Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier: 1bNM+/MOeE9n+MLQyaxL9bWwU1CxlMmiB2q5O52eF4E=
Subject key identifier: 4C:48:50:19:A5:29:70:11:CC:2B:F7:DD:52:B5:09:2F:66:BA:04:4A
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial: 01935878F087F462000ED437303CD626E799
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number: 1375
Signing time: Sat 23 Nov 2024 10:02:21 +0000
Manifest this update: Sat 23 Nov 2024 10:02:21 +0000
Manifest next update: Sun 24 Nov 2024 10:02:21 +0000
Files and hashes: 1: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: 37leNmmRiRYBo2dc1qMx2Vp+l7jHpTUnaY2yP5Dz7Cc=)
2: v_L2Patzm3vGfLghAapB13-OeEc.roa (hash: LR5IrmH4w9mZM8wdnJGkkWinOJsj/fih5+iV99TigNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:f0:87:f4:62:00:0e:d4:37:30:3c:d6:26:e7:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Validity
Not Before: Nov 23 10:02:21 2024 GMT
Not After : Nov 24 10:02:21 2024 GMT
Subject: CN=4c485019a5297011cc2bf7dd52b5092f66ba044a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ea:7f:f1:3f:97:02:05:00:8f:1d:84:ad:16:
17:62:59:93:1c:bd:8e:ad:db:75:d3:4e:6e:73:b8:
35:73:f7:8a:7c:81:c1:61:65:84:27:32:a0:62:66:
8e:f4:84:0d:94:da:ba:8c:b5:9f:0c:1d:97:22:50:
8e:f4:86:65:ed:75:1a:9e:92:fa:4b:03:2e:2a:82:
67:fd:e2:21:4c:9f:6c:9a:ce:13:70:c4:e5:6d:31:
c4:0a:31:90:00:a3:6c:08:56:3c:4a:64:5c:5a:1f:
b4:57:43:9a:8c:51:60:d8:da:b3:a8:c7:5f:2c:3a:
3c:5a:2a:ee:a8:c7:b1:9e:42:ff:87:8b:7f:20:ce:
3f:eb:37:44:9d:da:b3:43:bd:d7:d4:bb:c8:71:fd:
83:39:81:a7:3b:e5:64:84:15:46:fa:2f:dc:34:cb:
1d:3f:f9:bf:3c:2f:e9:77:09:4b:4d:0d:04:21:a9:
04:8f:6c:9a:47:be:06:c3:a5:bd:6d:62:08:76:fb:
d2:86:8f:e3:2e:f0:b4:b4:af:74:26:7f:d9:2e:45:
04:2b:e2:59:f5:6b:7e:48:b5:3b:40:90:55:47:ef:
58:63:06:e2:2b:40:09:2f:7d:26:7d:da:3f:26:50:
8a:14:68:db:c2:d2:82:b3:cf:a0:10:08:5d:84:c0:
15:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:48:50:19:A5:29:70:11:CC:2B:F7:DD:52:B5:09:2F:66:BA:04:4A
X509v3 Authority Key Identifier:
keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:9f:af:db:7b:72:e8:57:22:f2:0f:8b:e5:c0:74:46:a1:5b:
96:f5:ba:59:71:e1:31:4e:17:27:cc:aa:eb:37:36:2e:0e:e8:
77:43:e0:57:b6:d6:d8:e9:f5:79:b0:fc:ce:eb:6a:5c:3d:e2:
59:c3:62:93:55:2c:47:78:78:e0:80:1a:3d:a0:91:b8:71:fe:
83:7c:5a:90:91:e9:94:f1:d7:ca:d3:05:26:b4:83:99:46:57:
86:79:28:a0:2b:6d:c3:c1:2d:a7:60:5e:3b:2a:1a:84:84:13:
0c:f7:e4:60:d1:22:a3:f1:8c:0c:2b:e2:57:30:c9:4e:69:ab:
db:fe:42:24:bb:51:3d:25:70:f4:8a:f5:30:49:6c:ce:07:4a:
88:a7:cb:02:fb:40:90:61:81:54:17:2a:09:18:4f:ad:5f:86:
3f:49:a3:89:d2:f0:43:ee:2c:6a:25:32:5e:1d:be:33:ce:3f:
bf:51:14:a0:70:e0:77:0a:99:a1:5c:9a:3e:ee:7d:63:58:96:
1f:4f:ca:8a:61:93:83:e0:de:75:fc:a2:2c:47:35:56:1f:5d:
58:01:7b:7b:39:a7:6a:83:ef:0e:7c:77:15:36:2b:7b:8d:f3:
fc:f3:b2:e8:57:a3:9d:d0:c2:47:2d:46:ec:0f:dd:a2:26:ab:
df:f8:d4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:05:46 2024 by rpki-client on console-fra.rpki-client.org