Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
File: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft (raw, json)
Hash identifier: EOxAv2yObFOyYAUbTbbLt+SpO6P3vyd8Bym2WzJ4hBs=
Subject key identifier: D8:25:3C:EB:65:0F:08:9F:C5:C7:48:72:0F:6D:61:32:DC:96:D6:6D
Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Certificate serial: 0193640F3049C8488B102A29F5DE39752CEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
Manifest number: 0DC1
Signing time: Mon 25 Nov 2024 16:02:17 +0000
Manifest this update: Mon 25 Nov 2024 16:02:17 +0000
Manifest next update: Tue 26 Nov 2024 16:02:17 +0000
Files and hashes: 1: AJOLKE2Flv_FgbL4gDRgjGjFXuE.roa (hash: Y7i/5jdLaltCXniIz/vTYwNic4y/JUthLby94o67aIY=)
2: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl (hash: 4gR6p4Y5l0sZyBDvQNalc7vKiCHodr5eWmtoI2Izzuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:0f:30:49:c8:48:8b:10:2a:29:f5:de:39:75:2c:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Validity
Not Before: Nov 25 16:02:17 2024 GMT
Not After : Nov 26 16:02:17 2024 GMT
Subject: CN=d8253ceb650f089fc5c748720f6d6132dc96d66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:50:7c:29:4b:a2:02:85:f5:98:cd:39:76:e5:
8f:c1:5d:9a:92:44:d9:93:31:5d:4d:57:cc:0c:d4:
bb:86:b1:b2:6d:a5:9c:f9:45:a6:cd:8d:20:11:b7:
f4:1f:ff:d0:b1:05:41:1f:1c:b8:70:f6:1c:f8:58:
ee:6c:5b:0f:25:d5:20:ba:60:f6:b9:78:4d:c4:8c:
0f:e5:5e:71:33:7d:ff:d6:b6:97:11:dc:35:13:03:
16:2b:88:42:36:ec:0f:7e:b0:bc:64:27:ed:24:c9:
d6:fb:e6:51:38:b3:f7:7a:1f:1b:71:53:f9:45:bd:
49:6a:97:ff:a1:49:0a:2b:9e:c7:a3:b4:df:2e:b0:
1f:e7:af:e2:9c:dd:ad:7a:66:0a:ae:4b:c7:33:03:
e8:47:f7:2a:6c:cc:04:15:91:a9:f4:ca:77:99:a7:
dd:41:7b:40:b7:9e:7a:42:96:16:95:0b:6b:68:1c:
ab:5c:18:d1:38:5a:44:93:24:7e:ed:7b:bf:21:45:
5b:6f:82:90:48:3e:b6:d5:7b:39:f3:c9:b8:73:21:
82:c8:7a:3c:08:c7:44:f9:7f:1c:7a:fd:3c:4d:4a:
43:75:be:e8:bc:73:33:ce:04:36:db:67:51:40:01:
14:05:79:86:2a:67:d2:f8:e6:e8:c1:e9:3c:0f:8c:
80:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:25:3C:EB:65:0F:08:9F:C5:C7:48:72:0F:6D:61:32:DC:96:D6:6D
X509v3 Authority Key Identifier:
keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:92:19:52:40:ea:00:2b:3c:66:06:b1:ef:4f:43:0b:9b:ec:
c5:df:24:60:49:3d:3e:d5:d3:23:68:f7:37:3f:83:27:d1:29:
0f:4f:f7:9d:d8:d2:79:31:9d:30:48:cf:c5:4b:79:b9:b8:ca:
be:a1:8d:1a:3c:96:dc:43:93:73:59:93:b3:a5:99:f6:8c:7d:
99:ae:1a:de:ab:df:ee:a8:d9:eb:64:42:28:a1:cc:e1:02:ec:
fb:1f:93:01:d3:b4:1c:ab:0d:bb:0a:b2:93:f2:ea:2d:c7:67:
7f:7d:b3:29:ff:34:41:3e:a7:d7:b3:28:62:ec:4a:5a:29:d0:
46:a2:6e:54:6e:e0:c7:eb:52:bd:64:8e:50:ef:8d:c5:0a:2b:
09:dc:3b:9e:f1:1e:0e:df:9e:f7:f1:06:4a:b8:18:a6:a3:d7:
35:9b:7c:29:40:b4:14:f4:e3:9e:f6:b0:f6:93:73:38:f2:4e:
74:4c:4c:e2:48:8f:0d:37:d8:b9:b2:a9:d1:fe:01:46:34:ef:
94:52:d2:1f:d6:0d:f4:9a:0b:56:bf:56:d8:c4:62:21:e4:81:
bd:11:1e:24:df:19:d9:f8:1a:6d:04:70:48:e0:c0:76:e9:5f:
b2:2a:4c:1e:4c:ce:3b:36:ae:34:c0:ad:78:e7:c3:2c:f4:cc:
a0:b6:cd:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:21:47 2024 by rpki-client on console-fra.rpki-client.org