Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft
File: khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft (raw, json)
Hash identifier: LKioA/+EYc1VmOTlJPAmjmXAl/6bGU5vaikaTQOEtIo=
Subject key identifier: 13:E1:5C:B5:F2:38:34:1B:FB:43:EA:23:EB:31:6D:15:1E:E7:9C:5C
Authority key identifier: 92:1C:4F:DA:36:7C:53:83:B1:5C:2A:71:43:AD:4B:10:C9:55:CE:A0
Certificate issuer: /CN=921c4fda367c5383b15c2a7143ad4b10c955cea0
Certificate serial: 01935764FFBCED016F3F3E3791076166E346
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft
Manifest number: 1084
Signing time: Sat 23 Nov 2024 05:00:56 +0000
Manifest this update: Sat 23 Nov 2024 05:00:56 +0000
Manifest next update: Sun 24 Nov 2024 05:00:56 +0000
Files and hashes: 1: eTOEUNbjSrG2VlTF4-EOHnuknqE.roa (hash: xyXkjWhPbMnqzynHzFpjZcZeLuCmj4Mxdk617FfiS8Q=)
2: khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl (hash: T9px0EaxK+l4/fP+x3qhlH0IIotAeC34k9B5jpoCqlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:ff:bc:ed:01:6f:3f:3e:37:91:07:61:66:e3:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921c4fda367c5383b15c2a7143ad4b10c955cea0
Validity
Not Before: Nov 23 05:00:56 2024 GMT
Not After : Nov 24 05:00:56 2024 GMT
Subject: CN=13e15cb5f238341bfb43ea23eb316d151ee79c5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3b:10:9d:1f:ad:f3:ab:55:43:26:c0:46:a1:
67:a9:de:8b:d5:97:5c:b2:3d:1a:86:d4:43:4d:b8:
c6:21:17:bd:87:be:4f:a6:d1:1f:81:54:3d:23:4d:
2d:31:08:05:5a:a5:10:78:68:a9:c1:7c:67:5e:cf:
b9:fa:61:77:40:d4:8e:01:ff:05:ab:3d:48:ad:e5:
7b:73:8c:d6:4d:df:28:28:23:52:c6:b9:e6:e3:e5:
b4:41:83:5e:f7:02:80:00:d3:ed:23:f7:b6:87:73:
71:06:3c:aa:b5:46:36:6d:ed:7d:8a:5a:eb:25:c9:
b6:64:46:53:12:70:76:f5:03:b5:e8:b3:ab:8c:b4:
41:6e:71:c1:40:e0:45:f2:9a:c1:42:3a:00:37:ea:
2c:1f:75:8f:76:85:6f:91:1a:a4:c5:e1:ba:96:0e:
b2:c8:88:75:3d:d9:c7:bc:2c:11:d1:6f:32:e0:50:
8e:20:ca:72:87:75:9b:59:ae:12:cf:60:39:88:7e:
39:2f:ee:61:92:17:de:4c:bf:e8:e8:ec:2e:32:cf:
ec:25:0e:23:31:77:8c:59:6d:cb:77:96:2e:5a:66:
e9:9a:51:db:d0:a0:a1:62:34:88:2c:2d:66:9a:99:
f5:9f:a2:0a:36:a9:79:ec:f6:80:de:4c:f7:fc:f6:
28:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E1:5C:B5:F2:38:34:1B:FB:43:EA:23:EB:31:6D:15:1E:E7:9C:5C
X509v3 Authority Key Identifier:
keyid:92:1C:4F:DA:36:7C:53:83:B1:5C:2A:71:43:AD:4B:10:C9:55:CE:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:72:fe:1c:23:0a:17:1e:29:90:e9:eb:6b:4c:75:36:0c:ca:
9b:77:62:eb:27:36:84:ab:7f:a3:7e:66:6f:d5:0b:83:d8:b8:
72:31:c7:c0:8a:db:81:91:f2:fe:2f:eb:a0:55:77:4a:57:da:
25:26:97:fd:78:0b:a3:c7:6a:b0:da:03:e3:8c:62:f6:7a:78:
a3:0f:3c:51:82:66:bd:48:59:08:af:44:d0:3e:13:f1:48:7f:
9e:0a:73:71:4e:be:29:3f:44:43:b5:ba:f2:e0:26:7d:f5:ce:
09:2c:9b:1e:04:35:29:c5:ab:87:04:bc:36:f8:8c:f1:67:4b:
0c:55:b6:1f:26:05:88:52:d3:ec:86:3d:47:6a:94:e7:6b:2b:
f5:e2:4d:51:ef:f9:48:83:bf:58:8e:57:7d:cf:ad:68:bd:13:
8b:7b:78:64:8f:3a:80:9c:2b:a1:d9:f4:bc:0e:3d:34:33:d9:
55:54:06:1b:a3:a1:c9:99:f9:d5:f9:b2:bd:13:6f:1a:f1:1c:
b8:c9:6b:4e:05:42:a2:13:0a:6c:8e:e7:f6:5a:ec:fa:52:a6:
ee:e2:f8:bf:09:ee:74:6a:4a:11:53:22:48:8f:9d:9c:26:e3:
37:a5:fb:09:12:f1:09:89:7d:9c:82:61:e1:18:58:b9:a5:f7:
64:93:ce:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:53:11 2024 by rpki-client on console-fra.rpki-client.org