Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
File: kGQm9IPDaqzahzIySriK1YAMmi0.mft (raw, json)
Hash identifier: gjEiKSxuSSIn+9VYd6hlxXb8t3sr+2DqkQ5ZRQ/FANc=
Subject key identifier: B4:21:23:D9:05:B6:C8:4B:9E:DD:E9:B0:59:E4:14:AC:E2:09:85:36
Authority key identifier: 90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
Certificate issuer: /CN=906426f483c36aacda8732324ab88ad5800c9a2d
Certificate serial: 0193568909BA6828A98F5516531C5ACB0EA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
Manifest number: 0893
Signing time: Sat 23 Nov 2024 01:00:41 +0000
Manifest this update: Sat 23 Nov 2024 01:00:41 +0000
Manifest next update: Sun 24 Nov 2024 01:00:41 +0000
Files and hashes: 1: folF8wM0AHSTQdYKm-pM3uv6JZM.roa (hash: LkxTFtqM1rHDb0lrY15ifqxnVx7ArLz9RW4J/1CNByM=)
2: kGQm9IPDaqzahzIySriK1YAMmi0.crl (hash: EoDaj04mSRHKwjVPRPYMRBLaORMqbLe2ae5zk88iqDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:09:ba:68:28:a9:8f:55:16:53:1c:5a:cb:0e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=906426f483c36aacda8732324ab88ad5800c9a2d
Validity
Not Before: Nov 23 01:00:41 2024 GMT
Not After : Nov 24 01:00:41 2024 GMT
Subject: CN=b42123d905b6c84b9edde9b059e414ace2098536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0a:ef:1a:59:0a:00:05:b8:b9:7d:85:37:16:
ef:01:e7:f5:c6:a2:e0:6a:41:e4:53:21:68:a7:71:
49:3f:4e:88:c9:b1:0b:77:e0:23:34:77:00:0c:5c:
6a:41:4b:6d:f3:ba:ff:40:5a:4d:e4:f5:d1:6e:dd:
9b:6e:ab:d6:77:77:bd:32:8a:b3:65:19:bf:d9:1f:
77:71:db:da:d1:99:0f:a1:11:0a:f6:12:48:b8:51:
be:e4:28:e0:6d:94:75:cf:f9:60:ae:d5:49:7c:e9:
38:18:0f:6f:04:f6:53:82:03:59:22:8f:43:42:c3:
4d:aa:f7:cb:ec:04:fd:dd:28:8a:4a:e8:07:a6:30:
6d:d2:99:39:68:1d:37:66:cb:2d:88:77:ed:86:c9:
d8:0e:85:27:b2:39:a5:c9:5a:5f:e6:58:d0:7e:c0:
cc:53:cc:26:43:b6:7b:c6:5c:b4:38:13:fd:c4:2e:
67:a9:01:b1:2a:cb:37:18:a8:5c:79:ed:da:ef:bc:
5c:42:ed:69:e1:97:30:55:f0:28:34:98:f5:47:d0:
68:11:cd:42:09:8c:e1:05:bb:32:b0:81:23:02:3f:
d0:ec:6e:24:67:59:ec:03:a1:1b:b1:d6:be:3d:38:
47:b8:33:50:98:6b:51:fc:ac:b6:56:39:9f:02:3c:
81:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:21:23:D9:05:B6:C8:4B:9E:DD:E9:B0:59:E4:14:AC:E2:09:85:36
X509v3 Authority Key Identifier:
keyid:90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:f7:0f:fa:dd:f4:0d:60:0f:6b:37:f6:d6:02:f8:7c:66:1d:
2b:42:46:e4:83:5f:9b:f4:4a:50:19:16:1a:75:c4:26:43:3d:
74:34:51:5a:93:01:41:ca:b7:52:61:b3:67:fc:3f:e9:a1:19:
fd:2c:84:3e:b8:b7:48:1c:20:64:80:46:cd:a2:97:ee:75:7a:
15:c1:2f:2e:0d:09:62:49:c3:4b:86:c3:dc:b1:99:10:58:f5:
d8:f6:b9:a9:71:68:64:26:cf:2b:50:07:72:5d:36:5e:ca:6d:
1d:09:b8:58:b4:a5:40:c7:6d:cb:81:67:40:79:09:19:37:e1:
31:55:4d:5d:f9:f3:80:2a:e2:21:ae:ec:91:7c:16:a7:81:6d:
4e:b7:b9:12:2e:74:1f:e6:d9:56:df:32:c8:0f:0f:68:3b:f1:
e8:03:36:75:c7:53:70:e6:9b:eb:64:3d:58:a9:7d:a2:5a:bb:
1f:25:2e:ba:ef:f4:0c:ec:c6:6f:58:d9:9f:d6:57:3c:0c:a5:
c0:87:8f:6d:c6:80:ed:96:38:7a:96:05:e1:ea:51:14:61:70:
88:62:67:8d:f6:94:8e:b4:3c:c5:1f:ac:1e:6f:0c:51:db:dc:
a8:f4:00:5d:a6:ac:7d:5f:0c:15:43:72:da:e2:e2:48:d6:e7:
ca:59:ea:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:33:41 2024 by rpki-client on console-ams.rpki-client.org