Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: +5bYzXAtSKuYowdatEMGV6OFap43FDECwvd7msrAFZ0=
Subject key identifier: 0E:4D:69:44:63:0B:1A:2A:99:70:CB:CC:FB:F4:58:84:EF:10:B5:36
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019369DA5C1357A77002E987D4A9EB84237E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 08D3
Signing time: Tue 26 Nov 2024 19:02:18 +0000
Manifest this update: Tue 26 Nov 2024 19:02:18 +0000
Manifest next update: Wed 27 Nov 2024 19:02:18 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: xvPNGXK/g/grwo4xGMIpswhUqBzs1ZvXu5V6l/OSDns=)
2: GdG9CS4ieDqfztDt69BlMRWVY9M.roa (hash: bA4/r5m7llSQJyr0caHsTpCUdDXdy/tLEDp5e/wpHjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:5c:13:57:a7:70:02:e9:87:d4:a9:eb:84:23:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Nov 26 19:02:18 2024 GMT
Not After : Nov 27 19:02:18 2024 GMT
Subject: CN=0e4d6944630b1a2a9970cbccfbf45884ef10b536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1f:3a:62:c6:2c:c6:88:0f:61:34:53:e8:f3:
01:dd:5c:ce:36:18:2e:2d:b9:ba:1a:46:db:29:b4:
02:d2:a2:f0:73:d9:68:fd:ad:36:f1:56:1b:09:50:
cd:68:6c:bb:13:f6:59:12:5f:f4:26:6b:5d:07:7e:
0e:a3:f6:0e:d7:13:b5:13:fd:f3:39:92:f6:47:e9:
1e:21:dd:f7:01:98:36:35:1b:af:05:11:f4:30:54:
18:91:63:7e:2c:3a:25:ca:79:57:a6:1b:c7:27:12:
eb:52:02:9b:2a:95:d9:f2:22:99:68:10:20:1a:f3:
f9:8e:fd:45:f7:d4:4d:7b:85:7a:18:fd:f1:c4:ba:
aa:b0:51:8e:73:cc:51:22:c0:21:13:20:ea:96:b9:
4c:8a:aa:5f:d4:ff:bd:b8:42:1c:6a:7c:0d:2d:66:
86:07:24:ef:94:16:c1:a1:22:35:78:ff:f9:f2:f1:
81:66:ac:83:1f:3e:d6:f3:c9:f5:9c:6d:f2:63:34:
21:a2:41:22:28:8a:90:8e:cb:2e:1d:9f:65:e2:30:
1c:24:de:bc:35:f5:47:62:56:36:e3:ea:4a:f0:36:
6f:ea:28:61:51:4f:f3:ed:a7:75:98:cb:51:49:5f:
62:05:ac:d7:51:2b:a4:21:2e:99:cf:18:3d:d6:60:
15:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:4D:69:44:63:0B:1A:2A:99:70:CB:CC:FB:F4:58:84:EF:10:B5:36
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:38:48:bc:9c:78:e4:89:c9:db:37:3b:03:9e:30:ad:53:b5:
27:92:33:9b:18:bb:5b:1d:9e:75:3f:df:67:c4:33:1e:d4:61:
a0:08:c4:47:18:0b:e9:25:e4:6f:8a:03:39:c7:51:18:63:44:
e6:3c:0f:80:cc:0a:af:68:70:de:1f:51:4d:78:28:c2:81:29:
f6:07:c7:30:55:32:0c:f8:09:28:00:f2:cf:25:ba:ad:ed:f6:
09:62:40:bd:a3:58:9e:f9:a0:a4:cb:98:7d:d4:ee:71:69:09:
d9:9a:88:47:87:01:6c:cc:f6:d8:00:4b:b6:af:33:0a:d4:0e:
c6:3a:a0:98:f2:9d:dc:7d:e3:79:0a:2b:a3:aa:6e:f5:5b:b2:
5c:e0:cd:ef:b5:02:20:05:5a:93:59:b9:7b:21:14:f0:d4:8b:
0f:f9:d8:82:ee:91:b1:23:92:e0:65:3a:03:5c:e4:14:fa:c6:
0f:d3:c2:e8:a1:be:bb:d0:e5:97:57:49:ef:d5:a6:7e:a1:51:
fb:76:60:ce:4c:55:89:79:f4:ae:81:9d:c2:ed:a2:fc:96:e9:
0a:f8:e6:6d:bb:c9:3f:7c:05:d3:59:d2:92:d9:90:b3:91:18:
4e:4d:1f:69:60:00:25:37:24:87:b0:aa:e1:89:76:28:0f:50:
09:82:64:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:16:16 2024 by rpki-client on console-ams.rpki-client.org