Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
File: 1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft (raw, json)
Hash identifier: ++QNpjiDzU3+bBKehuQF1Rpvizbm5CO1J8ybbQN96lE=
Subject key identifier: 0F:1B:46:FA:40:03:9E:66:9B:6B:D2:7B:CD:89:CC:13:4C:55:56:3D
Authority key identifier: FA:69:2F:DA:01:96:87:D5:8D:71:BF:32:C0:90:8D:12:E4:6B:4C:A5
Certificate issuer: /CN=fa692fda019687d58d71bf32c0908d12e46b4ca5
Certificate serial: 019364B25ACD1BFF5613276C68E16C9DC9A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
Manifest number: 0F80
Signing time: Mon 25 Nov 2024 19:00:30 +0000
Manifest this update: Mon 25 Nov 2024 19:00:30 +0000
Manifest next update: Tue 26 Nov 2024 19:00:30 +0000
Files and hashes: 1: 1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl (hash: 7a6DhwC1rw5gmcW7M2hsgQT201G6HiW/u00qLyDbF84=)
2: OfxRPh-Gj9Dw6X4_wlWlCenzz8w.roa (hash: 2MDGFAJ0v4x2N7btSIG5hb92aR31KwsRq1wdxmtodz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:b2:5a:cd:1b:ff:56:13:27:6c:68:e1:6c:9d:c9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa692fda019687d58d71bf32c0908d12e46b4ca5
Validity
Not Before: Nov 25 19:00:30 2024 GMT
Not After : Nov 26 19:00:30 2024 GMT
Subject: CN=0f1b46fa40039e669b6bd27bcd89cc134c55563d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:41:9a:9c:ec:fd:49:a7:d3:d6:34:11:50:d1:
b9:23:62:5b:9e:f3:dd:be:94:59:bf:62:43:a3:d0:
ca:71:5e:72:2f:61:f4:49:34:54:3e:5f:35:ac:f9:
ee:06:f9:fd:fd:1c:25:03:11:0f:85:4a:ee:e1:a9:
c1:cb:6d:14:05:e8:66:a2:06:f9:ea:d6:c8:b2:85:
df:6e:c4:49:91:65:8a:97:ad:ac:d4:67:0c:32:78:
4b:b5:cd:11:40:13:29:b8:b8:91:4d:36:24:dd:2a:
54:b4:f3:04:ed:47:71:89:a9:4c:d1:c8:3d:fe:79:
a7:85:cc:41:f8:bf:f4:63:25:db:d0:c9:c6:ab:cb:
cb:25:9e:45:49:7a:0e:f3:01:5a:f5:f7:c4:97:51:
0a:03:75:c4:c5:41:88:59:2e:09:be:d9:58:bd:06:
0a:20:d5:26:87:69:4d:cd:59:62:a3:bb:62:98:0f:
3f:c2:1d:1d:f6:14:3d:c2:5d:76:28:ed:63:f4:69:
24:0c:5b:f1:f2:3c:c0:02:de:c6:50:38:67:5b:d1:
b6:df:19:25:52:e3:d0:45:6d:33:36:0d:80:90:a5:
22:ab:21:b0:e1:e2:0c:85:0f:2c:76:ea:ff:4d:e6:
45:31:e3:13:f2:b7:dd:a0:a5:e8:77:01:6f:2d:a2:
e2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:1B:46:FA:40:03:9E:66:9B:6B:D2:7B:CD:89:CC:13:4C:55:56:3D
X509v3 Authority Key Identifier:
keyid:FA:69:2F:DA:01:96:87:D5:8D:71:BF:32:C0:90:8D:12:E4:6B:4C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c0:2f:9d:c6:04:6f:1e:2d:73:75:cb:e6:f8:9e:43:da:a2:
47:2b:4e:85:b6:88:40:9d:e1:e6:56:e9:16:34:f6:41:92:73:
81:b1:29:58:d2:38:fd:64:50:1a:d9:75:df:14:40:5d:f4:3a:
7b:37:25:45:9f:03:33:ca:d0:60:b9:b7:f9:07:6f:a1:a2:a5:
88:ef:5e:a2:8e:14:17:12:2b:d8:59:36:ee:48:c5:88:d2:be:
1c:03:7f:a2:ef:ec:fe:f6:f3:ea:23:f7:ab:e8:57:83:7f:89:
b7:e5:fa:96:f2:b0:c8:f4:e5:78:12:e0:a4:d7:af:a1:fa:d1:
db:20:10:0f:41:d7:b4:45:59:05:b0:61:16:e7:f0:b2:94:fe:
03:c1:ca:d8:48:97:cd:69:c5:fd:dd:d4:15:72:b6:91:32:e8:
5e:a3:c0:a6:25:7e:15:a2:66:05:53:6b:1f:84:50:35:70:da:
55:89:bb:93:3c:2b:39:84:4b:0c:44:c8:d7:ee:40:3c:93:ac:
f8:99:c6:a0:d4:97:7a:93:1c:4b:62:a1:85:f4:80:89:28:2b:
96:f6:2b:26:7d:d9:d3:a0:a6:f0:3a:d6:6d:b3:c7:3c:85:aa:
10:42:cf:13:04:f9:d0:5e:6e:ba:2f:5a:df:1a:d6:c4:da:48:
0b:6f:ec:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:50:43 2024 by rpki-client on console-ams.rpki-client.org