Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
File: K5didVR7dd8rBMT5spHAcQxQd0A.mft (raw, json)
Hash identifier: kpu+TdadZw4fTOsVCCZWN3ENffy3254PyOn8dib+mTA=
Subject key identifier: DF:57:04:DF:37:C6:E1:60:A5:98:CA:C0:76:9B:F3:12:3B:20:71:FE
Authority key identifier: 2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
Certificate issuer: /CN=2b976275547b75df2b04c4f9b291c0710c507740
Certificate serial: 019355AD10AAFBEEAB0B09292F6148F5C9A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
Manifest number: 1372
Signing time: Fri 22 Nov 2024 21:00:25 +0000
Manifest this update: Fri 22 Nov 2024 21:00:25 +0000
Manifest next update: Sat 23 Nov 2024 21:00:25 +0000
Files and hashes: 1: K5didVR7dd8rBMT5spHAcQxQd0A.crl (hash: hPxEvR9YLPvKqHqkOy2OLAPnovGKLo72v7RTd+OeQdY=)
2: SErLiDvIMdGJNdDy9kmRigrZYKg.roa (hash: O15GP+ZWjX/p1Gu8QdJsRKemgaBOIBITdGWZ8amcvSw=)
3: fsfcfIcKDeVKyZV5RmqsIeNfhAY.roa (hash: uXMUxpMpYAATlNgdA9rB+NmXMiAO6fu8HnGp7iyblJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:ad:10:aa:fb:ee:ab:0b:09:29:2f:61:48:f5:c9:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b976275547b75df2b04c4f9b291c0710c507740
Validity
Not Before: Nov 22 21:00:25 2024 GMT
Not After : Nov 23 21:00:25 2024 GMT
Subject: CN=df5704df37c6e160a598cac0769bf3123b2071fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:79:e9:71:ce:40:a7:9d:51:ba:27:d8:a3:e6:
80:91:c5:e8:b2:5a:a8:38:af:60:22:c4:e4:08:d1:
25:8a:27:8f:d1:9e:6d:a3:a8:13:ec:30:fa:a2:1b:
ad:f2:87:4b:99:b7:9a:9b:1b:5b:5a:d3:39:31:1c:
92:65:39:e1:54:87:8e:71:a0:84:cd:13:36:ff:a4:
07:f2:cc:02:03:03:96:df:a6:5a:5c:6a:6d:a4:5a:
bc:9b:2a:50:3e:cf:77:c1:51:72:1f:91:b7:94:e8:
a7:31:5e:f2:a3:91:13:a6:2f:a6:b8:a1:87:46:01:
c9:d7:4a:c0:c1:3b:03:49:84:2b:93:4e:91:05:3e:
9c:51:ea:26:dd:89:31:38:4b:86:b1:c8:7e:50:54:
a8:09:e6:5a:d1:9b:fe:fb:15:7c:4e:34:dc:58:10:
92:9a:c3:e0:ca:d8:5e:6a:a0:69:38:17:7c:f1:dd:
a1:6b:d4:a2:17:13:dd:8f:94:df:5a:59:c5:bc:62:
b9:ad:f8:12:21:b8:0e:9e:01:00:c6:cd:78:ae:12:
51:4d:af:be:85:c1:11:ee:34:13:83:52:37:a0:57:
a5:0c:98:83:be:b3:93:ba:19:d6:9d:71:47:76:0f:
ac:ac:79:2b:00:1f:c4:6f:f1:04:6d:8c:81:8b:9c:
7a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:57:04:DF:37:C6:E1:60:A5:98:CA:C0:76:9B:F3:12:3B:20:71:FE
X509v3 Authority Key Identifier:
keyid:2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:09:fe:2c:79:3e:e4:e7:0a:7f:36:37:46:a3:89:2a:bb:c2:
ce:d2:83:c6:dc:27:87:0e:1d:ea:74:9e:d8:67:a1:77:7f:1f:
89:8e:44:05:12:8d:82:b8:c6:db:3e:fe:5c:45:24:42:79:85:
f4:ef:14:95:15:d9:c2:31:cd:a4:5e:f6:9b:c3:e7:08:5e:a4:
67:0c:32:6d:be:db:ae:4f:27:8a:98:df:80:30:14:14:f6:68:
0b:02:8b:4d:26:41:61:f1:66:22:ed:dc:d9:1d:0d:a3:54:85:
17:e9:dc:a8:65:4b:25:04:84:40:c8:c4:a3:21:a3:82:38:85:
db:9c:36:89:57:c5:af:78:3e:cb:f4:f4:45:20:9d:2d:7d:93:
61:03:44:3a:f8:84:c8:a4:51:0c:e8:9c:a0:47:bb:4e:3d:b8:
0d:e7:b0:c1:94:88:69:0a:e2:7f:14:a0:31:4b:39:58:5f:68:
70:e5:1b:a7:9b:bb:cc:69:03:cb:ad:b1:77:9b:a8:08:7d:ec:
48:d4:36:13:c8:80:61:b9:3a:96:3a:37:d8:07:1f:c3:d3:1d:
ae:f6:eb:94:a9:86:7a:e7:b9:45:b4:b0:97:ab:36:48:7c:72:
f1:3e:ac:13:39:89:a2:48:5b:be:d2:3d:af:9b:7f:ae:93:ae:
a1:37:a9:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:18:43 2024 by rpki-client on console-fra.rpki-client.org