Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: i4koZN4P2DindGXGBL11NRZ/8D+qIzV8lgKrHuSi3TY=
Subject key identifier: A0:A7:BC:AF:FA:FC:75:09:EE:B0:72:68:22:77:E5:65:D5:8E:44:A0
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 0193531A445A2917D823A33BCB3FEC66F8C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 11E1
Signing time: Fri 22 Nov 2024 09:00:50 +0000
Manifest this update: Fri 22 Nov 2024 09:00:50 +0000
Manifest next update: Sat 23 Nov 2024 09:00:50 +0000
Files and hashes: 1: 8tqsGFUj1zv4xp6EHyzHjsnokdA.roa (hash: 2tsgE8OVdzDHofpIgIfP6jVr3QMLyKNG8NqG72dSpfI=)
2: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: xr9xbHvf2sT0u0Ic20bkJ/pFzdssb19yVwu6ZveNIQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:1a:44:5a:29:17:d8:23:a3:3b:cb:3f:ec:66:f8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Nov 22 09:00:50 2024 GMT
Not After : Nov 23 09:00:50 2024 GMT
Subject: CN=a0a7bcaffafc7509eeb072682277e565d58e44a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c6:8a:88:e2:17:be:a2:b2:2e:b1:cd:7b:28:
91:7f:c9:33:b6:90:f4:6d:80:ea:f1:a4:a3:57:b6:
65:0a:3a:50:f0:70:43:b8:07:14:ea:fa:98:b1:67:
dc:97:fb:96:6c:5f:4f:d0:c6:79:0c:ed:ca:7a:6d:
f3:98:17:6d:75:84:5f:7e:cb:60:c3:a4:49:67:3a:
ed:7b:37:08:05:ec:41:82:a3:41:ab:42:2a:1c:f0:
e7:d4:16:cd:70:4d:85:c1:02:65:aa:90:b9:0c:aa:
6e:c1:87:a6:29:d9:aa:90:77:e3:50:b9:55:83:b1:
b1:d2:62:ed:56:e4:e4:81:c7:b7:ce:42:9e:b3:63:
54:b6:8f:e4:23:bd:8a:19:f6:1d:de:5c:bb:bd:ab:
ef:81:dd:f3:0c:fc:a7:76:c5:53:11:dd:0c:75:4d:
d4:b7:ea:34:fd:b3:79:95:26:b6:e0:26:a7:e1:98:
fb:d7:47:81:6f:aa:30:fb:20:39:a7:72:a0:72:c9:
43:7c:27:fa:bc:35:7c:ae:87:2b:08:44:03:26:03:
5f:2a:12:1f:04:32:9e:b2:70:22:26:3c:14:3e:9e:
a8:b7:a7:ac:a2:6c:3d:fc:20:58:b8:00:42:62:b9:
5e:88:b6:82:ab:68:c4:89:11:3a:60:df:6c:4a:dc:
92:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A7:BC:AF:FA:FC:75:09:EE:B0:72:68:22:77:E5:65:D5:8E:44:A0
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:91:66:24:85:70:f9:7d:06:fd:c1:44:3b:1a:b4:3a:2f:28:
24:de:4e:f9:4f:b9:56:9b:c1:3a:96:2e:8c:b6:91:06:a2:90:
c2:92:d6:ed:b6:9d:16:be:6f:ae:37:0e:a0:29:1a:56:af:d3:
a2:a4:c5:d3:a9:15:7c:44:6e:39:96:90:fb:d1:78:f3:d5:d3:
e3:ac:5c:f7:da:3a:49:51:ed:bd:55:bd:3b:02:34:76:c0:91:
46:8c:ab:10:89:44:a9:10:d6:dd:98:8e:9e:7c:4f:4a:c4:21:
ea:00:27:9d:74:cc:d8:db:54:88:92:2f:59:87:c5:0b:80:93:
ca:22:d3:07:97:47:66:d7:68:cc:b2:fd:b6:3e:8c:60:65:20:
19:4e:1f:44:03:23:90:dc:54:d7:c7:43:65:01:a5:cb:0f:40:
ac:a0:bb:c0:2a:c3:71:c9:90:60:2c:9d:87:09:eb:9b:d6:b2:
a8:7d:fa:b8:38:1a:a5:cd:d7:45:bf:af:69:8d:56:54:ac:e6:
a0:49:48:c6:d9:4c:0a:3e:97:6e:87:14:4c:77:f7:c8:a2:89:
64:aa:2a:3b:76:3e:28:0a:0c:86:f3:53:93:90:39:a8:f1:1c:
fd:b4:57:cb:54:8b:b1:90:0b:2b:7f:e7:a2:8a:e4:8d:45:14:
5a:1b:87:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:32:17 2024 by rpki-client on console-ams.rpki-client.org