Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json)
Hash identifier: Q7uVKC9J2qsIzu2Ka51D70aig9xvevui/PJzwalMu74=
Subject key identifier: A5:07:75:02:AB:50:98:DF:5B:07:DE:6F:5A:83:A2:8A:9D:71:A3:73
Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Certificate serial: 0193572E05D739A97BCAAEEBEBAD3FB3AEDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
Manifest number: 1370
Signing time: Sat 23 Nov 2024 04:00:54 +0000
Manifest this update: Sat 23 Nov 2024 04:00:54 +0000
Manifest next update: Sun 24 Nov 2024 04:00:54 +0000
Files and hashes: 1: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: U62dWTFm23l5kKNx2IQylaEKMWmBdQmQsGaU76DB4z8=)
2: nDXcV8J0qVis-IXBTc61jwYyaoI.roa (hash: /l0ngvNsBK4kUJP27mrv3FHGo/LicHl2XwRHlO0oF78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2e:05:d7:39:a9:7b:ca:ae:eb:eb:ad:3f:b3:ae:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Validity
Not Before: Nov 23 04:00:54 2024 GMT
Not After : Nov 24 04:00:54 2024 GMT
Subject: CN=a5077502ab5098df5b07de6f5a83a28a9d71a373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dc:56:07:fc:1a:36:2f:20:a6:2c:8d:49:74:
e1:52:74:3e:f8:fb:6a:a5:e3:79:0c:bd:37:78:61:
f8:36:00:0d:78:90:9e:68:ad:48:17:07:5a:17:90:
a1:1d:70:71:3f:d2:5d:76:3c:57:e0:01:25:c2:d1:
1c:08:cb:6a:c3:9c:a0:83:7f:3c:4f:f3:47:17:29:
74:c9:53:55:01:9c:3c:b5:d6:6a:a6:f5:e4:b8:ef:
de:e7:75:b8:a4:f7:0c:43:a0:c3:bb:11:4d:69:19:
65:b9:30:70:06:14:e9:e1:56:e2:db:f9:c8:01:61:
53:02:68:cc:66:af:e9:fc:9a:82:88:70:76:a7:69:
e0:e1:8b:0b:ba:c1:9a:be:af:a7:a3:1c:fe:7d:6d:
6f:42:64:86:bf:a6:8d:f9:c5:2a:f5:13:e8:34:40:
de:57:9c:cd:18:02:ab:0f:96:d1:7f:75:09:26:1c:
93:28:a6:72:51:bc:7a:15:85:5f:95:db:62:5d:b8:
c5:c9:99:4a:19:2d:42:05:fa:26:24:a0:3f:0e:f9:
81:65:7c:c8:ba:c4:30:bc:ec:f2:33:08:f7:22:87:
d0:31:16:79:9a:6e:07:56:4d:8c:11:85:16:83:1e:
cc:1a:3f:7f:67:aa:be:4f:e8:9d:ff:7f:a5:d7:88:
a2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:07:75:02:AB:50:98:DF:5B:07:DE:6F:5A:83:A2:8A:9D:71:A3:73
X509v3 Authority Key Identifier:
keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:2b:4e:c7:50:85:7b:aa:c1:fc:91:4f:06:b3:5e:22:c5:dd:
1b:ef:c9:66:2d:0e:b7:6c:39:cd:79:ff:27:ef:79:49:a7:c1:
ea:d2:b2:92:49:c8:f5:3f:06:ca:13:90:8a:dc:5a:dc:6c:3e:
ca:ca:78:57:a2:d3:d4:3b:09:59:7c:7c:6e:2c:6d:ec:bd:0d:
bc:a7:05:43:2c:56:ae:86:a7:ac:dd:5c:5c:46:4b:e6:04:e8:
89:4e:54:52:05:72:85:23:d0:44:d4:4a:ad:91:a3:25:d8:3e:
3a:88:4a:34:1a:11:97:3d:96:87:56:ba:e5:33:11:16:08:11:
d1:7a:2f:91:21:92:7c:3f:8d:6c:fb:b6:f9:8b:33:2a:f9:be:
b4:ca:61:b8:52:6b:12:9d:9f:15:a0:dc:5f:58:05:f5:a8:27:
f5:5f:1d:57:82:de:6b:e2:2b:12:1e:fc:6a:de:32:d4:c3:d2:
b1:32:f6:78:1f:20:7d:aa:fa:1a:a4:df:7a:79:24:45:50:59:
56:8b:d1:38:a6:f6:07:fa:e6:80:4d:d9:7b:51:04:75:7f:f3:
e7:bd:a0:be:7c:31:30:d7:1a:0f:be:f7:12:3f:1f:1e:56:de:
a4:c8:75:a0:1d:06:2b:bb:53:ac:2c:12:0b:38:aa:f0:a1:4e:
15:77:4e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:17:08 2024 by rpki-client on console-fra.rpki-client.org