Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
File: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft (raw, json)
Hash identifier: Hl9FHhekN4uq7rlzDaJteAncT7fikJJWLJR48uMfdvQ=
Subject key identifier: A6:22:D8:7F:AA:15:10:ED:4A:C1:A1:82:63:3C:6E:5E:10:77:D6:16
Authority key identifier: 28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67
Certificate issuer: /CN=2858d2f131715cbaf3cdd920645924f53508e067
Certificate serial: 01936AEB6D44B905B5741AE4BD9A18520F52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
Manifest number: 081A
Signing time: Wed 27 Nov 2024 00:00:33 +0000
Manifest this update: Wed 27 Nov 2024 00:00:33 +0000
Manifest next update: Thu 28 Nov 2024 00:00:33 +0000
Files and hashes: 1: Hv4v9AKkNvSFrJq4-_EcOusuo6k.roa (hash: hVSkIC2QDOrkjAmApq3LuHdMRn3xKec+LohAZ0lT+WM=)
2: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl (hash: 9euj6x6+jppe/jbaC+B7P/kH+ZblqfhEOHImTJsCdkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:eb:6d:44:b9:05:b5:74:1a:e4:bd:9a:18:52:0f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2858d2f131715cbaf3cdd920645924f53508e067
Validity
Not Before: Nov 27 00:00:33 2024 GMT
Not After : Nov 28 00:00:33 2024 GMT
Subject: CN=a622d87faa1510ed4ac1a182633c6e5e1077d616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:96:84:55:a8:89:37:d1:4e:b3:23:a8:41:9b:
47:3f:a3:55:bf:a7:90:d9:12:f2:10:36:c7:64:db:
4b:46:4a:7a:d2:bb:61:e2:96:f1:f5:f4:53:86:28:
a5:19:d6:97:ee:78:84:bb:9d:42:36:e9:c0:f6:1e:
4e:87:b5:f0:9e:99:ba:7c:78:0c:8c:53:d9:eb:b2:
9e:f7:08:8c:73:49:09:17:e1:df:1c:a8:a4:2d:85:
24:c2:d3:2b:1a:da:ae:66:51:e6:82:06:a8:05:9b:
fd:95:90:24:2e:32:6a:63:d4:ba:1f:81:0c:11:3f:
e9:63:8b:d5:db:a6:02:9b:07:3b:10:d2:46:f0:b8:
ae:99:45:2c:3e:46:5e:24:03:65:74:ed:0a:5e:25:
89:a9:6f:50:9f:d3:e7:e1:71:ed:ce:df:85:27:04:
34:6c:93:5e:58:96:b8:38:84:6d:d2:ff:1f:7e:c5:
92:b2:7c:1e:80:1b:e9:cd:96:8a:16:2e:60:d0:2c:
e5:e4:18:2e:ca:a5:61:9b:b8:83:16:cc:a6:fe:d0:
ac:50:f4:d9:92:c1:4d:01:aa:50:02:db:5c:06:2d:
db:a3:d3:c7:a4:07:55:5d:49:84:99:d2:9d:78:93:
01:64:1d:ab:8a:aa:eb:c4:b0:e9:90:a6:de:32:bf:
12:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:22:D8:7F:AA:15:10:ED:4A:C1:A1:82:63:3C:6E:5E:10:77:D6:16
X509v3 Authority Key Identifier:
keyid:28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:0f:ae:99:83:52:14:2e:fb:8c:21:89:17:da:25:68:f0:8b:
05:1a:85:24:0f:e7:52:b3:ae:72:c0:00:7f:0b:9b:dd:1e:d6:
e7:fd:0e:a3:51:8d:27:70:01:ec:b3:d6:05:47:31:e9:e3:27:
93:17:f3:32:82:3a:d1:b1:a8:15:0e:fa:67:d3:e2:7c:b1:d3:
4d:f0:2a:ee:a2:79:44:29:21:b4:8f:b0:fa:77:87:b0:59:34:
5b:76:53:22:85:c3:e3:cb:e2:33:0c:ed:07:12:11:71:5b:a5:
21:29:f8:2c:44:11:bd:98:4d:c4:21:35:6d:95:51:5e:32:dc:
d9:ec:a0:d0:73:13:ea:1c:93:03:eb:77:34:1e:68:71:8f:aa:
aa:d4:6a:02:1f:e3:0e:d5:26:99:da:0d:d6:a8:62:fe:2b:fe:
ce:1e:16:2a:55:d5:a8:d9:1a:6f:4d:1b:8a:72:81:03:e9:ce:
49:c2:78:50:fd:13:ff:0b:d1:b4:00:99:00:9a:94:de:83:21:
19:56:f4:2e:63:18:04:7b:56:1b:5a:41:6a:e0:73:9c:25:3b:
3b:7b:ec:ca:ec:c7:61:34:4c:41:c9:2b:91:d0:ef:68:8b:b5:
53:f5:f4:3e:cb:71:77:ff:cd:28:49:d0:0b:6c:36:67:af:78:
0b:c4:e7:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:47:38 2024 by rpki-client on console-fra.rpki-client.org