Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: LT14nLE9zELf3T/q4jvNeiJpqH1/h7tGC4+5/mTA2fc=
Subject key identifier: F7:5E:51:2E:39:DC:16:2B:35:A9:BF:A1:EA:CF:D4:C3:AB:53:F2:10
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 0193549BA4825480811D00DDE61C76F4CB14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0C0C
Signing time: Fri 22 Nov 2024 16:01:46 +0000
Manifest this update: Fri 22 Nov 2024 16:01:46 +0000
Manifest next update: Sat 23 Nov 2024 16:01:46 +0000
Files and hashes: 1: jxiOsdvucmnDVsgs9p5wi2RadOc.roa (hash: CHBYHHTtadzNTygafnm1iSDB2OE3JS7L7mpSWf609BI=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: dqAtxrfDkwRlf1sh7r+0GJ8jZWueCUwSKGzkYzW2dWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:a4:82:54:80:81:1d:00:dd:e6:1c:76:f4:cb:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Nov 22 16:01:46 2024 GMT
Not After : Nov 23 16:01:46 2024 GMT
Subject: CN=f75e512e39dc162b35a9bfa1eacfd4c3ab53f210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:61:eb:a9:c8:df:61:b0:91:cc:77:94:78:8d:
64:e5:6a:d2:d5:12:22:9f:7f:e2:21:0b:12:02:ca:
b9:50:a5:e5:be:e8:c9:1f:d2:1a:5c:97:92:f5:0c:
01:f3:20:f5:67:55:69:6a:bb:e6:4f:ac:66:3c:e9:
08:1a:69:c7:e0:f7:23:d6:67:c3:5c:38:34:0d:62:
65:d5:1c:e5:22:b0:05:a8:52:52:aa:4b:23:58:c8:
55:44:e7:6e:9d:09:5d:ec:f0:74:6c:a7:01:43:73:
ec:2d:03:1b:bd:78:2d:92:c1:78:f0:77:c6:84:8e:
16:2b:c0:0d:af:9f:c1:20:e0:9f:20:9d:79:0e:1d:
c4:c5:e2:e9:9f:b4:65:cd:3e:da:3e:6e:c4:00:2c:
d3:1f:6c:a5:4f:d0:7d:ac:ff:ad:06:4b:1c:0a:43:
06:f0:d7:77:a2:d2:5c:9f:15:5d:87:f5:0e:9f:0f:
32:12:63:af:19:14:b6:e2:07:33:ce:90:ea:a0:d0:
bc:97:11:30:c6:7f:ca:80:b1:08:6e:a3:55:24:cd:
50:b3:33:bf:4d:97:76:ba:dd:7b:4d:45:85:3e:31:
74:af:d8:37:a9:ad:e8:2c:7b:b0:88:c0:8d:55:72:
f0:a2:9b:a0:5d:dd:91:17:9c:87:78:3e:07:49:63:
be:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5E:51:2E:39:DC:16:2B:35:A9:BF:A1:EA:CF:D4:C3:AB:53:F2:10
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:4c:41:9f:81:3e:03:1d:5d:db:d3:e8:ae:13:fc:d6:33:8e:
1d:fb:ec:8e:d6:0a:30:de:be:d3:8c:e2:15:0e:c8:f1:22:e0:
9e:18:98:57:f5:f8:5c:9c:b1:74:a8:26:5d:48:8c:8f:e9:72:
ab:63:4c:02:2d:72:0c:95:da:32:3d:2f:ab:08:15:e0:7c:3c:
2b:4a:2b:eb:c9:f9:62:bb:3e:06:78:db:6c:c3:54:71:99:b9:
88:19:65:de:a3:96:fb:70:1e:77:6b:07:57:6c:6d:1e:49:4f:
86:bf:ee:50:43:9e:d2:05:00:5e:29:dc:87:e6:5c:d8:6d:4e:
27:40:ed:24:cd:f7:a3:38:7a:81:d2:1b:11:32:8f:ee:74:37:
0d:53:3f:48:33:46:0a:cf:61:70:d1:cf:92:0d:31:d4:88:dc:
3a:c3:d4:1f:8d:1c:48:d2:b2:28:ed:13:30:05:2b:d4:f7:7a:
40:10:c3:03:e4:8a:f6:b9:11:5e:b6:13:b7:78:9c:7d:6c:97:
d0:d5:d8:57:d1:c9:c7:c8:63:8b:aa:c1:02:69:e4:8b:89:6f:
dc:34:5b:75:d7:8a:ee:29:fb:ee:3a:b6:27:7c:ca:b3:bf:b3:
31:0e:2d:9b:05:5e:7f:1a:0c:37:93:bf:33:ec:f5:57:68:b9:
ee:a0:59:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:28:58 2024 by rpki-client on console-fra.rpki-client.org