Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/kRiebt9T5AZyybXx81GXKCkewu4.mft
File: kRiebt9T5AZyybXx81GXKCkewu4.mft (raw, json)
Hash identifier: RiZIpHp63CouvSjTETxq1I1QA6HFiaO0m1lQ8PaxVTs=
Subject key identifier: 04:69:20:70:66:AC:2D:E6:59:57:AF:A7:24:DF:23:8F:A7:13:F8:B9
Authority key identifier: 91:18:9E:6E:DF:53:E4:06:72:C9:B5:F1:F3:51:97:28:29:1E:C2:EE
Certificate issuer: /CN=91189e6edf53e40672c9b5f1f3519728291ec2ee
Certificate serial: 018F915E3A6BB391B7642EA8EB015CEBD86A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiebt9T5AZyybXx81GXKCkewu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/kRiebt9T5AZyybXx81GXKCkewu4.mft
Manifest number: 07F8
Signing time: Sun 19 May 2024 15:00:22 +0000
Manifest this update: Sun 19 May 2024 15:00:22 +0000
Manifest next update: Mon 20 May 2024 15:00:22 +0000
Files and hashes: 1: TGCjsX6EUhP35Fo6ApM9Lp-hI-U.roa (hash: 3G/VLccyUf34pvLoaETRc2PcivrIA4ve1MywWwQkWi0=)
2: kRiebt9T5AZyybXx81GXKCkewu4.crl (hash: a6nfGSN1VQmNgn4182HJ9ez8brLXD5DyI36YhJxWuEQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/kRiebt9T5AZyybXx81GXKCkewu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/kRiebt9T5AZyybXx81GXKCkewu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRiebt9T5AZyybXx81GXKCkewu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:91:5e:3a:6b:b3:91:b7:64:2e:a8:eb:01:5c:eb:d8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91189e6edf53e40672c9b5f1f3519728291ec2ee
Validity
Not Before: May 19 15:00:22 2024 GMT
Not After : May 20 15:00:22 2024 GMT
Subject: CN=0469207066ac2de65957afa724df238fa713f8b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7c:d4:23:66:7b:24:c7:c2:94:39:cb:5c:02:
48:aa:d4:a6:57:c6:d2:80:82:16:ed:19:69:64:cb:
d0:9f:37:10:10:a0:61:17:d7:3d:30:00:48:8c:b9:
b0:c8:25:a7:34:fe:19:ca:bd:4f:7d:59:a7:ba:b5:
60:93:bd:1e:47:fd:4e:01:5d:7b:b8:f3:1f:de:05:
0d:40:0d:4e:38:93:15:cc:56:ad:9f:42:0f:b7:46:
7a:84:f1:52:d5:bc:a1:6a:a3:c8:7c:aa:36:0d:ef:
8f:05:d6:8a:c0:3c:36:f1:15:4d:d7:7b:e0:13:59:
d9:9f:64:e3:f6:50:e6:2c:aa:fe:7a:7b:8b:d6:ec:
b5:ac:e6:08:52:33:4a:a9:b6:a7:43:01:9a:d9:07:
65:4b:c7:f9:28:44:5a:7a:02:1f:7f:6e:b8:93:ba:
11:9a:eb:e0:f3:15:f9:1b:39:bd:92:4a:d4:a3:ef:
2d:08:6e:25:7a:d9:16:53:40:f7:18:86:59:91:b1:
c8:34:db:a9:bc:f9:cc:93:a8:f9:95:06:8e:34:c0:
aa:c0:12:d1:86:0f:4a:d4:c2:b9:92:1a:9d:8a:38:
63:f1:d4:7f:f7:30:fa:1b:6d:11:2e:86:16:d8:18:
59:5d:17:8b:70:fd:8f:a4:f1:53:b1:e5:71:a9:fb:
ea:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:69:20:70:66:AC:2D:E6:59:57:AF:A7:24:DF:23:8F:A7:13:F8:B9
X509v3 Authority Key Identifier:
keyid:91:18:9E:6E:DF:53:E4:06:72:C9:B5:F1:F3:51:97:28:29:1E:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiebt9T5AZyybXx81GXKCkewu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/kRiebt9T5AZyybXx81GXKCkewu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/kRiebt9T5AZyybXx81GXKCkewu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:25:b7:11:f1:cb:91:6f:64:83:0a:e5:93:0c:23:8c:6c:cd:
b1:d9:f0:46:5f:02:36:5f:f0:de:fd:fc:18:5d:2a:4a:cf:bb:
ed:99:96:55:bb:44:16:4d:7f:42:44:d7:6a:10:1d:76:9f:d7:
34:50:d0:8a:a3:d0:30:28:88:ef:29:ca:5d:5c:63:5e:f3:6d:
bb:f3:64:a1:75:5d:9f:3b:6d:44:d5:e9:0f:07:80:4b:b9:a9:
89:60:34:6b:ba:19:4d:74:cd:49:c6:f2:79:3e:0f:fe:fb:92:
c2:a2:91:85:bb:cf:41:df:ee:47:53:dc:17:7d:d0:4b:35:f8:
80:7f:0b:63:b9:62:d6:a6:e8:24:7e:2a:fa:31:bc:25:aa:81:
94:5c:fd:81:2d:bd:19:f4:ae:1d:ce:1d:62:02:04:f6:05:78:
00:0a:ac:46:c4:34:c5:64:6f:51:fb:a4:ec:ce:07:9a:84:3f:
8a:5c:09:ca:b5:37:e6:06:36:23:1c:e2:d8:ef:2c:4d:79:79:
37:bc:5d:1d:96:bf:3e:e5:ce:3b:92:c6:c5:44:a6:17:f5:17:
f5:92:44:3d:fe:c2:da:85:c2:80:f4:a7:61:f8:bc:19:fa:8f:
e1:45:a8:1d:4b:43:43:9c:25:72:1a:8f:13:46:d5:0c:e6:78:
80:a5:47:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 17:35:42 2024 by rpki-client on console-ams.rpki-client.org