Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
File: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft (raw, json)
Hash identifier: c5MUFY2jcw5IxqHMMo+zWL69SDh7648WcU9+9utoJHA=
Subject key identifier: 43:A3:AC:AA:68:2C:99:DA:C0:82:7B:5D:E4:97:18:79:F2:0C:34:9C
Authority key identifier: 28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67
Certificate issuer: /CN=2858d2f131715cbaf3cdd920645924f53508e067
Certificate serial: 018F88249C9BF05C2E75B758817285F27EDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
Manifest number: 0616
Signing time: Fri 17 May 2024 20:00:51 +0000
Manifest this update: Fri 17 May 2024 20:00:51 +0000
Manifest next update: Sat 18 May 2024 20:00:51 +0000
Files and hashes: 1: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl (hash: xErrRRjuMXBEd9NJf00r1dNL/rYGFaQqWe4xqUhsCmg=)
2: SdCBxo8Zj3RergHVYE1F3iql6bA.roa (hash: x7S/aNYbRfDipay30sF6Iu5/45QF62yXqk38/ggX/GA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:9c:9b:f0:5c:2e:75:b7:58:81:72:85:f2:7e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2858d2f131715cbaf3cdd920645924f53508e067
Validity
Not Before: May 17 20:00:51 2024 GMT
Not After : May 18 20:00:51 2024 GMT
Subject: CN=43a3acaa682c99dac0827b5de4971879f20c349c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ea:3c:c4:9f:78:22:0f:b0:4e:91:16:72:a1:
54:45:ea:b5:b8:b6:de:ef:fb:4a:a9:80:fd:27:2e:
07:3a:40:27:24:ea:a4:8c:33:5d:b7:a6:08:1c:a6:
17:fb:39:85:57:a4:f8:00:86:19:ce:8e:2d:51:c2:
78:a3:15:a1:d5:31:35:75:77:4e:e2:25:60:a7:19:
f2:c2:59:e3:f2:7b:aa:3f:58:9c:ea:b4:73:f6:4f:
26:94:de:46:cf:d3:12:83:7f:27:b8:76:5f:f3:91:
7e:d9:f7:a5:ec:b0:ba:9e:50:59:8f:35:b2:f1:72:
91:b9:b5:05:0e:77:c1:0e:ab:ff:d4:e3:f2:f0:a0:
31:45:99:2b:dd:91:98:71:d6:93:93:7a:1c:92:c2:
c9:8a:29:0b:96:ac:c6:d1:d4:85:5f:79:85:f5:6f:
22:9b:95:0e:4d:32:e2:42:ce:d9:e3:04:e4:e8:58:
39:50:23:78:41:85:77:80:ab:48:8c:1d:42:f8:c7:
be:3a:1e:c4:26:e1:b8:6e:cd:09:6f:c6:83:4b:26:
77:1a:69:3b:9d:23:e7:b5:6b:84:23:99:de:b7:f5:
af:9e:62:44:a0:cc:01:c3:3f:67:39:d9:79:97:87:
f1:c8:ba:c0:e9:b7:f0:49:65:74:52:48:32:fa:66:
f0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A3:AC:AA:68:2C:99:DA:C0:82:7B:5D:E4:97:18:79:F2:0C:34:9C
X509v3 Authority Key Identifier:
keyid:28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:a0:27:78:54:66:a3:24:73:bf:97:a9:d2:1d:02:77:48:f0:
eb:14:97:bb:89:b7:d4:ae:68:94:86:93:fe:01:ee:5e:af:a1:
5c:fc:13:bb:bf:d6:00:f3:14:31:e3:e7:bf:cb:3a:10:e7:d1:
67:77:cf:98:e9:94:f0:f3:1e:57:4d:62:56:3f:4f:8d:8d:91:
8a:ea:01:ea:60:f5:bb:12:fa:aa:94:ba:00:0b:cb:93:53:96:
4e:93:19:7d:8d:9d:ef:2d:68:3b:6a:e3:b5:48:31:5e:d0:a7:
11:2f:a0:29:e7:e3:86:7b:0c:85:68:b0:f0:0f:e2:a4:6d:cf:
a1:9d:e3:9c:97:e8:da:f0:f0:6c:99:30:c9:d2:41:e9:d8:07:
b4:c5:ab:52:e3:78:f7:e6:66:97:81:7a:11:a8:e9:29:78:20:
9b:d3:30:f0:54:c9:c5:4e:5d:ad:c3:61:5c:33:a4:7b:e0:2b:
54:d9:76:cd:92:8c:76:e3:93:f6:0c:98:2e:cb:94:1d:59:fe:
56:f0:38:d8:58:6f:fa:2e:d4:61:66:9e:ec:76:2d:b8:2d:56:
d1:d9:8a:38:fc:71:37:a3:d5:e9:d2:73:cc:9c:36:3f:c5:5b:
79:ff:1e:9f:79:c0:ed:e1:a4:d5:d8:31:ef:52:1c:58:75:38:
d9:02:eb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:11:26 2024 by rpki-client on console-ams.rpki-client.org