Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
File: KBZKV1f91XJaYIRPKufvc7EHpMA.mft (raw, json)
Hash identifier: u6OFiSDU9zYJS2HrEUIWTtpoR7oLy422jnUBxMnGLrk=
Subject key identifier: D8:CB:23:40:33:BD:06:F5:9F:F0:29:05:2F:D1:30:E2:3C:26:A8:E2
Authority key identifier: 28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
Certificate issuer: /CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Certificate serial: 019358788D269CCB508367A4BD7D873EC7B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 10:01:55 +0000
Manifest this update: Sat 23 Nov 2024 10:01:55 +0000
Manifest next update: Sun 24 Nov 2024 10:01:55 +0000
Files and hashes: 1: KBZKV1f91XJaYIRPKufvc7EHpMA.crl (hash: ayY1oPR8YGBANpfX7c3HE80dkhT6ImpZmPOXuSpbu08=)
2: Yi42xy7xwSC9Mz4ie1JHpYpCkNs.roa (hash: /NO4oAAn57oLJvbGPvE6JhCXOIdZoKwu1k/xOre+u4Q=)
3: ueW1zn0qIWaHE0ieRLApF9uVpho.roa (hash: ogxRwck0mMBBB8+wQ7v6b+14HcbJptVkS4H846esXAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:8d:26:9c:cb:50:83:67:a4:bd:7d:87:3e:c7:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Validity
Not Before: Nov 23 10:01:55 2024 GMT
Not After : Nov 24 10:01:55 2024 GMT
Subject: CN=d8cb234033bd06f59ff029052fd130e23c26a8e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:c3:f1:b8:68:9c:62:1e:94:e1:07:ac:bd:
2f:4b:7f:81:88:fa:92:7b:a0:02:e5:b4:f0:61:7b:
7c:da:19:7c:00:b9:4b:04:ea:17:fc:24:82:6a:08:
8b:00:8b:59:e2:41:dc:2d:7d:e8:ba:b9:a1:01:42:
05:d8:60:f9:dc:51:61:0e:5f:35:80:c5:5b:d6:17:
6d:da:5e:ae:e1:da:87:88:e0:10:01:2f:11:1f:7f:
9e:6e:13:e1:61:32:f5:7a:b9:8e:77:09:5c:e6:9e:
98:37:6a:d1:8e:95:ca:6e:39:bd:6c:ad:07:7d:9a:
5c:c6:21:32:8b:ba:af:22:56:c7:8b:a1:8f:09:f0:
2d:2e:d7:13:9b:67:e0:fd:fc:6f:3a:92:b3:93:36:
4a:6d:42:9e:1b:8a:08:06:57:0c:d4:67:0a:82:0f:
b3:7b:d5:81:cf:80:49:18:e1:b4:30:ef:25:81:2d:
2b:d2:29:4d:73:60:f9:34:0d:70:67:eb:d2:3a:a6:
a5:70:29:b2:b5:5a:f2:eb:41:65:40:7e:a6:1f:5e:
38:57:96:c3:42:bc:84:b2:a4:59:f6:ec:98:bc:39:
f8:54:84:7a:3a:ad:31:3c:36:71:7b:8c:d1:64:85:
fa:89:1d:73:4c:f0:3a:4d:f5:78:a6:df:f3:0f:9f:
25:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:CB:23:40:33:BD:06:F5:9F:F0:29:05:2F:D1:30:E2:3C:26:A8:E2
X509v3 Authority Key Identifier:
keyid:28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:a4:74:ae:f3:43:b8:0d:1e:98:94:2e:86:49:7f:70:4d:be:
75:9c:fd:2d:29:1e:54:75:7c:62:a7:e5:f8:98:d8:dc:54:95:
82:e2:14:50:d3:be:a1:b9:58:ae:aa:d0:c1:42:b4:96:ad:e3:
4b:24:bc:ba:14:4f:fe:ec:b9:49:92:66:25:be:24:ae:9b:68:
43:80:44:1a:39:92:4d:9f:0c:c2:a2:74:80:7b:1e:2c:99:a9:
98:c8:c2:b9:72:09:3b:c1:b0:4f:91:f1:39:05:6d:85:23:ec:
d1:f5:fc:c8:f9:38:f8:15:67:2c:f0:d8:ae:fc:fb:4c:c0:40:
6b:24:85:1d:54:11:e5:74:13:1b:b4:72:b4:34:eb:aa:29:81:
cf:d0:c5:fb:99:3a:11:e1:82:a6:a8:b8:c3:57:da:12:79:0e:
0c:d7:c3:d4:70:d5:10:1a:e9:05:1f:2b:80:dc:b1:7f:05:05:
11:c8:f5:59:16:07:be:14:bc:30:4c:c8:44:d6:8d:28:b2:59:
9e:ae:ba:1b:52:91:62:07:b9:0c:19:f2:be:0d:c6:e2:30:a4:
f6:bc:92:2c:60:ed:b5:ef:46:71:03:17:40:8a:23:d7:d9:6f:
eb:51:ee:cb:3a:21:2b:17:65:25:70:be:38:80:8f:80:da:cd:
2b:2b:99:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:00:14 2024 by rpki-client on console-fra.rpki-client.org