Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
File: _KrlFMX5lAORQ1YU15QEvuEgmzs.mft (raw, json)
Hash identifier: nSP37HOs93tiooaFI9hacnIkWY8ehlCZBcpjDGDHWkg=
Subject key identifier: FF:8B:CE:54:A4:3F:52:4D:B0:1A:F0:BF:A4:9F:51:A9:97:B0:71:62
Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b
Certificate serial: 018F874A25743481E19FC0E85ACC8F8E60FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
Manifest number: 031F
Signing time: Fri 17 May 2024 16:02:14 +0000
Manifest this update: Fri 17 May 2024 16:02:14 +0000
Manifest next update: Sat 18 May 2024 16:02:14 +0000
Files and hashes: 1: Mi4rMBilffJFYoUOB2q3n62YE2Y.roa (hash: faXKGLHQL7dcIIMenmL342SBs+vJJ+ykTBzk+dGAWx4=)
2: _KrlFMX5lAORQ1YU15QEvuEgmzs.crl (hash: PnEfsprnTLFwB0aGiAarQLOOo2y4Qgat7ZW8Dv2TwEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:25:74:34:81:e1:9f:c0:e8:5a:cc:8f:8e:60:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b
Validity
Not Before: May 17 16:02:14 2024 GMT
Not After : May 18 16:02:14 2024 GMT
Subject: CN=ff8bce54a43f524db01af0bfa49f51a997b07162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:1a:d1:f3:b5:dd:4d:33:59:d4:3a:4e:70:
77:f8:14:bc:ef:63:c2:99:8e:c5:a9:fb:da:3e:03:
a0:c7:e0:e7:bf:a3:19:33:85:7c:a1:fb:20:f4:96:
0c:ed:54:36:83:1d:c8:12:25:58:6d:9c:b7:05:a3:
40:82:7d:4d:80:ee:32:13:b8:86:16:bb:8a:0a:aa:
dc:bd:8c:65:17:c4:62:49:02:68:c4:75:19:7a:f2:
c8:22:ce:03:2f:a0:ae:f6:9f:be:b4:58:c2:b6:d5:
90:30:e5:ae:ef:ad:bc:db:ff:b2:8e:44:2f:b6:40:
0a:f7:b8:23:93:dd:4a:17:b0:9a:92:da:b0:e7:66:
50:3a:0c:32:d5:6c:51:16:39:3d:b9:56:49:55:25:
4d:00:94:21:e5:44:53:98:c4:64:ca:92:b1:b3:5a:
ac:92:9a:5f:11:60:52:91:a4:f5:55:72:ba:cf:13:
0e:58:ee:74:13:a8:13:f7:92:dc:5e:2f:72:77:14:
ce:8b:d9:46:88:d4:a3:e2:09:d0:ed:56:5c:91:6a:
75:1a:4c:5b:d6:7d:79:1e:43:cb:30:2a:09:41:a2:
e3:e8:6b:cb:41:9b:6f:e8:09:d8:2f:33:24:94:e3:
80:39:d3:c5:6a:2f:41:e9:cb:24:76:87:5f:a3:db:
b9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8B:CE:54:A4:3F:52:4D:B0:1A:F0:BF:A4:9F:51:A9:97:B0:71:62
X509v3 Authority Key Identifier:
keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:89:2c:e1:02:ee:d9:36:eb:2b:6a:ac:7f:73:35:78:d3:54:
11:11:43:4e:7f:8e:91:d5:a7:8b:b2:c6:96:c4:c7:cb:63:ed:
5d:32:e7:c9:b5:95:78:be:00:f0:f0:da:cb:a6:b0:e1:25:ee:
7f:fc:5b:f6:2d:f7:14:fe:cd:33:ba:ce:d1:e0:c9:25:b6:1f:
84:18:f2:b2:4a:96:70:40:b7:a4:24:aa:a8:61:2c:c8:67:9c:
2b:f8:12:8f:c9:82:17:e4:75:a5:58:bc:66:82:67:02:82:7b:
0e:8e:3a:d9:62:ff:53:5d:97:54:5d:59:95:c9:71:bb:51:cc:
1c:a0:fc:ed:ca:ad:f9:6a:46:c0:e6:10:ab:b2:09:9a:df:61:
50:23:37:ac:5c:3f:4d:62:5b:c6:53:99:71:a3:ed:49:8f:a9:
0e:04:0c:b1:fe:24:77:3c:b6:af:58:6f:fa:9f:d1:9b:0d:e4:
57:cc:f9:64:d8:02:13:35:36:04:e9:30:51:7f:94:ca:4e:54:
11:87:ec:58:89:14:c4:8b:9a:2b:b8:d6:5e:26:eb:65:c8:5b:
6d:5b:8d:8e:d3:02:fd:00:73:76:33:4c:1b:8d:98:f2:2f:a6:
fc:8f:6d:1b:f5:48:11:ac:5d:c3:e0:75:97:78:55:f8:06:55:
4d:25:27:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:20:27 2024 by rpki-client on console-fra.rpki-client.org