Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: pqwKUHzPlsNTngwGOrSJtvq0BHyHZeTc7GVjNI1r5+Y=
Subject key identifier: 2E:E4:0C:55:BD:FB:5B:6C:7F:36:6D:4D:2C:F0:8E:76:41:24:91:86
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 019356889A0DC6FBD29912828B1338D84C37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 61
Signing time: Sat 23 Nov 2024 01:00:12 +0000
Manifest this update: Sat 23 Nov 2024 01:00:12 +0000
Manifest next update: Sun 24 Nov 2024 01:00:12 +0000
Files and hashes: 1: 7j-hi4sWkS4zs-qNs2GmhiqZcAw.roa (hash: QFGr2w53kj2LfpZi4MQklCYIe0Kam+jS1I7zC28vcvo=)
2: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: h2vLf6LLSGjE5Geki8XFkZAH5L23e8p0XShj8opKPb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:9a:0d:c6:fb:d2:99:12:82:8b:13:38:d8:4c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Nov 23 01:00:12 2024 GMT
Not After : Nov 24 01:00:12 2024 GMT
Subject: CN=2ee40c55bdfb5b6c7f366d4d2cf08e7641249186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a0:1c:b2:d0:2b:6f:15:41:e5:49:e3:50:88:
10:d4:f8:14:f6:fa:04:be:92:49:fe:dc:89:60:09:
1f:bf:ee:9e:cd:2c:b5:eb:23:7f:69:2c:30:ca:2a:
79:08:5c:de:f0:d6:90:03:8e:46:c8:0f:b9:6b:23:
80:04:29:b4:d8:8c:ed:7d:d3:18:c6:12:24:8c:cb:
1d:5a:08:42:92:ac:34:fb:64:18:99:fc:cf:d4:4b:
37:07:5f:0f:64:5d:1f:fe:01:42:01:c2:0e:1a:94:
21:3f:61:3f:cb:cf:8d:cc:11:8a:5e:ad:9e:ba:74:
6e:ac:3e:91:a4:12:7b:a9:9d:42:b9:ec:7a:cf:7c:
83:53:e0:48:9c:6a:f6:93:bb:d1:31:5e:10:4f:06:
a2:da:b6:bc:4b:11:c4:07:d0:ca:37:dc:ca:aa:4d:
52:85:26:51:9f:d4:fa:90:52:6f:f3:ae:a5:b0:63:
94:eb:1a:56:b6:a7:98:24:0b:a1:72:bf:6b:25:79:
e3:92:9e:2c:16:99:2b:dc:90:ab:ae:28:30:49:fb:
af:b1:b6:0a:52:e5:14:0f:cd:67:a4:25:d0:25:5f:
1a:d0:74:02:0c:12:c6:df:95:ef:5a:ac:f9:60:e7:
39:66:ba:6e:9b:f2:84:da:fc:56:2a:95:83:d8:3e:
40:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E4:0C:55:BD:FB:5B:6C:7F:36:6D:4D:2C:F0:8E:76:41:24:91:86
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:7b:7b:8d:fb:c0:32:fa:04:ad:7b:7d:e7:7f:9e:e5:2c:57:
ce:ac:84:3f:86:6c:0c:8c:50:88:f1:fb:28:94:14:c4:2c:63:
75:44:88:e5:1f:73:8c:16:bf:1d:3f:b1:5f:05:06:6e:22:a7:
74:78:b0:b9:04:f0:99:a0:dd:52:39:75:36:17:7c:ae:51:cb:
0b:f6:77:10:b7:e1:fb:f7:0a:1a:f8:e8:55:ab:e5:96:b9:db:
7e:40:be:a8:22:6c:12:51:c1:83:cf:df:b4:ac:4e:43:29:58:
de:2a:88:81:63:13:47:0d:10:ba:1b:29:1a:cd:11:80:89:ce:
75:6b:aa:64:39:7b:67:4c:9b:2c:00:fc:6f:84:20:14:91:19:
98:b7:72:53:40:0f:60:7b:5f:c0:ba:71:19:0c:60:16:d2:17:
6c:c6:5c:b7:00:c8:09:1f:66:17:c6:38:10:51:f8:52:6c:5d:
2f:12:ed:c7:09:1a:41:4d:6d:f2:3e:f1:69:ab:23:1b:0b:08:
40:27:0c:3b:66:08:c5:25:95:c7:b7:bb:3b:21:63:58:64:07:
88:95:22:f1:67:3f:b8:7b:33:13:61:47:ec:95:1d:64:28:ee:
fc:12:ad:c1:e2:6d:2c:02:92:0b:d3:8f:15:01:28:7a:8c:b1:
59:c2:81:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:00 2024 by rpki-client on console-ams.rpki-client.org