Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: hpEq9cTGPPmB9ABUqHZ03rJ8hM2rljn4/OWNrrSNLH4=
Subject key identifier: C1:B4:AE:D8:C1:97:91:E4:A3:BF:FB:61:7B:5E:CB:44:21:C0:F0:FA
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 01936BC7C91C6C76C3F2B36500762B393080
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0789
Signing time: Wed 27 Nov 2024 04:01:15 +0000
Manifest this update: Wed 27 Nov 2024 04:01:15 +0000
Manifest next update: Thu 28 Nov 2024 04:01:15 +0000
Files and hashes: 1: BVVPuEMIizcsNN3VJ7O6J3QfHlI.roa (hash: 2qTqQG6KKz4VRL9p3PY4BWvWBWlyU1ETnOF64V4qt1c=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: eracVQRWXVczxmQCDhPVPhMcaSXUxZ2ETKNVlHFg43g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 04:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:c7:c9:1c:6c:76:c3:f2:b3:65:00:76:2b:39:30:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Nov 27 04:01:15 2024 GMT
Not After : Nov 28 04:01:15 2024 GMT
Subject: CN=c1b4aed8c19791e4a3bffb617b5ecb4421c0f0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c5:73:4e:a1:40:97:fc:e3:d2:91:69:7b:34:
c0:cd:6b:51:6b:8b:53:0e:7c:c7:38:1e:79:8b:28:
9a:27:f5:4b:e8:a1:6d:06:28:ee:0f:90:48:08:60:
4b:55:a0:6e:e1:75:8b:b6:4f:d5:fb:4d:bd:36:37:
4a:4c:f5:d3:e2:df:1c:77:55:0c:59:76:8c:97:16:
40:7b:8e:68:c0:fd:0e:e6:fb:ec:f2:46:cb:af:0a:
73:d7:ee:2e:30:34:40:08:d0:14:82:42:ee:ca:25:
2b:23:ac:7f:21:c0:85:8b:f1:b2:a1:97:7a:fb:c1:
bd:6f:0d:b0:f8:ed:6f:88:92:7a:63:51:d2:ea:a9:
ad:35:84:86:ed:48:be:60:a0:25:d2:97:0c:d0:ad:
c8:44:72:de:cc:45:77:5b:fd:c8:ae:80:9b:5b:a2:
f7:46:f5:6b:cc:b3:4f:91:1e:68:08:5f:82:60:e1:
c4:b4:70:25:6a:17:2e:5f:19:13:69:0e:56:04:63:
18:2e:ce:57:49:50:2a:9e:79:79:3b:57:f3:bb:6b:
71:8b:50:7d:e1:a3:23:6b:24:3b:6f:d3:99:27:3e:
62:f4:a7:10:12:db:b5:52:f9:46:b3:58:ce:75:85:
4e:da:6a:8b:b3:43:af:ad:a3:0b:28:cc:ee:41:c1:
8f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B4:AE:D8:C1:97:91:E4:A3:BF:FB:61:7B:5E:CB:44:21:C0:F0:FA
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:09:a3:92:0b:a8:d2:3c:40:55:1d:a1:ac:26:2e:d8:09:a1:
56:65:03:bf:15:4d:6e:68:01:20:ca:e7:e1:a1:60:3b:ce:dd:
82:f4:3b:c8:6b:eb:3d:8a:c4:71:99:16:a1:ef:39:35:f8:d6:
f8:b5:22:09:b9:d5:1e:84:3d:2e:66:f8:28:ff:a7:38:6f:c3:
0f:04:bc:c1:12:6f:e5:03:63:8b:3a:f5:54:1b:21:ce:e5:fb:
af:7d:0a:f8:cb:0d:7b:5b:34:d8:85:c0:7f:ac:12:c1:e2:05:
a3:08:c7:72:13:6f:10:03:fb:95:26:6a:b1:49:21:cf:9b:41:
21:5a:f3:a2:d4:eb:72:18:d9:b1:b0:a7:f2:0c:26:fa:cf:03:
08:90:df:9b:12:3d:32:8a:c3:73:d3:74:0b:73:76:8b:96:93:
ad:13:2f:17:4d:53:af:f0:9e:62:b0:65:74:4a:cf:1a:48:34:
75:e3:ef:36:da:1b:4d:87:1e:e2:bf:3d:e7:1d:b7:c7:e8:89:
b8:92:b4:a1:01:ab:59:a0:9d:e1:34:14:b0:b2:5a:be:10:82:
df:0e:58:ef:c1:78:2f:ad:78:9b:f5:0c:d5:be:64:5c:7e:ac:
9e:f8:ab:30:51:7f:82:3a:8d:91:65:a2:ab:bc:d4:d2:2f:19:
dc:ce:45:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 12:33:31 2024 by rpki-client on console-fra.rpki-client.org