Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: lF+wJGd1GYrnC8RuCewBVqfL67akuaeGXJtRAzwJJ3s=
Subject key identifier: B7:48:9A:90:C6:24:59:87:91:52:BE:E6:67:9C:78:09:71:F7:3C:2B
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 018F87B6222488BC466AC15056CA0B83F423
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 015D
Signing time: Fri 17 May 2024 18:00:11 +0000
Manifest this update: Fri 17 May 2024 18:00:11 +0000
Manifest next update: Sat 18 May 2024 18:00:11 +0000
Files and hashes: 1: 4otLsfz6HR-Ht04WbHNRLZV1sRI.roa (hash: SeLZ8bre6bUlUP9BpBDAjO013B7DmZAolCj8FsIPjbA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: OWb4z6XqDPUznbJi4U+HfjEa9olMzjZyCd+atsPvgfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:22:24:88:bc:46:6a:c1:50:56:ca:0b:83:f4:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: May 17 18:00:11 2024 GMT
Not After : May 18 18:00:11 2024 GMT
Subject: CN=b7489a90c62459879152bee6679c780971f73c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:29:42:cf:53:f3:26:83:15:a1:ce:2d:4f:1f:
a4:95:95:ca:86:62:55:84:e8:b3:81:40:8c:4e:2f:
da:76:cd:fd:ba:af:09:b5:7b:66:ff:fe:5d:1a:8d:
ba:2b:f4:1d:6e:17:61:cc:d5:63:ac:03:0e:2c:81:
03:c7:7f:95:75:0b:75:2f:48:b0:dc:11:8d:f0:bc:
63:c6:a6:37:8b:ac:dd:81:46:39:e3:5e:75:3e:e3:
6e:9e:1d:f0:b1:2b:92:ac:d3:c6:a8:1a:5c:21:00:
9e:57:64:99:af:59:72:93:e8:6f:6b:2c:30:07:48:
5f:50:e2:15:58:8b:32:d4:74:61:d8:41:ac:74:aa:
c8:d6:66:0a:26:29:59:29:2e:60:c4:8f:5c:6d:ba:
c7:83:ac:24:97:60:70:b2:4c:5a:ff:fb:77:eb:4a:
e2:6c:a4:6d:4e:2e:ef:9f:1d:3f:1b:f0:b2:f8:28:
64:bb:5c:e6:62:63:d2:55:33:d4:52:e1:20:ba:65:
53:eb:2c:b1:a0:f3:cf:06:83:e1:55:1a:27:4e:89:
b8:f5:11:a9:a5:69:74:ee:0d:23:72:03:9b:f4:97:
55:4a:46:8f:ad:77:60:fc:21:c8:16:ff:4f:74:5c:
c8:c8:07:ed:31:45:89:2a:d4:f9:fe:2c:79:a3:6b:
1d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:48:9A:90:C6:24:59:87:91:52:BE:E6:67:9C:78:09:71:F7:3C:2B
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:ea:a2:6f:5d:98:f5:fc:89:38:8b:83:84:74:7a:52:31:1a:
95:9b:d9:6d:3a:18:bd:32:6c:85:25:43:e4:28:a6:c6:d4:ae:
7a:fb:78:19:db:86:02:40:2f:a7:07:af:09:d7:a2:38:bd:b7:
09:52:2f:e0:cf:a7:69:4e:28:3c:9d:ee:9d:6a:88:a6:c4:77:
91:1c:2c:2e:a7:00:6a:b1:f1:be:60:55:d6:f0:dc:74:15:33:
cd:08:a3:4b:ca:4e:23:36:70:3d:d4:f1:c4:6b:7e:c3:60:0b:
d6:5b:dc:e4:3e:ad:44:70:82:8c:7a:1a:3c:9b:e0:e7:c1:c2:
ff:5f:c7:0e:8b:cf:4e:9d:a1:95:bf:30:a5:dc:42:d6:8b:c3:
c8:5b:39:eb:0b:98:3b:22:b7:d9:02:09:07:fd:af:b2:2e:67:
4f:8b:b9:81:39:d7:bc:1b:82:92:30:8b:64:4b:91:bf:d2:16:
ff:b9:69:c1:48:6c:02:54:4b:44:0f:21:c6:38:c4:73:78:64:
a4:77:26:02:af:15:a1:77:36:d9:83:94:8d:1f:76:53:6b:9a:
34:e2:1f:fa:b1:88:15:1d:94:03:f1:0f:2a:f5:fc:1e:0b:15:
39:d0:1d:50:dd:84:34:c0:c5:00:97:44:e2:62:3c:21:ff:bc:
36:9e:e6:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:14:20 2024 by rpki-client on console-fra.rpki-client.org