Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: bN0pa1oKiuGA/Hlc57ZGx2tnqArBClS0/qb/+CImbFs=
Subject key identifier: 31:72:FC:40:80:D2:B6:D0:17:B0:65:E7:33:88:80:52:6F:37:00:F4
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 018F20EE45E119127DF0E54DF28D6396602C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 069B
Signing time: Sat 27 Apr 2024 19:00:37 +0000
Manifest this update: Sat 27 Apr 2024 19:00:37 +0000
Manifest next update: Sun 28 Apr 2024 19:00:37 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: eTtYVnXCmzn6HRgQADmtyRYtFQxKYLV+AGQ5B/7ohaU=)
2: GdG9CS4ieDqfztDt69BlMRWVY9M.roa (hash: bA4/r5m7llSQJyr0caHsTpCUdDXdy/tLEDp5e/wpHjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:20:ee:45:e1:19:12:7d:f0:e5:4d:f2:8d:63:96:60:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Apr 27 19:00:37 2024 GMT
Not After : Apr 28 19:00:37 2024 GMT
Subject: CN=3172fc4080d2b6d017b065e7338880526f3700f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b4:c9:94:21:bb:04:7b:8e:05:05:bd:9d:85:
d1:c3:8d:68:b8:63:0b:d7:5e:02:eb:4f:60:85:49:
d6:37:1f:ab:12:3f:f9:87:3a:1a:48:13:12:12:9a:
5d:22:0c:71:1a:ab:f7:21:e5:4a:c3:e0:2b:18:bb:
a1:8d:e0:39:8c:3f:1b:d8:ec:68:5a:d2:68:23:5a:
cd:19:a6:24:37:ab:e8:09:25:43:b9:7e:7e:ba:a5:
bd:36:0a:8c:8a:93:83:81:87:3f:bd:ee:86:38:d6:
82:eb:a8:45:59:2f:dc:30:80:cb:ba:44:13:4f:aa:
be:08:8b:9c:e1:94:1a:2e:58:df:43:c8:e4:60:5b:
0e:32:f0:fc:5e:11:1a:01:2b:de:e7:89:72:1d:8d:
16:d0:71:4f:80:dd:ce:88:ce:79:72:34:91:ae:6e:
eb:10:3e:0a:c0:8e:91:9b:74:39:68:80:fb:26:6f:
6c:fa:18:0e:dd:5b:6d:3c:f5:ce:a6:7d:1b:e8:42:
51:45:68:12:6f:ee:af:24:d6:b7:82:47:1d:43:9a:
38:bd:31:c8:6f:d4:31:9e:f2:66:41:44:d8:a6:4d:
71:a2:d1:62:25:54:52:d8:0d:1b:31:25:60:46:8c:
36:cb:63:aa:d2:1f:10:d1:71:39:ec:87:81:35:de:
2d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:72:FC:40:80:D2:B6:D0:17:B0:65:E7:33:88:80:52:6F:37:00:F4
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:9c:ba:81:92:36:5c:50:77:31:d5:e6:8f:1f:86:0a:11:50:
88:d9:98:02:7e:51:a3:43:52:89:66:bd:7c:c4:10:60:56:cc:
9d:35:a5:0d:25:b3:8f:11:85:f4:8b:5d:09:fd:65:40:a6:91:
c1:29:10:e4:32:56:88:2c:b7:0a:d1:1d:f7:0f:d2:93:7f:d5:
9e:6d:df:7a:8f:de:dc:1e:4e:eb:ab:e7:9d:6a:b4:88:23:3b:
4c:83:d7:ce:37:21:8b:b9:8b:40:62:5a:77:a9:83:0d:f4:86:
5c:6b:03:5c:db:cc:31:f9:36:17:28:d7:ba:cf:84:80:6c:35:
8c:2e:d2:1d:62:c6:ee:26:d1:c6:d3:2b:03:76:75:02:e6:c6:
e2:da:25:7d:1b:93:eb:d3:37:80:a1:fd:29:d6:cb:f3:0b:52:
8f:2c:c2:5c:7a:eb:13:e9:86:17:34:b3:3d:1d:be:4c:c8:be:
9e:46:81:0d:95:6a:43:28:59:ee:c3:d2:69:01:67:52:1c:90:
4d:d0:8c:57:3d:3b:1b:22:67:99:0e:44:be:21:e6:70:e4:70:
f0:b5:20:d4:c5:d3:0a:09:21:25:b1:df:b6:c8:da:1d:e6:00:
f6:e9:f9:d0:ca:4e:33:a6:d4:b0:8d:06:52:13:a3:da:b9:ac:
0c:06:4a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 20:27:30 2024 by rpki-client on console-ams.rpki-client.org