Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
File: KPev7E0_BvgNaHKm1iRs0B5z1qY.mft (raw, json)
Hash identifier: lO9QjhRevYu0q9+NyApXnbauMCwv9uONtwaLYg8FSGk=
Subject key identifier: A4:28:26:8E:D2:64:10:3C:DF:A9:77:08:94:4F:17:43:0D:45:80:D0
Authority key identifier: 28:F7:AF:EC:4D:3F:06:F8:0D:68:72:A6:D6:24:6C:D0:1E:73:D6:A6
Certificate issuer: /CN=28f7afec4d3f06f80d6872a6d6246cd01e73d6a6
Certificate serial: 019369DA7C9779CC7F0D36A7DCBF67F48AC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
Manifest number: 1377
Signing time: Tue 26 Nov 2024 19:02:26 +0000
Manifest this update: Tue 26 Nov 2024 19:02:26 +0000
Manifest next update: Wed 27 Nov 2024 19:02:26 +0000
Files and hashes: 1: KPev7E0_BvgNaHKm1iRs0B5z1qY.crl (hash: EwON9D17hbh8d4LrCulAZldodGnyGNv3sZNWkz2frJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:7c:97:79:cc:7f:0d:36:a7:dc:bf:67:f4:8a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f7afec4d3f06f80d6872a6d6246cd01e73d6a6
Validity
Not Before: Nov 26 19:02:26 2024 GMT
Not After : Nov 27 19:02:26 2024 GMT
Subject: CN=a428268ed264103cdfa97708944f17430d4580d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:01:9e:f6:28:f3:30:cc:90:ea:a7:b7:e2:56:
30:23:38:95:ca:f8:ef:00:66:50:99:c6:02:0c:9a:
2f:ff:9a:53:c2:d5:39:6a:b6:d2:e5:57:65:7c:70:
2d:9a:f1:ed:7b:f8:35:3b:1c:e8:a5:4b:34:f2:4e:
0f:31:7c:1b:af:a9:53:8c:5e:c1:f3:c2:c9:0e:d8:
75:ba:99:e6:1b:3c:c1:2f:e2:53:70:bc:54:a5:ab:
54:f7:79:be:17:92:82:82:00:ba:08:62:33:96:35:
6f:cc:3e:12:21:41:5e:2d:13:b2:8a:b2:16:a5:c7:
92:6f:85:81:08:bd:d3:cf:72:8e:67:76:e0:e2:a2:
00:7c:5d:10:c8:1f:0a:aa:dd:30:30:49:bb:67:4e:
9b:da:ef:67:b3:8b:34:8c:8e:2e:6e:23:34:39:d6:
91:1b:ff:3b:1f:b9:74:9c:7b:14:64:17:37:79:04:
d7:4b:47:e8:39:5b:11:89:d8:82:82:a3:67:c4:e3:
32:5e:3a:e9:75:ec:1d:73:6b:4a:5d:93:ca:4d:c5:
17:bb:b1:41:8d:fc:ca:d9:51:46:5e:d3:4e:9a:91:
bb:03:8f:6d:56:d1:22:1a:be:75:62:2f:48:62:79:
6b:20:dc:f9:e1:7a:d3:d6:67:ff:56:ae:67:68:cb:
bf:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:28:26:8E:D2:64:10:3C:DF:A9:77:08:94:4F:17:43:0D:45:80:D0
X509v3 Authority Key Identifier:
keyid:28:F7:AF:EC:4D:3F:06:F8:0D:68:72:A6:D6:24:6C:D0:1E:73:D6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:ae:9f:5d:86:47:d3:88:34:9c:55:0a:4c:7f:e8:af:dc:c2:
00:e6:b3:6a:67:5e:e1:e8:cb:6c:bc:12:71:2c:3a:d0:c7:4b:
83:d8:37:28:2f:be:ff:b7:4f:ea:16:0d:ba:44:c8:eb:c8:5c:
f3:af:76:2e:5f:6d:b9:7b:4d:7a:22:0b:18:48:ff:b7:b4:64:
01:02:a3:79:fd:b5:f8:18:f2:32:84:f2:20:2d:7c:58:fc:05:
e8:3b:28:03:56:dc:d1:85:29:61:0b:33:0d:1f:db:00:f0:ec:
34:40:87:4f:74:86:bb:d0:db:a7:b4:c5:86:49:4f:fc:c4:23:
5b:2a:b7:70:f5:2d:84:8a:d7:4b:8d:4e:0e:84:90:89:6d:e1:
7e:c5:b5:d3:95:76:21:89:f1:df:b9:72:ba:e0:dc:b1:fa:ce:
23:a9:d3:15:ce:5f:be:e8:a6:98:cb:dc:f5:b8:f4:4d:5d:3c:
b2:fe:42:6e:28:63:59:ae:ad:e1:79:37:26:b2:ac:7c:2e:03:
bf:cc:9b:7e:fb:dd:9e:26:dd:46:de:d1:59:e1:1a:cd:57:e4:
5e:a4:79:ed:cc:8b:2a:b1:b8:bf:9b:30:55:49:75:27:25:14:
ff:da:56:c0:6c:24:b7:5f:01:ef:5c:47:a2:5b:8f:31:38:74:
81:bc:e1:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:13:11 2024 by rpki-client on console-ams.rpki-client.org