Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
File: KdlQvBhFV79QTPK3yUp9zsCHbWY.mft (raw, json)
Hash identifier: Pk1DQKovioqglDrdY6o83S4r1wKjCpvRx8+veOkeHKo=
Subject key identifier: CF:6A:2E:6A:47:16:7E:5F:69:C9:5A:94:8F:C1:BB:B5:D0:75:3D:65
Authority key identifier: 29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
Certificate issuer: /CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Certificate serial: 0193553F9A9D665E6B8FEEEB1BBD38BD35DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
Manifest number: 136F
Signing time: Fri 22 Nov 2024 19:00:51 +0000
Manifest this update: Fri 22 Nov 2024 19:00:51 +0000
Manifest next update: Sat 23 Nov 2024 19:00:51 +0000
Files and hashes: 1: KdlQvBhFV79QTPK3yUp9zsCHbWY.crl (hash: RDhVF+j5POtK60IyE4rimHkixEuw5XtKKwUD5jPVsYY=)
2: xGaSqKv1HnrtRpHNKCZxjX0gaug.roa (hash: mU7JH6Sx5ARiC0/krLxIuDmrPcE6wC2v7Fb6B6Unj9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:3f:9a:9d:66:5e:6b:8f:ee:eb:1b:bd:38:bd:35:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Validity
Not Before: Nov 22 19:00:51 2024 GMT
Not After : Nov 23 19:00:51 2024 GMT
Subject: CN=cf6a2e6a47167e5f69c95a948fc1bbb5d0753d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:06:af:d6:e6:b1:be:2c:f4:e4:56:df:20:1c:
87:d9:d6:aa:5c:1c:e1:ab:6a:4b:44:dd:c9:e9:d2:
5a:46:59:43:6b:c9:ca:d2:88:fe:77:26:9d:bb:1d:
98:22:a2:b5:9b:8a:8b:f4:26:64:d2:d3:28:d1:e5:
8f:96:f8:53:d2:28:68:f5:49:8d:2b:0c:a0:1b:0a:
68:8e:6f:77:2a:0b:5a:c4:36:2b:98:a8:fb:a9:ce:
38:76:44:aa:2f:c9:29:34:82:2b:24:a2:00:db:3b:
b1:7e:58:2c:bf:de:2f:48:ca:45:f2:de:3b:00:3e:
74:34:88:f8:46:40:21:14:35:a3:d2:99:db:c2:2a:
ec:24:58:69:0b:dc:62:74:ed:d6:cd:3c:f0:94:73:
13:c2:14:37:dc:f0:74:a3:0f:44:ed:75:2f:01:94:
73:4f:9e:e9:16:3e:34:dd:15:f2:04:0a:93:30:7c:
6a:cb:14:16:bb:41:9d:72:2a:6c:b4:ab:ed:0e:b2:
86:b0:35:7c:93:2d:c3:2b:4b:27:db:ed:f7:9d:f1:
dd:6b:e4:4c:ef:89:ab:22:45:f9:bf:5d:dd:94:2d:
75:a9:3f:92:b9:c5:0d:6e:f9:1a:56:03:f8:17:a6:
f9:6e:80:3b:f8:01:52:73:65:d0:14:3f:f8:f6:4d:
b9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6A:2E:6A:47:16:7E:5F:69:C9:5A:94:8F:C1:BB:B5:D0:75:3D:65
X509v3 Authority Key Identifier:
keyid:29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7a:47:27:94:ec:e9:82:f4:12:ec:5b:67:9b:e1:da:8f:03:
b8:ea:c0:50:e7:cf:7e:75:00:80:18:69:2c:ba:29:82:81:27:
67:40:3a:1a:d5:8b:73:cc:a2:05:7b:26:98:69:ce:fa:74:17:
86:38:af:51:07:13:8a:0d:3a:f6:ae:17:65:95:15:c2:09:ea:
22:67:70:c5:96:9c:c9:f3:b9:83:98:4d:0e:f8:91:81:56:ab:
64:5e:39:3c:e3:71:d7:f7:5b:c6:22:27:0e:87:9b:55:64:eb:
ae:ca:0c:a4:7b:54:d6:ab:e6:d2:a6:68:c6:c4:ba:21:82:51:
7f:a0:d8:fb:64:d1:2b:2f:36:3b:46:f4:a7:1b:4b:dc:23:95:
03:c9:6b:ba:1e:ba:c7:8f:e6:c6:2e:a0:c4:77:7e:61:a4:d5:
9c:91:b8:d8:67:cb:e8:5a:46:2c:af:fb:17:cc:dd:6e:e6:88:
b9:2c:7f:cc:39:02:71:4d:01:fa:ef:59:2a:2d:86:99:5b:20:
25:fa:8a:18:3f:03:11:eb:7d:88:76:ba:b1:8a:06:f3:34:11:
5f:a5:f8:fd:b2:f8:d5:51:c0:70:d3:61:e0:fb:f9:eb:35:64:
99:2c:db:56:9d:6f:5a:2b:2e:7c:33:ec:d1:3b:44:63:27:fa:
48:c7:69:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:30:25 2024 by rpki-client on console-ams.rpki-client.org