Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
File: kaEXOnDkH0WTVHZpraIvDX9o81Q.mft (raw, json)
Hash identifier: sC6aNvhlMzgvN9mbxL+e1HojhUXOL7OV4jpP9BYyDYg=
Subject key identifier: D9:14:E7:ED:57:7E:63:2E:E1:7A:44:B2:2F:00:07:6B:5C:F8:B9:E3
Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354
Certificate serial: 018FB0E9E3D027AC4316FB2B2311AA69BE16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
Manifest number: 118F
Signing time: Sat 25 May 2024 18:01:09 +0000
Manifest this update: Sat 25 May 2024 18:01:09 +0000
Manifest next update: Sun 26 May 2024 18:01:09 +0000
Files and hashes: 1: kaEXOnDkH0WTVHZpraIvDX9o81Q.crl (hash: N7ykFsdA7WoYFaSX3vvZw8rRylaWkCsm8laVVyNp2mc=)
2: tiMAzBIztzBTAe0qj84xIYBvQKc.roa (hash: 5d8ZpHPrpO1Q7JddTXn+4CK4BjcqhwkPPgVamwwOCXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b0:e9:e3:d0:27:ac:43:16:fb:2b:23:11:aa:69:be:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354
Validity
Not Before: May 25 18:01:09 2024 GMT
Not After : May 26 18:01:09 2024 GMT
Subject: CN=d914e7ed577e632ee17a44b22f00076b5cf8b9e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:83:c1:d6:83:25:75:eb:0c:88:29:22:31:2e:
4a:8a:a2:ca:f5:01:f4:8e:a1:01:a0:69:2e:4d:5f:
34:ca:dc:ff:18:8d:14:1a:51:5a:26:6d:ee:b2:a7:
80:e7:7a:56:ec:8b:65:23:d0:d5:8d:a3:0e:dc:ef:
b1:0d:38:58:40:cd:22:72:19:52:d2:52:6e:03:37:
10:26:88:97:7f:44:00:2d:86:e5:3e:76:7e:5d:d0:
01:33:31:6e:6b:ce:b6:a5:6c:32:1c:8c:32:bb:2d:
bf:26:64:8d:a5:80:03:26:6b:8b:37:2a:2c:db:b6:
56:07:f5:63:6d:b1:f8:54:32:78:fb:5e:47:76:b3:
1f:b7:bd:45:ec:39:c1:08:0b:21:c8:09:73:fb:24:
ed:c5:dc:d9:c6:49:a0:47:69:c3:8f:25:c3:e3:16:
90:ed:a6:5d:95:a7:0b:fd:85:f4:00:9c:ab:c7:80:
82:25:a1:45:f3:92:81:43:27:49:35:81:52:13:0f:
e5:d4:f0:72:17:90:b7:af:47:0e:c2:0d:b7:a1:c8:
43:61:05:88:9d:68:4c:a5:63:88:19:a2:c6:64:58:
49:6e:5c:4b:d0:b3:9f:75:11:85:13:a9:b8:bb:b7:
40:6f:54:ab:2c:2b:82:5c:f2:d1:ff:93:09:8b:b6:
a9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:14:E7:ED:57:7E:63:2E:E1:7A:44:B2:2F:00:07:6B:5C:F8:B9:E3
X509v3 Authority Key Identifier:
keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:b0:65:33:b8:01:72:82:af:e6:d6:ea:58:15:e9:d0:0f:6b:
4a:4e:3d:3f:e7:c2:5d:6d:99:94:92:18:a6:3a:00:0b:dc:51:
f2:5c:ae:49:1b:6a:ec:91:eb:f3:7c:40:77:cb:d7:48:6c:45:
80:a0:26:ec:95:e6:4a:3e:98:78:e9:bd:a7:66:93:1b:a5:8b:
ef:e4:f5:ec:a6:24:ca:f4:26:8a:45:ca:17:53:f6:d0:a1:ed:
c3:ea:f6:15:52:02:63:7a:69:89:69:01:34:f8:71:2d:1e:eb:
fc:9e:58:4d:d7:6c:fc:69:0e:48:3e:a4:15:ec:2b:d3:da:00:
eb:92:04:8b:50:95:2f:f8:6d:81:bc:56:ac:70:75:69:d9:b4:
67:81:7a:fe:69:29:34:ba:09:8f:3c:88:0e:8b:49:20:78:ab:
e9:19:65:f7:56:f9:97:5f:e6:71:01:9f:b9:79:a6:b4:7f:d3:
83:a5:28:82:9b:cd:fe:d4:13:05:5d:5d:a1:17:fd:54:f8:ed:
59:c7:87:a5:58:4f:39:b4:1f:2c:0e:64:22:d3:2b:4f:58:6c:
9e:d9:c8:39:07:a0:b4:ca:10:1a:63:96:2f:d5:3b:08:3f:3e:
e0:c4:0f:0a:66:64:6d:61:21:63:dc:14:5b:f6:2b:8c:b6:a5:
53:6c:df:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 21:14:57 2024 by rpki-client on console-ams.rpki-client.org