Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
File: KaA5l7KPWbCAMciYQH3V5RN93bE.mft (raw, json)
Hash identifier: vWZhsWpanapKiiXQhbWFlLmCZAh4le/UKv4hCPUOM/Q=
Subject key identifier: CA:82:82:19:C3:B7:5E:B6:2B:D3:CA:30:7F:4F:16:C1:72:D5:13:32
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 01901DED375AA84F02D0799ECDF11ECDF923
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
Manifest number: 0EB1
Signing time: Sat 15 Jun 2024 22:03:23 +0000
Manifest this update: Sat 15 Jun 2024 22:03:23 +0000
Manifest next update: Sun 16 Jun 2024 22:03:23 +0000
Files and hashes: 1: FvgUttrzdpktKgHBKbvgoJ6ePdc.roa (hash: 4nfHuQwiAPU2/ad2RBYhItAfEv1o71zh1+lsmVUJktg=)
2: KaA5l7KPWbCAMciYQH3V5RN93bE.crl (hash: 5PSjCvSpJqC5646a7/u0iJAn/my6U6Ur/s1ujLDwxhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 22:03:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:ed:37:5a:a8:4f:02:d0:79:9e:cd:f1:1e:cd:f9:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Jun 15 22:03:23 2024 GMT
Not After : Jun 16 22:03:23 2024 GMT
Subject: CN=ca828219c3b75eb62bd3ca307f4f16c172d51332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2a:1b:1a:c0:a3:58:96:b1:d7:2f:cf:fb:c9:
18:d8:68:11:bd:67:25:6b:d2:09:82:23:f6:24:77:
20:06:b6:1c:32:6f:2e:c6:8f:37:30:18:bf:01:08:
c2:c7:7c:20:24:df:9b:cb:4e:ad:e6:d8:3b:3f:c8:
0b:80:8d:0c:8f:41:51:97:55:34:21:97:ad:ca:3c:
f5:7d:de:4a:49:5f:c3:53:35:a5:23:5e:6d:84:58:
34:67:bd:dd:fd:0c:81:f1:1e:fc:6c:e3:73:3d:6b:
48:90:55:70:da:9b:5c:38:d6:0b:45:40:9b:a6:90:
ba:dd:d7:86:0a:4e:3b:24:4f:45:ad:3a:20:ae:42:
8f:28:73:16:52:7b:36:94:ed:fd:d8:b8:9f:68:21:
d3:a8:33:52:92:7c:f2:06:95:4b:c0:82:c0:96:eb:
b1:11:b2:ae:61:9a:61:57:f0:4b:30:ca:fe:6c:d8:
52:b7:ca:d9:f9:65:9c:3c:c0:02:f6:b5:e6:dd:11:
b3:37:80:1c:b6:8f:02:6e:fe:9a:e7:09:6e:81:99:
53:a9:18:37:7b:13:fd:34:4f:f6:5a:27:be:4c:54:
32:c4:11:31:b6:4e:ee:84:8b:27:29:30:8d:68:53:
74:78:75:95:a6:c6:4b:57:3c:c2:ce:1e:9e:42:c6:
52:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:82:82:19:C3:B7:5E:B6:2B:D3:CA:30:7F:4F:16:C1:72:D5:13:32
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:2f:81:c6:f0:5c:e1:64:dd:18:93:54:21:68:2e:00:a4:47:
2c:05:1f:db:dd:3d:8d:8f:46:f0:89:fb:cf:6b:d0:3c:60:df:
5f:ce:7b:b0:21:79:a1:1f:68:49:95:ac:89:77:d6:d1:4c:6c:
d2:ac:ed:81:65:23:d0:a6:e5:0a:52:8a:ef:db:2a:99:3b:a8:
b0:67:ac:c3:eb:9c:2c:c4:45:e3:e2:f1:d8:4a:b1:ba:05:8d:
cd:81:12:ea:0c:38:39:0d:4f:92:ec:92:29:77:5d:08:dc:b2:
83:03:d7:e1:1a:84:af:8f:77:b4:8b:cd:84:e2:34:09:12:63:
6a:3f:23:9c:eb:2b:a6:77:5e:83:05:be:4d:3d:dd:f0:3a:b7:
2a:2e:88:af:8a:7e:ce:94:14:97:e9:35:6a:db:14:2d:23:c9:
eb:b7:08:4c:b7:51:61:6a:c4:92:f0:e0:a6:15:7d:d4:93:7c:
e0:62:e4:89:ab:e6:64:cb:af:45:c8:68:f8:67:cc:c7:a1:6c:
7b:a8:42:e0:5e:8f:e0:d8:14:fa:da:a7:69:d6:cf:a6:8f:16:
34:e5:7d:c4:58:8e:3a:1d:6d:2b:62:f7:67:94:ce:07:d8:92:
25:24:39:e1:34:24:b6:ef:7c:d4:bc:01:10:92:8e:2b:c8:69:
66:f1:c1:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:52:47 2024 by rpki-client on console-ams.rpki-client.org