98:5e:7a:df:74:b8:19:ca:9f:b0:ac:1e:44:f2:7f:16:
5a:25:4a:e3:ed:c0:9f:a4:a4:34:24:bb:4f:af:af:96:98:bb:
9a:48:49:5f:60:93:53:66:39:cf:3e:70:ba:5c:49:68:cb:a5:
74:24:57:9d:3e:84:5e:31:7c:93:72:f1:95:26:bc:53:8b:7f:
69:f2:90:0e:49:9f:05:8a:98:6c:de:ea:6e:24:42:51:62:40:
d2:78:df:d1:e4:b1:c3:5b:df:6e:d1:16:3e:0f:8a:73:6f:11:
41:26:be:5a:3d:ef:92:12:e3:f3:35:6b:38:59:88:ac:34:da:
6e:a8:ca:53:c7:3c:38:74:44:d3:4e:64:25:40:51:c3:89:95:
e1:8c:58:c5:ec:ec:42:4c:23:6b:c6:fd:b3:c7:60:2b:cf:2a:
77:84:64:a5:46:bf:4a:28:95:2b:be:87:11:5d:2e:a6:33:73:
02:ad:81:04:69:83:60:e7:08:11:57:d7:05:e9:3e:6f:71:53:
18:ba:ce:a8:43:84:cc:54:74:2b:f0:dd:f0:ea:57:c7:df:32:
3c:18:a2:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 07:50:22 2024 by rpki-client on console-ams.rpki-client.org