Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
File: KaA5l7KPWbCAMciYQH3V5RN93bE.mft (raw, json)
Hash identifier: wfKlSn7/OBxSr8OvTsMMldZ+ibdE+7s082aslalEQ7U=
Subject key identifier: 45:EA:4F:0D:8E:62:B3:C2:C9:50:F5:17:22:0A:0A:88:C4:AE:68:60
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 018F874A502671DD9DB30942ED2592C5910A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
Manifest number: 0E63
Signing time: Fri 17 May 2024 16:02:25 +0000
Manifest this update: Fri 17 May 2024 16:02:25 +0000
Manifest next update: Sat 18 May 2024 16:02:25 +0000
Files and hashes: 1: FvgUttrzdpktKgHBKbvgoJ6ePdc.roa (hash: 4nfHuQwiAPU2/ad2RBYhItAfEv1o71zh1+lsmVUJktg=)
2: KaA5l7KPWbCAMciYQH3V5RN93bE.crl (hash: 7WioIKi1VogfgqyzwyJeeZS8Tw1upvezDBY4h8yKG5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:50:26:71:dd:9d:b3:09:42:ed:25:92:c5:91:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: May 17 16:02:25 2024 GMT
Not After : May 18 16:02:25 2024 GMT
Subject: CN=45ea4f0d8e62b3c2c950f517220a0a88c4ae6860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b7:44:81:6f:74:cc:0d:79:82:ce:db:3e:50:
c3:b0:56:a9:78:db:df:b4:25:43:1b:79:2f:49:75:
ca:ff:83:4d:4d:e5:de:56:81:1d:89:ee:be:ed:fb:
46:f5:33:4e:70:2f:b4:b7:3b:39:f4:b1:a1:2d:b1:
f1:2f:f1:c4:4c:92:1a:e3:9c:4a:42:2b:66:4d:0f:
5f:7c:42:e5:44:5b:95:a0:f4:1a:29:62:a0:e8:c1:
31:3e:1c:e7:73:da:c9:3c:cb:99:7f:cc:69:fe:35:
77:04:66:30:96:56:c1:ff:c1:c6:ca:b9:ec:ad:e9:
eb:d6:5b:d3:5f:cb:e0:02:21:74:c3:b7:be:0d:eb:
ac:77:57:0f:b1:38:35:c0:93:b5:4e:98:fb:a9:ef:
f1:c4:5f:ac:66:ac:2b:90:e6:8f:ed:49:e4:03:a3:
c7:8e:09:d4:6e:d4:63:00:63:fe:34:7e:8b:b7:77:
4d:fc:c9:d4:05:73:91:76:61:59:41:9e:fe:96:22:
79:d6:15:77:5a:89:41:d5:2b:6c:89:42:d0:87:d5:
63:06:ce:dc:a6:1d:7d:59:f9:85:8e:01:ab:90:22:
28:56:1b:ae:69:15:f5:49:ab:6d:04:5f:99:f5:34:
11:d7:b1:4f:6d:1c:17:e5:d6:77:99:c0:fd:85:2e:
66:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EA:4F:0D:8E:62:B3:C2:C9:50:F5:17:22:0A:0A:88:C4:AE:68:60
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:42:18:67:67:33:d8:6e:b1:99:f1:7c:8f:6b:20:ac:26:b3:
01:05:5a:5e:2a:8e:aa:01:e2:c3:ee:db:7e:2e:b4:b3:29:90:
48:f0:d8:6a:da:c7:cc:6f:d2:00:d3:43:8a:45:19:00:a8:1f:
85:1f:4f:a4:0a:4d:94:83:54:33:2f:d6:fb:7c:31:3c:33:17:
93:3a:4f:4a:de:aa:8b:fd:07:eb:fc:0d:7e:a0:94:35:57:56:
49:76:d9:9c:de:38:ce:af:96:08:77:5e:b2:98:76:a1:e8:a7:
c8:e2:6e:77:af:bf:91:51:7c:c1:89:d1:af:1b:cd:83:8a:de:
62:17:0f:a2:f3:87:c6:5a:72:48:e4:77:55:e4:55:bb:47:8d:
a8:ad:62:62:d7:3d:00:62:f7:fd:06:c1:2b:25:09:d4:84:44:
40:59:72:f1:53:7f:15:ea:e5:b2:db:5e:71:58:03:ab:f0:7f:
2a:50:d9:a7:46:a5:64:d5:a1:5b:68:b6:98:57:56:2e:1c:58:
a3:83:a7:23:11:06:69:f2:a4:01:0c:27:c2:c7:57:83:73:8f:
c0:6c:3e:d2:bf:4a:7a:ba:ed:f7:0d:6f:8e:ec:31:49:26:36:
75:15:e2:8c:f3:79:37:40:eb:9c:08:8f:0e:5f:87:68:1d:e4:
ee:15:26:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:46:19 2024 by rpki-client on console-fra.rpki-client.org