Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
File: EsShfSBma32NKx_-GKRoevkmIY8.mft (raw, json)
Hash identifier: XjDGsflgIhSOxrn9JaWhRPnHhm5mJnKmUQJVFOMSVzE=
Subject key identifier: B4:6D:34:E2:DB:9B:85:51:62:70:C9:D9:4D:68:BC:F6:C3:D8:03:15
Authority key identifier: 12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
Certificate issuer: /CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Certificate serial: 01939078507993FB8B2171FC736C46A28FCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
Manifest number: 138E
Signing time: Wed 04 Dec 2024 07:00:24 +0000
Manifest this update: Wed 04 Dec 2024 07:00:24 +0000
Manifest next update: Thu 05 Dec 2024 07:00:24 +0000
Files and hashes: 1: EsShfSBma32NKx_-GKRoevkmIY8.crl (hash: bDHmBsVSKkQAD09RggRUiS2fs9aV3O4R0RNf+18vxrc=)
2: m0n9Y5mrE_9EMO13ZJL09qJaMsU.roa (hash: x2Nwi2LHAGG/RkDGsKep/X0Zxpxd/AsFDpgHHa7HMnc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Dec 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:90:78:50:79:93:fb:8b:21:71:fc:73:6c:46:a2:8f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Validity
Not Before: Dec 4 07:00:24 2024 GMT
Not After : Dec 5 07:00:24 2024 GMT
Subject: CN=b46d34e2db9b85516270c9d94d68bcf6c3d80315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:39:19:14:d1:c9:7a:06:dd:55:75:6b:03:dd:
02:c1:9f:32:5b:d6:cd:10:d4:32:2f:3b:44:5b:6a:
ed:18:30:5a:d6:62:b4:2b:1e:ad:92:b3:78:a7:cb:
a4:fe:e9:22:fe:79:da:0d:1d:0d:1d:8d:82:f0:e1:
fe:20:e8:88:be:2e:12:b2:28:c3:9f:0c:58:8b:d6:
96:41:2c:8b:dd:85:18:41:60:8c:a6:68:b0:34:a7:
07:48:f5:1e:af:90:9a:25:b7:10:15:88:a9:24:18:
c9:2e:39:89:3f:6b:d0:07:75:4c:db:e6:bd:64:3a:
72:db:df:17:b8:3b:97:23:54:dc:f2:95:ff:b0:9d:
b1:0e:2b:f2:a7:f4:61:a7:7e:10:5b:7b:c6:31:62:
2f:5a:85:e0:50:82:83:8d:2c:1a:9a:1c:a9:05:fa:
c9:21:8c:b0:d7:ca:10:19:d9:fc:14:fb:c1:6a:f3:
81:c6:e2:fd:99:cb:b2:22:17:8a:28:02:ae:ec:e7:
72:cf:b3:ad:07:3d:23:c5:bf:cf:1d:7f:3a:cf:b2:
e7:a4:87:82:0c:a7:03:8b:52:54:a6:b2:aa:fd:83:
60:c5:57:88:3f:78:66:86:d7:1b:f4:07:ce:08:ba:
db:dd:d1:4f:3a:a5:f3:9a:a4:d3:0d:0a:36:51:b7:
39:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6D:34:E2:DB:9B:85:51:62:70:C9:D9:4D:68:BC:F6:C3:D8:03:15
X509v3 Authority Key Identifier:
keyid:12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:96:b3:5d:8d:5b:77:f3:99:a2:07:6e:77:b3:f4:e2:a8:be:
07:5b:96:b3:fa:cd:b1:0c:a5:74:53:6b:61:77:61:2c:3e:67:
fa:a6:f9:76:c2:bc:bc:45:80:1d:99:10:12:ef:d0:68:15:e3:
c3:e2:f2:39:d1:88:c7:81:13:fe:77:e2:98:e7:04:54:d8:e0:
4c:14:05:8f:24:ab:c9:80:7b:cc:e4:a2:f9:a4:f1:57:1b:00:
4e:45:4f:93:fe:63:08:3f:78:d6:31:36:3b:93:58:ea:0a:bf:
80:12:b6:be:9b:9b:c3:e4:12:cb:01:6d:cf:d0:d0:4c:a1:02:
85:7d:74:03:0c:75:d4:71:2a:83:89:d1:62:83:b9:1e:cb:11:
0b:4c:40:c4:9f:41:cf:b3:7d:9e:63:56:f6:1c:e1:ba:16:6f:
17:13:9e:16:66:7c:c8:e1:a2:3e:7a:28:85:6f:b3:f0:5e:fc:
96:1d:a0:a0:4c:4d:a9:7a:e2:26:3e:c5:1f:94:2b:55:8d:c8:
99:15:b3:5f:0d:f8:38:7a:5e:cb:c3:f0:95:4f:b1:30:f3:29:
62:24:f8:e0:1b:24:c2:8d:42:a8:fa:46:45:b2:48:e2:8d:02:
04:b4:84:10:63:5e:d0:de:4a:9f:7c:59:0d:1e:0c:b5:9d:c2:
17:0d:15:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 4 09:13:51 2024 by rpki-client on console-ams.rpki-client.org