Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json)
Hash identifier: P3h/m0kUuTffv1KpFLYGc4fXji/EWFp1vy1cXsPI3Ls=
Subject key identifier: 91:37:BE:B6:2A:9F:E5:D9:FC:2B:D9:CB:53:02:BF:A6:FA:4F:BB:50
Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Certificate serial: 019351D0550A0A530E1A0D147C89ACF253EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
Manifest number: 1373
Signing time: Fri 22 Nov 2024 03:00:27 +0000
Manifest this update: Fri 22 Nov 2024 03:00:27 +0000
Manifest next update: Sat 23 Nov 2024 03:00:27 +0000
Files and hashes: 1: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: LCPn0KnBBN2Y2L6fIPTeKBXUra1pxbm/9gnJnlvEMJo=)
2: adDQjuvI3p4mjHQWdEQPux6RilY.roa (hash: rZI8xwYb/nUV0bmqU06/3aAXnouFSPFk+/wKxoi10Zc=)
3: v6f3SFpnn8ggWHtio3Sq08ytZ3U.roa (hash: 5qtgmz98Wl/iAEoLvphTLUORNFxBXfE69Mcy0xqnK78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:d0:55:0a:0a:53:0e:1a:0d:14:7c:89:ac:f2:53:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Validity
Not Before: Nov 22 03:00:27 2024 GMT
Not After : Nov 23 03:00:27 2024 GMT
Subject: CN=9137beb62a9fe5d9fc2bd9cb5302bfa6fa4fbb50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:54:6d:f5:db:f2:6e:4a:d5:1d:03:49:45:e5:
6e:71:29:7d:76:f7:40:0c:55:8c:55:9e:75:78:c7:
b4:3e:9d:92:d3:bf:6f:5c:81:56:7e:93:ac:70:7a:
71:48:8b:e0:bb:93:3c:72:75:1e:5b:18:6c:43:ce:
5d:2e:c3:bd:61:80:c7:25:2e:96:45:0e:bd:e2:10:
2f:f3:c0:14:88:37:d2:c2:1f:4b:02:4c:a6:98:24:
4e:86:68:5f:1c:2c:1e:71:95:5b:aa:f0:e0:0f:1e:
e7:c3:47:2a:8a:7c:68:46:66:4d:f9:1c:05:b1:92:
13:7b:47:78:1e:33:7d:f3:97:2e:36:7a:f9:bb:16:
4b:f6:3a:fa:e1:5a:7d:7c:8d:7b:a3:5c:65:e8:b7:
36:3b:f8:f5:9d:97:57:c6:76:b1:92:06:85:e0:91:
b8:00:ca:d9:b1:ef:7a:b0:e5:c1:db:0d:41:56:41:
f2:48:d3:48:07:bc:0e:0b:2e:ae:24:57:f4:f4:4f:
45:9d:f0:68:da:1e:99:e6:ff:2b:f0:d1:d8:01:5c:
02:d4:1e:82:b1:8a:0e:08:17:e7:ab:02:ea:03:98:
68:14:52:70:3a:f7:cc:c8:3e:b4:ac:b4:b9:58:55:
ba:17:41:1c:84:00:8d:58:0c:73:59:7c:40:6e:45:
5f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:37:BE:B6:2A:9F:E5:D9:FC:2B:D9:CB:53:02:BF:A6:FA:4F:BB:50
X509v3 Authority Key Identifier:
keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:3d:be:83:30:c4:b1:bc:e1:ff:be:fa:cb:21:81:48:c3:4a:
c1:c9:7c:1a:4a:95:f1:2d:97:7a:51:14:21:6e:56:4d:46:e1:
07:3e:55:d3:64:fc:6f:63:96:a3:95:98:f3:9e:16:b6:12:ea:
9f:3c:fc:4d:f5:11:f1:d8:bd:32:78:99:b7:7e:db:00:a8:7a:
2e:16:63:f0:8c:68:bd:3f:06:6c:95:52:46:1f:ba:a7:10:4f:
f7:9a:35:b9:a4:84:b1:31:52:0a:7e:ee:92:6d:3d:20:67:d3:
9f:16:34:65:ad:98:41:ed:23:68:53:be:d1:32:54:15:c9:88:
a4:12:c4:d9:92:ba:d4:ff:2b:ed:08:2a:cc:d9:88:c6:6d:2b:
76:f3:de:86:4a:60:37:43:f3:9e:71:df:bd:03:4c:43:2e:e0:
31:9a:2e:4c:af:ad:bc:84:7b:61:43:1e:63:dd:84:a8:a8:0a:
c3:7d:1b:c3:f8:be:ab:26:b7:90:2e:f0:d1:ff:35:e9:bf:70:
6e:18:32:67:3d:67:9e:49:e3:06:04:d1:ee:09:b9:ba:0a:22:
3a:b7:b5:c5:8b:cf:d6:52:64:b1:d2:a5:eb:50:0e:2c:03:74:
9f:4b:b8:16:32:d4:ec:3a:f9:26:4c:d3:04:a4:63:ec:36:f4:
19:f3:6c:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNR0FUKClMOGg0UfIms8lPvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5YjNhNzE3NjY1YTExMzdlOTlkYzhmYWQyMmUzZTdmOThk
Yjg5NzMwHhcNMjQxMTIyMDMwMDI3WhcNMjQxMTIzMDMwMDI3WjAzMTEwLwYDVQQD
Eyg5MTM3YmViNjJhOWZlNWQ5ZmMyYmQ5Y2I1MzAyYmZhNmZhNGZiYjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVRt9dvybkrVHQNJReVucSl9dvdA
DFWMVZ51eMe0Pp2S079vXIFWfpOscHpxSIvgu5M8cnUeWxhsQ85dLsO9YYDHJS6W
RQ694hAv88AUiDfSwh9LAkymmCROhmhfHCwecZVbqvDgDx7nw0cqinxoRmZN+RwF
sZITe0d4HjN985cuNnr5uxZL9jr64Vp9fI17o1xl6Lc2O/j1nZdXxnaxkgaF4JG4
AMrZse96sOXB2w1BVkHySNNIB7wOCy6uJFf09E9FnfBo2h6Z5v8r8NHYAVwC1B6C
sYoOCBfnqwLqA5hoFFJwOvfMyD60rLS5WFW6F0EchACNWAxzWXxAbkVfawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJE3vrYqn+XZ/CvZy1MCv6b6T7tQMB8GA1UdIwQY
MBaAFCmzpxdmWhE36Z3I+tIuPn+Y24lzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgt
NjY5ZjdhNzYxNjMxLzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgtNjY5ZjdhNzYxNjMx
LzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbT2+gzDE
sbzh/776yyGBSMNKwcl8GkqV8S2XelEUIW5WTUbhBz5V02T8b2OWo5WY854WthLq
nzz8TfUR8di9MniZt37bAKh6LhZj8IxovT8GbJVSRh+6pxBP95o1uaSEsTFSCn7u
km09IGfTnxY0Za2YQe0jaFO+0TJUFcmIpBLE2ZK61P8r7QgqzNmIxm0rdvPehkpg
N0PznnHfvQNMQy7gMZouTK+tvIR7YUMeY92EqKgKw30bw/i+qya3kC7w0f816b9w
bhgyZz1nnknjBgTR7gm5ugoiOre1xYvP1lJksdKl61AOLAN0n0u4FjLU7Dr5JkzT
BKRj7Db0GfNsAQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:33:43 2024 by rpki-client on console-fra.rpki-client.org