Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: xVOG4VaXpEyWdj6yIbssZRuL5eGdw3ZkGyPx+JtRU5g=
Subject key identifier: A2:9B:59:98:10:25:1F:80:98:CC:75:87:DA:62:D4:1C:65:C1:CA:6F
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 0193550844453B5C865B117562566A7B3D52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 0355
Signing time: Fri 22 Nov 2024 18:00:25 +0000
Manifest this update: Fri 22 Nov 2024 18:00:25 +0000
Manifest next update: Sat 23 Nov 2024 18:00:25 +0000
Files and hashes: 1: 4otLsfz6HR-Ht04WbHNRLZV1sRI.roa (hash: SeLZ8bre6bUlUP9BpBDAjO013B7DmZAolCj8FsIPjbA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: oaJtWaLYkv3ZNnr6HcB8IExRoJRVPOkMZqJ8xHq8cOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 18:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:08:44:45:3b:5c:86:5b:11:75:62:56:6a:7b:3d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Nov 22 18:00:25 2024 GMT
Not After : Nov 23 18:00:25 2024 GMT
Subject: CN=a29b599810251f8098cc7587da62d41c65c1ca6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8b:aa:8f:e2:e8:5f:7b:9a:1c:06:dd:e3:93:
52:1f:7e:86:a2:56:f0:db:46:58:0c:31:e3:3d:8c:
e8:7a:96:d1:11:40:7d:d0:25:0c:57:ee:e7:71:d0:
45:4a:e1:b9:ec:92:92:ed:d7:9f:ed:41:c5:cb:1b:
08:45:6e:cd:da:7c:7f:56:cf:1e:db:ec:c4:cb:17:
7a:26:28:ea:df:c6:38:ce:7e:da:ab:69:4b:71:18:
4e:b7:1a:2d:67:28:78:1b:62:da:55:20:20:bc:3b:
d7:1f:fd:2b:c6:76:e7:a9:74:f4:74:7c:f3:7d:bc:
b8:0a:0f:70:9d:18:95:e4:b3:70:13:09:6a:df:77:
82:cf:26:9e:e6:4a:d2:e1:45:fc:4c:7e:7a:41:8b:
64:42:d6:70:20:45:3f:0c:30:f8:b7:08:88:ad:cd:
cd:ab:7f:05:76:f7:89:b0:cd:bf:80:a3:80:df:86:
aa:31:04:d4:f8:9c:b7:76:eb:d7:d7:26:08:79:02:
6a:27:e3:73:3e:48:df:02:bb:32:2f:07:c6:36:dd:
ad:e4:f1:c4:d7:bc:76:6a:40:08:45:23:80:e6:fc:
73:32:06:2f:26:31:78:96:68:9b:91:1f:05:7a:bc:
bc:f2:c7:06:54:29:3b:df:01:e2:62:0d:de:47:d0:
aa:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:9B:59:98:10:25:1F:80:98:CC:75:87:DA:62:D4:1C:65:C1:CA:6F
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:ca:4b:5b:ab:9e:eb:ff:34:d1:26:ad:72:cf:26:95:d6:ab:
a8:b2:b7:b8:b3:3d:e9:84:97:d2:b9:68:f4:a2:96:92:a1:aa:
67:6a:e5:91:e1:38:56:b8:43:38:2b:f0:08:92:7f:9d:5e:36:
87:7f:55:d8:bc:ce:68:0a:b9:37:5a:3c:de:ca:4f:e1:49:72:
d3:3d:eb:f7:fa:77:bf:8c:39:dc:be:7e:00:88:4c:6e:a0:5f:
cc:5d:68:4c:a0:0a:43:25:8f:e5:08:29:55:eb:80:0c:5a:db:
3b:45:ed:c2:f5:98:09:91:68:76:13:df:8b:e0:e7:09:83:56:
3a:f9:11:92:50:97:58:b3:ce:b0:e9:3e:23:36:f6:2e:fe:df:
1c:49:48:71:f7:a7:c7:47:75:d7:1b:aa:b1:49:35:bf:0a:fd:
7e:a5:39:36:18:af:bb:d2:3b:a8:ad:d7:6f:03:3d:6d:27:57:
46:0d:a4:33:09:7c:fd:05:95:b6:a0:b8:03:69:48:4e:0d:9c:
23:e7:cf:b2:cf:19:ed:09:c0:8e:b8:ee:47:94:51:8c:54:09:
2e:b3:84:53:78:c8:67:29:bf:65:8d:de:73:25:c7:34:e6:94:
1d:7c:fb:2e:7b:3a:a9:36:34:3e:cc:00:83:f6:7e:60:4b:f0:
4c:ef:c5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:02:31 2024 by rpki-client on console-ams.rpki-client.org