Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
File: KBZKV1f91XJaYIRPKufvc7EHpMA.mft (raw, json)
Hash identifier: kmfHl09P2UDoDJqZmddf8Dk7u0QgyW9m9/qZQ/LMa58=
Subject key identifier: 6A:7D:E7:00:3B:31:C2:F3:D7:01:1B:7D:2C:E3:2F:6F:52:E7:1F:98
Authority key identifier: 28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
Certificate issuer: /CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Certificate serial: 018F8749CC00E73B139B6F6A877227A3F817
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
Manifest number: 1175
Signing time: Fri 17 May 2024 16:01:51 +0000
Manifest this update: Fri 17 May 2024 16:01:51 +0000
Manifest next update: Sat 18 May 2024 16:01:51 +0000
Files and hashes: 1: KBZKV1f91XJaYIRPKufvc7EHpMA.crl (hash: 8AeMfpYwQ6E9WGWRn2/V5COI0tQXUJjYD7awaJ3Q6Zw=)
2: Yi42xy7xwSC9Mz4ie1JHpYpCkNs.roa (hash: /NO4oAAn57oLJvbGPvE6JhCXOIdZoKwu1k/xOre+u4Q=)
3: ueW1zn0qIWaHE0ieRLApF9uVpho.roa (hash: ogxRwck0mMBBB8+wQ7v6b+14HcbJptVkS4H846esXAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:cc:00:e7:3b:13:9b:6f:6a:87:72:27:a3:f8:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Validity
Not Before: May 17 16:01:51 2024 GMT
Not After : May 18 16:01:51 2024 GMT
Subject: CN=6a7de7003b31c2f3d7011b7d2ce32f6f52e71f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8f:f3:b5:57:8a:9a:ee:a6:f3:39:ec:68:f6:
5d:36:19:b1:e1:c1:59:26:1a:e2:98:31:8f:c4:22:
14:aa:87:e2:fc:eb:ad:0e:81:cc:da:eb:1e:4a:df:
a5:61:8b:28:c7:46:e6:8d:4a:81:17:ae:75:e1:d6:
dc:94:ae:b0:0f:13:dc:15:cf:92:6b:21:d5:2a:e5:
91:19:d3:c0:7d:af:a8:07:4e:c7:9a:d0:4c:52:34:
94:e9:da:0c:14:32:bc:7d:6f:dc:96:38:88:a0:b6:
37:40:4d:d0:60:d1:be:b2:d2:71:8d:89:4f:bd:5a:
07:24:0d:bb:7c:ad:23:45:8f:1f:94:67:ce:06:bb:
0a:4e:8c:e2:90:18:1e:ec:5d:45:27:f3:35:2a:7d:
38:69:54:28:84:a4:da:1e:0a:88:55:12:a6:28:16:
ee:43:cd:7f:c4:f1:42:c9:8a:53:fb:73:f9:e0:8b:
e0:a9:c2:4b:eb:9f:ea:5f:49:a4:19:d4:06:29:41:
ea:cf:4c:e9:d0:81:a3:40:21:df:47:96:d1:50:fd:
e2:cd:ce:10:20:30:c8:92:bb:2b:5e:38:42:b3:7a:
52:6a:97:5d:e1:e8:fc:c9:dc:bb:ff:13:78:14:78:
a2:8b:5f:1a:16:2c:ba:cf:e5:cd:f8:34:1e:29:97:
03:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7D:E7:00:3B:31:C2:F3:D7:01:1B:7D:2C:E3:2F:6F:52:E7:1F:98
X509v3 Authority Key Identifier:
keyid:28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:92:33:7c:a7:fb:8a:96:0d:a7:1c:d2:3c:93:96:6c:48:ff:
49:74:77:01:e2:da:b4:d2:e6:df:04:37:4a:2b:3c:e0:9a:fc:
2e:6c:1c:4c:01:ec:85:ac:c1:75:7e:3b:a9:17:11:45:00:03:
2e:b2:fc:21:22:8c:95:3d:0c:a2:1f:22:87:89:91:e1:7c:1c:
ad:f3:e0:22:8e:82:91:1b:6d:9f:d3:13:f8:7c:3a:d9:cc:dc:
f3:5a:28:9b:e4:b5:d1:d4:88:5b:8a:89:e7:a5:7d:1f:56:cf:
11:c7:a3:43:f7:4b:20:c9:a4:47:73:00:1d:13:2f:e1:5e:b6:
86:f8:ed:28:55:f6:d3:bf:66:88:52:73:c7:c8:e3:1b:26:d8:
0f:a0:cf:85:15:53:f2:36:a7:ae:71:1d:d9:3c:e9:f1:a6:76:
ea:95:c3:04:a2:a9:1a:6d:ce:1d:a7:33:d0:61:a9:89:56:c0:
9d:85:a8:63:08:14:db:ae:5d:fa:95:59:83:89:5e:24:55:98:
28:ac:4a:63:3f:fb:b0:a2:c2:06:c0:b2:85:94:7c:58:ae:d1:
6e:3c:7e:8b:23:a1:03:6d:99:72:9c:20:9f:7a:bb:a5:6f:93:
a9:f0:ab:ca:31:0d:8c:5e:c6:1e:cd:a9:d8:23:6f:fe:ed:f8:
74:34:f8:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:56:54 2024 by rpki-client on console-fra.rpki-client.org