Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
File: Kq8k6REaiJ202uCH5ICeEIbjP4I.mft (raw, json)
Hash identifier: J+cxlBGwYgSMz/WhZx2rTWfVkOBiVtHqGtZK9G1+B1w=
Subject key identifier: D7:36:80:EC:BC:74:4D:53:39:88:18:50:AC:0E:36:E5:0F:BC:64:FD
Authority key identifier: 2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
Certificate issuer: /CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Certificate serial: 018F87B69373CB2427B6EDF14B31C2D39B1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
Manifest number: 10D3
Signing time: Fri 17 May 2024 18:00:40 +0000
Manifest this update: Fri 17 May 2024 18:00:40 +0000
Manifest next update: Sat 18 May 2024 18:00:40 +0000
Files and hashes: 1: Kq8k6REaiJ202uCH5ICeEIbjP4I.crl (hash: r/l5i3XO+fAPutjOCKj09IymGXwpDRLJVflKxxYDEI4=)
2: uZok7D_QdrsSU-e02B-oSZtFoto.roa (hash: ColYrkkd0iyFyEmNIa75L/F7iTI5MNe6LpM59hlSpL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:93:73:cb:24:27:b6:ed:f1:4b:31:c2:d3:9b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Validity
Not Before: May 17 18:00:40 2024 GMT
Not After : May 18 18:00:40 2024 GMT
Subject: CN=d73680ecbc744d5339881850ac0e36e50fbc64fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:41:c1:bb:70:94:94:6e:52:fc:52:5a:af:b6:
1c:9d:a5:f2:02:0c:5f:08:da:d8:51:a9:37:08:91:
0b:86:82:a6:ae:df:03:f0:de:b3:66:0e:0d:2d:12:
c8:b0:a6:45:6a:9b:d1:47:63:ba:3a:f8:82:96:43:
f7:18:eb:10:55:a7:1e:38:c5:6d:a1:cb:9c:f5:cc:
04:7d:2f:1b:b5:f9:e0:0d:82:a9:b6:7a:73:41:15:
48:43:e3:66:9a:98:83:68:2d:e3:1c:60:e9:02:b6:
dd:6d:c0:be:b5:4c:99:6d:d8:92:51:c2:69:25:7d:
c4:12:5e:96:33:9f:c8:77:4c:60:2b:a9:57:25:ef:
13:24:5d:43:56:8c:67:0c:f0:43:81:9e:d2:ce:c1:
ba:e4:fb:cc:20:96:5c:ff:dc:3c:81:f5:4b:41:fd:
66:81:51:4e:e9:55:ff:8b:1d:cc:89:6b:ef:bc:8b:
fd:b1:d2:e5:8b:d3:d9:21:ce:2f:77:6e:35:08:91:
7e:ca:4f:16:4d:3f:c0:3d:fb:3d:98:d4:94:8a:6d:
ec:31:b8:43:78:cf:92:d9:35:1a:50:c2:44:26:46:
b3:fa:40:d2:81:56:8c:22:10:1c:76:a9:a4:1f:d6:
29:3c:8d:7e:e0:77:ed:80:e5:73:25:ec:41:1a:46:
a6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:36:80:EC:BC:74:4D:53:39:88:18:50:AC:0E:36:E5:0F:BC:64:FD
X509v3 Authority Key Identifier:
keyid:2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:79:e2:18:23:c0:96:c1:1b:19:57:79:7f:f8:eb:d7:9c:ea:
d2:a4:0f:5f:0e:25:0f:cc:3c:6b:f2:86:10:a7:b3:d4:6d:20:
43:e0:08:81:44:43:dc:8a:cd:13:f5:c4:22:58:20:da:57:1c:
e6:13:23:28:73:7a:86:7a:8a:00:dc:c9:ea:ee:72:84:2f:83:
07:1f:c7:44:0c:7f:9a:de:38:c3:2e:83:7c:36:a4:ba:7b:27:
1d:b9:c7:b8:11:ec:e4:bc:92:e7:50:df:9f:4b:a7:b8:f6:ae:
60:57:42:c4:53:6b:7a:53:f8:85:fe:af:15:90:39:fd:14:cc:
c0:3f:7c:03:45:82:f3:97:2f:fa:ec:36:4f:83:a9:0b:6e:74:
9d:bb:38:2b:d1:7a:9a:be:5b:0c:a6:8a:00:b6:cc:ee:cb:34:
33:cd:31:69:54:99:02:b2:56:dd:c4:5b:dc:9f:f1:6d:a4:3c:
7d:43:ee:ff:20:b8:c2:5f:13:2f:c3:0c:a3:91:f4:94:f8:04:
a2:bd:69:74:6e:01:a3:59:a2:0a:5c:30:7c:9c:df:c4:72:ef:
db:06:8e:b6:95:e9:af:cc:e1:65:a5:57:68:2d:c9:a3:ad:25:
75:4e:87:de:00:85:d6:78:1d:05:78:92:c7:06:06:11:51:14:
ec:89:f0:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:13:04 2024 by rpki-client on console-fra.rpki-client.org