Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
File: KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft (raw, json)
Hash identifier: PAWiNHivMGqAgYTR8Ps/ZS+YnuGBJKGsgspAJzUu5nw=
Subject key identifier: 5C:C1:15:B4:CC:AD:01:09:2B:87:04:EC:63:E8:BF:EF:34:F2:0D:78
Authority key identifier: 2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
Certificate issuer: /CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Certificate serial: 0193572E19729A38F294D3EA5636AE10087E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
Manifest number: 088C
Signing time: Sat 23 Nov 2024 04:00:59 +0000
Manifest this update: Sat 23 Nov 2024 04:00:59 +0000
Manifest next update: Sun 24 Nov 2024 04:00:59 +0000
Files and hashes: 1: 1-xwgRtB6YU3jARZeVMHmZxsKSPY.roa (hash: BHJD8mM4AI3EnA0DdZyHrdWu0jaI7RO+5w7px8P51xw=)
2: KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl (hash: lz6k4kjxl/wZbPFBhMPd3GNg4X4DhGJDmnJzWykr9tM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2e:19:72:9a:38:f2:94:d3:ea:56:36:ae:10:08:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Validity
Not Before: Nov 23 04:00:59 2024 GMT
Not After : Nov 24 04:00:59 2024 GMT
Subject: CN=5cc115b4ccad01092b8704ec63e8bfef34f20d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:64:ce:d9:2e:64:3a:fc:c0:d6:fb:93:a7:53:
ba:58:77:76:23:1c:ae:7e:09:50:51:6a:94:89:23:
46:68:f2:a5:b6:38:03:de:37:d2:f6:02:5b:60:bc:
1a:40:ef:7c:fd:96:d7:5b:37:c7:13:ca:6b:e5:12:
4b:15:55:9e:7d:63:7c:50:3d:ab:35:12:6f:08:5a:
83:56:aa:e0:e4:bc:3c:be:00:00:e7:0a:71:f7:c3:
ac:34:50:b6:d3:a8:8b:68:74:9c:eb:cf:e1:cf:1a:
00:13:7a:6b:ef:ba:3c:57:19:71:ed:b6:2d:52:3d:
62:80:16:64:b3:cd:78:c6:dd:08:76:89:8e:b7:1c:
1f:c6:64:ce:8f:ed:87:5c:8a:15:0e:a3:1b:1d:30:
bf:0c:75:27:33:c0:eb:f3:83:17:cf:0a:05:03:9a:
fc:90:94:7a:b1:0a:86:e6:da:35:94:1a:eb:a8:98:
27:31:b1:cd:54:41:cc:7b:27:65:49:6a:51:9c:c4:
b3:e6:bf:f7:1d:c4:d2:e6:e6:07:c8:8e:fe:8b:60:
cb:4f:b4:cc:ec:68:1b:4b:e2:34:56:b9:50:01:cd:
95:b7:2b:36:a7:46:69:a6:09:ea:5c:76:6c:b4:10:
9e:47:a8:fa:dc:45:73:45:4e:8a:34:2f:f6:98:84:
5d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:C1:15:B4:CC:AD:01:09:2B:87:04:EC:63:E8:BF:EF:34:F2:0D:78
X509v3 Authority Key Identifier:
keyid:2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:42:6e:e1:e3:65:28:24:ef:8c:02:ed:82:7c:02:4f:49:f8:
8a:a5:be:06:db:3a:09:de:20:b3:c7:6b:41:28:4f:13:58:f4:
45:eb:83:14:2e:4e:f5:81:7d:90:6c:45:13:d7:ed:ef:5b:8f:
6e:de:b8:be:c1:6c:25:06:74:09:fb:d2:48:f4:4f:e2:54:c1:
ab:79:69:12:57:dd:ec:ef:22:74:7b:7a:8a:c7:6c:b0:3b:51:
be:e8:3c:0f:64:11:23:19:22:be:8c:44:ab:f9:73:d7:51:82:
8b:b0:41:5f:b4:16:4d:0e:6c:3e:1d:a5:5e:b7:ac:fa:0d:db:
b8:17:1e:21:6e:0b:9f:be:4e:c2:cf:ea:f0:ee:2f:47:4a:50:
83:b7:61:f2:fb:ce:be:cd:66:7a:04:88:f9:1c:af:05:41:c9:
4f:8d:54:af:94:00:10:02:77:62:3e:ea:cd:d3:84:78:d1:fc:
85:59:1c:63:75:90:68:1c:19:b2:fd:74:0b:fd:bf:8b:ea:b4:
68:3d:c6:73:31:2c:b7:2f:88:af:90:60:e6:ba:d7:75:31:ad:
18:0e:12:68:70:91:4e:b4:01:30:ff:be:85:5d:45:30:70:7d:
55:07:b2:d4:c5:f3:b2:a0:a3:e6:ef:48:8d:b9:42:ed:ef:90:
12:76:0a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:52:41 2024 by rpki-client on console-fra.rpki-client.org