Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json)
Hash identifier: 6PiFx/0s8QgqAKWfqVbutXsbKUHVIb5rg5Xu5xfH6no=
Subject key identifier: D0:DA:C0:A5:5A:6D:BA:56:E0:B8:AA:64:DE:83:53:2B:C0:A8:B6:4E
Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Certificate serial: 018F86A410584103F566DCDFD82830101B96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
Manifest number: 117C
Signing time: Fri 17 May 2024 13:00:49 +0000
Manifest this update: Fri 17 May 2024 13:00:49 +0000
Manifest next update: Sat 18 May 2024 13:00:49 +0000
Files and hashes: 1: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: Xq8WMSe3eAiDCAJ5oZ6Wu9VBZILmALWH7dE0BebA/98=)
2: Zwe7v3V3hv3_HCNNhH0OB5_474s.roa (hash: xmoHsLV/6qfPxeWr/JNXGWPLp8GV+PRfgERwrFFfwJI=)
3: adDQjuvI3p4mjHQWdEQPux6RilY.roa (hash: rZI8xwYb/nUV0bmqU06/3aAXnouFSPFk+/wKxoi10Zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a4:10:58:41:03:f5:66:dc:df:d8:28:30:10:1b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Validity
Not Before: May 17 13:00:49 2024 GMT
Not After : May 18 13:00:49 2024 GMT
Subject: CN=d0dac0a55a6dba56e0b8aa64de83532bc0a8b64e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f3:97:e1:f2:3e:f6:e9:37:c8:ca:82:f3:50:
87:c8:a4:b9:c0:20:58:83:83:fa:39:fb:61:b6:44:
a5:f9:10:99:26:c9:5c:d1:82:16:f7:09:5a:2b:87:
5d:20:84:47:87:bf:06:46:7c:5e:c6:68:c5:d1:f2:
c2:71:75:38:03:ba:a9:3d:d0:70:7f:8b:f0:77:73:
99:dc:9f:be:48:61:6a:ff:a4:a2:92:48:99:84:d3:
1f:4b:50:96:57:df:58:3d:26:8c:65:85:17:a8:93:
43:d6:65:3f:d1:67:58:15:dc:48:34:8a:b4:a6:9e:
bc:d0:78:4a:72:e3:a0:6b:df:9c:93:63:48:6c:c4:
31:fa:85:d4:db:ff:ac:46:d5:71:ea:b0:ec:fc:fa:
f3:c2:49:71:21:9e:e3:c6:75:69:89:b1:12:c4:30:
f9:96:2d:bc:36:92:ac:17:5f:c3:7b:93:78:28:a0:
47:63:22:cf:28:82:31:ee:ac:82:ab:2c:ba:5f:04:
a2:b5:26:50:96:4c:5c:fa:2a:bd:36:9d:85:8d:7a:
13:8c:f5:83:5d:a7:a8:d1:33:d9:d2:ab:96:7e:78:
ff:0d:c4:41:d0:f4:8d:ed:a0:76:a1:f2:ae:76:a9:
27:ed:6e:8b:e2:a4:72:fb:be:f5:f5:cb:36:bb:c8:
e6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DA:C0:A5:5A:6D:BA:56:E0:B8:AA:64:DE:83:53:2B:C0:A8:B6:4E
X509v3 Authority Key Identifier:
keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:6c:e8:fa:49:90:23:fa:37:5f:11:04:d5:a5:37:ac:45:e3:
ed:29:c7:ed:f7:15:af:f4:b6:eb:f6:b0:61:2f:8d:8d:28:b5:
59:fc:33:5f:7e:46:3f:0c:d4:b0:86:fd:06:aa:83:f8:ae:ec:
7c:4b:17:3f:2f:78:f6:d6:9b:7e:6c:b0:d2:7d:60:8d:aa:d2:
c9:68:51:f6:ee:12:d8:7d:5f:71:e3:4d:92:5e:c5:40:92:5c:
22:0c:10:3f:61:99:b7:e4:d0:bf:b8:a9:40:0a:49:02:c1:47:
3b:0a:7e:0c:d9:3f:0a:ec:5f:79:f1:e4:a2:c4:61:af:fa:90:
4d:ff:8a:ce:4b:0e:2d:6c:d9:a7:91:fc:80:07:6a:d5:54:72:
6d:5a:0f:89:0d:5f:54:e7:4d:f7:f7:63:b7:51:44:ba:72:5e:
bb:4e:bc:7a:68:b5:ca:87:b1:8e:93:83:fe:c3:ff:42:c6:d2:
cd:8f:9e:7f:ca:ae:e8:8b:bd:b4:cc:9a:58:fb:36:df:bc:01:
be:68:7d:3c:87:5b:f0:9c:0a:bd:02:ae:f3:46:3c:02:53:fb:
70:67:c7:0d:9b:b8:b9:b4:cb:da:d0:1b:ab:5c:35:a3:09:b1:
3d:6e:6c:c6:dc:0d:f2:92:8c:9a:22:d5:2c:10:4a:42:c4:47:
ee:2e:f4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:02:51 2024 by rpki-client on console-ams.rpki-client.org