Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
File: cHdwf2aXiCaodeuNLrMzvthWlmc.mft (raw, json)
Hash identifier: lvd6BPRPlzI3xsq31gLZoeUJlRbOGCeHpe0dVuW5fGI=
Subject key identifier: 03:4B:13:CF:CC:9C:7A:8B:57:C6:0B:80:27:1A:47:EC:1C:F0:4D:C8
Authority key identifier: 70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
Certificate issuer: /CN=7077707f66978826a875eb8d2eb333bed8569667
Certificate serial: 0193579BC0F7089A038A0B89849BFC3E19A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
Manifest number: 0557
Signing time: Sat 23 Nov 2024 06:00:45 +0000
Manifest this update: Sat 23 Nov 2024 06:00:45 +0000
Manifest next update: Sun 24 Nov 2024 06:00:45 +0000
Files and hashes: 1: XsbB7iqCszde2dT3Yqvuj8gTHCs.roa (hash: 3tXg6LjP2/pU6o0RRov8HoJakBg1bBB4CX5SoHX0R/w=)
2: cHdwf2aXiCaodeuNLrMzvthWlmc.crl (hash: DIebx5YsL6mDzEBKRvdlhWPApluK+rOicGKVMvmy8bo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:c0:f7:08:9a:03:8a:0b:89:84:9b:fc:3e:19:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7077707f66978826a875eb8d2eb333bed8569667
Validity
Not Before: Nov 23 06:00:45 2024 GMT
Not After : Nov 24 06:00:45 2024 GMT
Subject: CN=034b13cfcc9c7a8b57c60b80271a47ec1cf04dc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:65:3d:2e:9f:45:4b:ec:0f:b4:e2:aa:f8:27:
60:47:e3:b1:68:17:2c:94:5d:bd:30:b0:26:0e:7c:
5b:80:e6:82:e2:9e:24:ec:5d:36:c2:e1:f1:82:3c:
63:85:42:eb:ed:8e:6e:f8:11:ca:56:9a:bf:9c:08:
9c:77:d9:6b:6c:02:56:71:32:1d:5a:23:58:1f:55:
51:3c:33:fa:6c:16:40:c7:c0:7e:50:d7:fa:46:cc:
79:d8:3a:3c:23:c2:7c:c1:b3:f4:4e:73:0b:38:dd:
5f:6a:b6:ad:12:4a:17:2b:a3:d6:28:55:14:42:16:
60:e6:52:fc:e9:c8:12:cf:c0:36:88:0e:7d:29:9f:
25:23:48:9f:e3:c0:84:d6:74:eb:fe:21:7f:5e:39:
5d:ec:b3:c8:d9:9a:9b:8b:fc:f6:f4:29:6e:b9:75:
85:50:52:97:60:16:b7:b5:35:f2:9f:8a:3d:b7:f7:
56:65:85:28:65:fb:9a:8b:c7:dc:dd:21:f4:a3:92:
82:aa:7f:bf:1c:59:41:0b:0b:aa:a2:1f:a8:d1:af:
70:09:07:13:1b:ec:c1:73:59:8a:a6:2e:12:c4:d8:
a9:23:5b:c1:de:31:3d:63:73:78:d3:be:88:ad:14:
71:38:51:e7:a1:1b:54:41:f8:03:c0:d6:c1:db:45:
60:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4B:13:CF:CC:9C:7A:8B:57:C6:0B:80:27:1A:47:EC:1C:F0:4D:C8
X509v3 Authority Key Identifier:
keyid:70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:0c:43:a7:8d:b6:70:61:94:f6:9a:8a:1d:1d:84:98:8c:7a:
5a:cf:aa:d4:05:cd:7c:f1:2e:7e:2c:b5:80:00:e5:95:fd:c9:
a8:91:da:5f:9b:4a:eb:7c:f4:a3:33:7f:ef:63:02:00:15:35:
0b:32:1f:f5:4e:8b:41:77:8a:14:32:93:1a:f3:68:12:4a:63:
da:31:db:18:f4:77:77:26:ae:74:f8:59:88:6f:86:3a:01:9b:
4d:13:ba:d4:0e:b5:93:47:b0:7b:1d:e8:f1:2c:47:28:21:67:
43:cc:71:d4:6c:32:3e:01:3d:0b:3a:74:5d:6c:77:e1:d5:60:
d8:43:42:90:ad:30:7b:67:e3:d6:77:b9:84:dc:b1:2a:de:ab:
26:2c:91:74:d8:90:6f:bc:65:45:f9:8d:47:d0:4d:88:59:c6:
7a:0a:be:56:c0:43:ae:39:e6:ab:a6:ed:1b:a9:50:cb:5a:e1:
0e:1e:e5:5e:7d:bd:ac:e5:2d:f9:af:dc:51:4f:c0:0f:8e:f8:
ca:d2:7b:34:91:f2:52:c2:e1:7b:ec:ce:72:48:4d:fe:88:a2:
06:c6:53:d3:8e:2d:ff:77:3a:cb:a8:9b:1d:df:3b:da:6b:d7:
7b:67:df:d4:8e:c9:7a:63:1f:b1:a5:aa:a6:20:2d:ba:74:c0:
75:e9:18:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:00:10 2024 by rpki-client on console-ams.rpki-client.org