Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
File: _KrlFMX5lAORQ1YU15QEvuEgmzs.mft (raw, json)
Hash identifier: 8slDa8FW0/viyGljaXjC3BgdcHu44KsCQsyZaP6aAVQ=
Subject key identifier: 3B:F1:1C:12:4F:00:2C:2E:86:D2:8F:5D:B8:B4:1D:31:DC:A4:C0:E8
Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b
Certificate serial: 0193568A999E5B1F620FCBA3D7A9470B3D31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
Manifest number: 0518
Signing time: Sat 23 Nov 2024 01:02:23 +0000
Manifest this update: Sat 23 Nov 2024 01:02:23 +0000
Manifest next update: Sun 24 Nov 2024 01:02:23 +0000
Files and hashes: 1: Mi4rMBilffJFYoUOB2q3n62YE2Y.roa (hash: faXKGLHQL7dcIIMenmL342SBs+vJJ+ykTBzk+dGAWx4=)
2: _KrlFMX5lAORQ1YU15QEvuEgmzs.crl (hash: XW4MqswJeWhPB6Missws/u9SBZBwJs4DQC/4LxwILtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:99:9e:5b:1f:62:0f:cb:a3:d7:a9:47:0b:3d:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b
Validity
Not Before: Nov 23 01:02:23 2024 GMT
Not After : Nov 24 01:02:23 2024 GMT
Subject: CN=3bf11c124f002c2e86d28f5db8b41d31dca4c0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1d:a1:ba:eb:87:c3:04:b1:ba:fd:95:cb:8f:
2e:96:5e:72:29:f4:20:c2:ab:ed:8a:43:2a:65:43:
f9:23:3b:1e:5c:e2:1f:56:24:45:85:e7:06:74:6f:
4b:7b:33:07:de:f0:43:18:3a:b9:a0:15:f9:69:a0:
6b:5f:d9:bd:25:65:31:98:d9:8e:2f:c5:21:11:eb:
b0:f1:6d:ab:f6:97:0a:4f:9e:27:eb:83:09:59:45:
eb:67:53:10:2d:4d:2e:3d:70:e9:cc:8e:9a:40:5f:
a9:5b:18:a1:44:58:66:1f:96:87:db:d8:17:19:57:
5f:25:2d:5d:ba:b1:09:2d:77:14:d6:93:d6:8f:01:
1e:43:d3:02:af:49:98:fd:59:5f:4f:12:86:40:5c:
61:cd:e7:1d:60:2f:88:37:d2:cc:20:0a:37:59:83:
51:74:1a:1c:57:5c:a1:c2:02:cb:e3:47:69:fd:48:
18:8f:7f:74:f7:c7:ae:68:48:7d:e7:86:22:53:45:
7b:aa:86:ed:69:2e:b8:05:33:fd:8c:46:9b:92:14:
1c:d4:25:40:c1:21:96:4e:2f:54:86:2b:90:ec:3a:
0e:71:d0:7e:00:dd:6e:0e:13:3d:3d:6d:60:0e:f1:
2a:6a:cf:fe:9b:a9:de:40:45:c0:69:78:13:b0:c3:
72:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F1:1C:12:4F:00:2C:2E:86:D2:8F:5D:B8:B4:1D:31:DC:A4:C0:E8
X509v3 Authority Key Identifier:
keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:3a:02:e7:57:0e:65:3b:0a:f4:f5:87:e4:6b:13:d6:e9:3f:
36:e1:5b:22:49:f2:fc:a6:14:ac:c8:1b:7c:d2:14:7e:99:94:
88:1b:39:66:66:80:f4:4e:a1:d8:1e:05:4d:59:bf:2c:c1:a7:
42:ce:7e:c0:a4:c2:95:04:9b:e3:51:8a:9e:d3:b3:5d:49:79:
18:04:31:5d:30:94:db:c6:da:b7:29:81:16:b1:70:d0:3f:aa:
f7:95:0a:9e:9f:52:b4:62:af:cc:2e:d8:cd:d6:0d:39:b0:be:
a7:46:3d:02:3a:16:5a:37:7d:99:5d:b0:72:38:55:ef:24:c0:
f4:b0:47:45:1a:28:96:20:f8:9b:7d:4e:22:a3:5b:1f:ad:05:
ff:0e:5f:c4:92:35:91:87:3c:2a:4f:39:83:ad:c9:20:71:9d:
9e:f3:43:37:6a:ba:2d:86:49:ae:80:d8:47:bf:6e:16:76:64:
2f:be:03:4b:33:5d:9a:a7:78:70:a2:ab:66:66:78:5e:39:3c:
96:21:c6:fc:1a:81:8f:4b:d8:bc:31:9c:1f:72:ac:c2:91:36:
af:eb:9e:99:68:f0:79:9e:24:71:f7:99:42:3a:c0:ce:13:3b:
77:d9:9a:db:e4:8e:c3:6c:70:8c:12:df:96:07:2c:db:71:e1:
b6:e5:c3:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:08 2024 by rpki-client on console-ams.rpki-client.org