Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
File: kR2gx6mUBcRrqthMudk-g0WZyOE.mft (raw, json)
Hash identifier: PbLyhF5l/GAeQGyCQcflWyP9EOrKc0jfWAoiraq/gVk=
Subject key identifier: 7E:43:E9:93:01:4D:C3:A9:7F:EC:EC:FA:4D:3F:92:7A:9B:0E:DC:9A
Authority key identifier: 91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1
Certificate issuer: /CN=911da0c7a99405c46baad84cb9d93e834599c8e1
Certificate serial: 01935A658EBAB5385D968739B72E7A4263E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
Manifest number: 1374
Signing time: Sat 23 Nov 2024 19:00:25 +0000
Manifest this update: Sat 23 Nov 2024 19:00:25 +0000
Manifest next update: Sun 24 Nov 2024 19:00:25 +0000
Files and hashes: 1: Z9aGLo3Lm5FHg8VrNmuRK091OhI.roa (hash: J6Gt7FNYV/KVN3fM6x7G3yHHZgCPOhUOO6bg1bXIWyg=)
2: kR2gx6mUBcRrqthMudk-g0WZyOE.crl (hash: oTLf9Qs9DoLIiRveOTyW7yDXzy/rwVFMkXqeaGzqtpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5a:65:8e:ba:b5:38:5d:96:87:39:b7:2e:7a:42:63:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=911da0c7a99405c46baad84cb9d93e834599c8e1
Validity
Not Before: Nov 23 19:00:25 2024 GMT
Not After : Nov 24 19:00:25 2024 GMT
Subject: CN=7e43e993014dc3a97fececfa4d3f927a9b0edc9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b8:ef:0f:ba:f7:20:0d:59:a8:9a:48:5c:63:
fa:58:40:73:95:09:e3:d0:8c:1d:a3:d0:31:c0:5a:
2b:4a:5e:55:40:05:36:91:c1:0d:87:1b:55:03:a4:
e2:76:e2:d9:f9:bc:9e:03:99:87:29:ab:e7:b2:31:
1f:36:b5:ff:90:0b:8f:b7:7e:ec:0d:35:ec:79:1b:
2e:cf:1f:54:52:9e:86:32:b4:35:93:09:2b:56:26:
95:58:99:e4:dc:15:07:01:59:84:13:02:5b:e6:7c:
b5:9d:0b:67:df:ae:57:16:16:d2:e2:bc:a9:2b:89:
8a:ac:a1:83:a7:55:af:0a:a6:b8:d8:84:a2:7f:5d:
cb:07:54:da:45:49:af:26:63:01:aa:b5:fd:8b:44:
e7:23:b0:d2:b7:55:d3:20:e1:98:16:60:8d:6f:f7:
2e:97:be:41:4b:d4:e0:b4:17:ea:ca:c2:93:28:fe:
0e:2c:bc:0b:ad:81:d2:55:e6:28:b2:bb:7b:44:d6:
f7:e2:66:0b:84:00:73:7a:24:e6:10:76:06:44:fb:
07:26:78:21:24:96:af:7b:68:17:62:ae:b7:0b:18:
b7:00:f5:2c:e3:72:c6:78:09:8e:4c:2c:0e:75:05:
e0:8b:e8:99:5e:25:23:1a:54:37:4a:88:76:4f:1a:
ed:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:43:E9:93:01:4D:C3:A9:7F:EC:EC:FA:4D:3F:92:7A:9B:0E:DC:9A
X509v3 Authority Key Identifier:
keyid:91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c7:fa:a9:7e:64:e3:86:e6:03:37:a6:07:89:b1:fc:99:85:
3c:08:0c:5d:1a:26:65:16:ca:5d:5b:54:a9:32:c2:34:14:f6:
b4:6f:77:02:a0:80:8a:94:d6:68:d7:7d:56:b7:82:72:ab:b2:
8f:b8:e2:c9:56:93:e4:d7:c8:72:e2:af:a7:80:0c:a0:f0:03:
d7:08:a0:61:65:a5:ea:e4:22:7c:7b:7c:98:96:00:64:14:8c:
c6:f1:d5:af:fd:55:64:ff:85:7d:33:0e:4e:dc:5b:e9:a6:41:
21:f3:12:e2:13:a7:3c:10:e0:1d:74:3d:c0:d4:4b:e0:d5:b8:
67:70:a4:c4:53:1c:53:48:80:ed:53:07:48:3c:98:75:60:30:
25:22:28:f5:0a:e7:9f:f5:e5:f9:c7:ac:87:0d:09:5e:7b:7b:
8f:48:bd:92:05:6e:a1:2c:46:10:a8:28:25:9d:35:70:91:d4:
bf:58:54:16:bd:3b:b1:07:9d:97:1d:95:55:25:b7:93:d3:71:
66:ee:41:bc:71:ee:c2:28:e2:48:a7:44:24:5b:99:78:f4:73:
49:d4:21:bc:a6:7a:c7:76:a0:6f:40:1e:f9:69:b2:a4:d0:b4:
25:8b:13:bb:d8:d4:3d:34:62:5e:fd:a9:df:63:7f:99:a2:b6:
bc:ac:5a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:19 2024 by rpki-client on console-ams.rpki-client.org