Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: Dhyo4CwViJbVSu6a6Zz72CenaenNkxlMzQUkZARSFVc=
Subject key identifier: 31:1E:7E:84:70:6E:15:12:4F:E1:BA:D7:A7:A5:E2:D0:CD:17:B7:E2
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 019237A64ED8216889D2FCECCC4F95090B93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 1234
Signing time: Sat 28 Sep 2024 08:01:38 +0000
Manifest this update: Sat 28 Sep 2024 08:01:38 +0000
Manifest next update: Sun 29 Sep 2024 08:01:38 +0000
Files and hashes: 1: dpwKjeDx22lEZzqK_g1t7EYJvCw.roa (hash: kkqFH/v9EBr4mw99mldE3aBWqEwZdUIQH71M+lYpNWo=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: BhIIHVpF+lfVJp5lHD/xF2zVtfdJwFC0ypwBrBNO8ro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:37:a6:4e:d8:21:68:89:d2:fc:ec:cc:4f:95:09:0b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Sep 28 08:01:38 2024 GMT
Not After : Sep 29 08:01:38 2024 GMT
Subject: CN=311e7e84706e15124fe1bad7a7a5e2d0cd17b7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fe:dd:fc:b5:ae:c5:20:0b:bc:db:9b:45:95:
72:e3:9f:83:ea:ee:54:d5:4d:76:ad:a1:94:ad:a4:
56:e9:09:6f:5a:17:d9:3e:af:27:2c:3a:64:02:90:
c4:2e:47:9c:7f:08:0b:a5:ec:87:42:16:7a:cc:a2:
d6:c2:e4:c0:b9:77:3d:62:c2:31:11:8f:43:d9:1d:
7c:a1:bd:8f:db:53:c5:25:a1:f0:64:9b:b8:ab:ec:
60:42:06:73:ab:a3:83:eb:af:6b:d5:0f:06:80:f8:
38:7a:f4:89:af:d2:cf:14:a3:6e:cf:4a:80:e0:45:
de:b8:42:c8:d6:18:c3:65:00:e2:cb:5b:50:b5:82:
7e:9d:d3:96:44:91:b8:77:c9:9d:5c:0c:52:f7:e0:
df:bf:76:fa:66:1f:7e:8f:f8:67:38:fe:b0:02:06:
25:89:84:b7:0f:4a:df:28:5b:b6:6b:16:a4:bc:01:
d0:5d:90:cc:f2:16:ac:e1:d9:6c:99:e1:f7:02:2a:
28:e0:ea:e8:ec:20:7f:10:f1:39:51:1a:2d:62:a6:
8a:e2:b6:32:02:c3:c1:d5:88:ac:b9:8a:80:62:00:
8e:55:fe:c9:10:ae:d5:f3:5b:16:7c:f2:3a:5d:6d:
06:20:1a:46:2c:16:4b:4a:94:d5:f8:9b:15:46:6f:
1e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:1E:7E:84:70:6E:15:12:4F:E1:BA:D7:A7:A5:E2:D0:CD:17:B7:E2
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:9d:b2:d0:59:14:26:d4:2f:c6:8e:c5:6a:0c:aa:07:8e:f3:
4b:3a:40:24:36:85:5a:02:3c:5a:80:6c:cd:35:0a:4e:39:ff:
50:12:16:85:da:20:0d:a6:9d:b2:ec:5b:9f:77:e2:36:7d:8a:
9b:dc:cb:35:a8:6e:62:44:5c:dc:03:88:73:1f:90:6c:d1:fa:
68:b7:ac:ef:81:f2:f8:15:6f:cc:b2:a3:55:f4:5d:40:6d:64:
6e:28:4d:83:e0:24:33:76:8e:0b:b1:8d:1d:dc:0b:b8:2a:64:
e2:5f:fa:c6:8a:40:7a:93:c8:a6:6c:f1:75:fd:34:9d:26:8f:
7f:0e:d6:cc:d5:8f:c6:11:59:79:5c:f2:c6:2f:9c:6f:4b:78:
ee:8f:7a:31:5e:ad:ea:4e:c1:ab:f2:40:52:64:d4:62:8a:da:
89:e0:57:42:b6:7c:de:45:52:b7:78:d3:c1:a7:22:30:88:20:
b0:ac:1a:5b:5d:c1:d1:a8:5c:ae:21:31:1e:3f:d8:ec:0b:8d:
bc:9f:30:0f:37:91:7a:fa:61:04:99:13:95:98:37:31:a9:bf:
f4:22:5a:49:8c:d7:3f:a6:dc:57:ef:e1:c6:5e:66:de:2d:7c:
66:f7:b7:38:c4:a5:a6:a4:21:94:70:b7:4c:d7:99:d5:c2:a0:
ae:e8:a4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 09:30:45 2024 by rpki-client on console-fra.rpki-client.org