Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
File: KBZKV1f91XJaYIRPKufvc7EHpMA.mft (raw, json)
Hash identifier: XJiKxphT2wSyI5Q7PLJ9v53147Eb2I1BjyLX6JVpFLI=
Subject key identifier: EA:D8:05:73:7B:CF:4F:62:83:D2:91:2D:84:91:37:1F:7C:D5:51:DE
Authority key identifier: 28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
Certificate issuer: /CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Certificate serial: 01901DEB06BCF721BBD6E886AC9DDBA827C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
Manifest number: 11C3
Signing time: Sat 15 Jun 2024 22:01:00 +0000
Manifest this update: Sat 15 Jun 2024 22:01:00 +0000
Manifest next update: Sun 16 Jun 2024 22:01:00 +0000
Files and hashes: 1: KBZKV1f91XJaYIRPKufvc7EHpMA.crl (hash: v08uqlkMKmQEPx92Dwv3xW4nBqCZ/LPf2xmEY7DY1rY=)
2: Yi42xy7xwSC9Mz4ie1JHpYpCkNs.roa (hash: /NO4oAAn57oLJvbGPvE6JhCXOIdZoKwu1k/xOre+u4Q=)
3: ueW1zn0qIWaHE0ieRLApF9uVpho.roa (hash: ogxRwck0mMBBB8+wQ7v6b+14HcbJptVkS4H846esXAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 22:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:eb:06:bc:f7:21:bb:d6:e8:86:ac:9d:db:a8:27:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Validity
Not Before: Jun 15 22:01:00 2024 GMT
Not After : Jun 16 22:01:00 2024 GMT
Subject: CN=ead805737bcf4f6283d2912d8491371f7cd551de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3d:81:a2:52:1c:94:54:dc:ab:f5:46:6c:d3:
cb:ea:ce:24:c3:96:19:3a:c6:0f:2e:95:4d:1d:43:
57:b1:61:e0:87:14:30:a3:41:2a:56:7a:a6:85:16:
e6:7e:18:96:1e:12:51:e0:71:86:eb:0f:46:cf:e0:
b1:89:b7:72:0c:2f:ce:c0:e4:7d:90:65:97:ba:5e:
92:19:5b:10:0c:cc:2f:99:f9:2d:41:67:4c:92:ba:
50:04:62:cf:a1:7a:50:fb:04:60:0f:51:6f:32:59:
8b:dc:28:c9:95:af:c7:dc:31:d6:f2:03:d5:ba:bd:
dc:d2:57:70:b1:10:c3:42:45:de:bb:3a:d9:ed:d7:
6a:c6:98:df:07:f2:51:86:15:b0:c7:07:fa:37:be:
48:66:78:9e:f8:83:4f:e7:b9:ff:f5:0a:b7:4c:59:
e4:86:af:ba:8b:f9:3d:b2:7b:53:23:b1:9a:e0:db:
75:6a:33:c0:41:19:c5:53:fc:65:bd:02:6f:f0:ee:
b6:82:61:95:05:f6:eb:54:3a:97:cd:06:77:98:e8:
12:a1:3a:64:a2:67:26:e5:3d:6c:d5:cd:ff:9a:3b:
19:0d:fe:8c:c0:b9:1a:c9:3b:0d:f3:7d:62:c6:99:
2f:16:7a:5a:7c:53:f8:de:6d:56:74:cc:13:74:5a:
c2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D8:05:73:7B:CF:4F:62:83:D2:91:2D:84:91:37:1F:7C:D5:51:DE
X509v3 Authority Key Identifier:
keyid:28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:a0:ce:9a:8f:a0:07:cc:0e:73:20:51:1c:f5:bb:72:d8:51:
1b:dd:32:de:65:96:f5:cf:9c:da:bd:95:89:5f:04:9c:51:a1:
9a:0c:99:1e:4a:88:76:5d:4e:54:39:c8:ca:e5:01:75:4b:97:
54:26:65:cb:e2:22:56:de:85:07:cf:0f:f1:d7:c3:45:e1:c3:
10:55:1f:1a:e2:1d:b8:9e:f2:a7:3a:f3:57:4f:bf:92:56:b8:
6c:5e:ef:f0:5a:85:4e:f1:c4:8a:aa:b4:3f:df:a7:81:b3:56:
f5:82:61:6d:19:c0:ab:b1:fb:f8:2a:9c:b0:59:e5:4f:9f:87:
7a:64:66:e5:13:e0:d9:8f:10:7b:74:82:4b:80:4d:78:5e:3e:
22:bc:b0:f3:a1:9b:69:c0:0c:e6:9a:79:43:8c:c7:e1:86:dc:
24:51:a2:ca:9a:21:29:32:27:76:84:0c:b8:ee:22:4d:21:d4:
7c:d0:37:f9:e1:1e:b5:8e:30:ae:75:bf:ba:1e:7b:cc:7c:cd:
05:f7:25:9e:c1:e3:12:d4:16:e2:8d:5a:b4:c1:2f:1e:9e:a4:
ce:e2:76:73:22:53:14:c0:22:bf:b9:8c:9b:26:6a:f9:b6:05:
61:2f:79:c1:f1:ea:4c:fc:83:19:da:cf:c1:4d:99:8c:ad:23:
bb:fd:6c:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd6wa89yG71uiGrJ3bqCfCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTY0YTU3NTdmZGQ1NzI1YTYwODQ0ZjJhZTdlZjczYjEw
N2E0YzAwHhcNMjQwNjE1MjIwMTAwWhcNMjQwNjE2MjIwMTAwWjAzMTEwLwYDVQQD
EyhlYWQ4MDU3MzdiY2Y0ZjYyODNkMjkxMmQ4NDkxMzcxZjdjZDU1MWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3D2BolIclFTcq/VGbNPL6s4kw5YZ
OsYPLpVNHUNXsWHghxQwo0EqVnqmhRbmfhiWHhJR4HGG6w9Gz+CxibdyDC/OwOR9
kGWXul6SGVsQDMwvmfktQWdMkrpQBGLPoXpQ+wRgD1FvMlmL3CjJla/H3DHW8gPV
ur3c0ldwsRDDQkXeuzrZ7ddqxpjfB/JRhhWwxwf6N75IZnie+INP57n/9Qq3TFnk
hq+6i/k9sntTI7Ga4Nt1ajPAQRnFU/xlvQJv8O62gmGVBfbrVDqXzQZ3mOgSoTpk
omcm5T1s1c3/mjsZDf6MwLkayTsN831ixpkvFnpafFP43m1WdMwTdFrCYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOrYBXN7z09ig9KRLYSRNx981VHeMB8GA1UdIwQY
MBaAFCgWSldX/dVyWmCETyrn73OxB6TAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JaS1YxZjkxWEphWUlSUEt1ZnZjN0VIcE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC85NTUzNWItZTYzMC00NTdmLThhMDEt
YWVhZTViYmMzOTIwLzEvS0JaS1YxZjkxWEphWUlSUEt1ZnZjN0VIcE1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC85NTUzNWItZTYzMC00NTdmLThhMDEtYWVhZTViYmMzOTIw
LzEvS0JaS1YxZjkxWEphWUlSUEt1ZnZjN0VIcE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATqDOmo+g
B8wOcyBRHPW7cthRG90y3mWW9c+c2r2ViV8EnFGhmgyZHkqIdl1OVDnIyuUBdUuX
VCZly+IiVt6FB88P8dfDReHDEFUfGuIduJ7ypzrzV0+/kla4bF7v8FqFTvHEiqq0
P9+ngbNW9YJhbRnAq7H7+CqcsFnlT5+HemRm5RPg2Y8Qe3SCS4BNeF4+Iryw86Gb
acAM5pp5Q4zH4YbcJFGiypohKTIndoQMuO4iTSHUfNA3+eEetY4wrnW/uh57zHzN
BfclnsHjEtQW4o1atMEvHp6kzuJ2cyJTFMAiv7mMmyZq+bYFYS95wfHqTPyDGdrP
wU2ZjK0ju/1srQ==
-----END CERTIFICATE-----
Generated at Sun Jun 16 03:51:02 2024 by rpki-client on console-ams.rpki-client.org