Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: M5kPi/zWZ7oyPxDgUe7hob89Ki/GgGtJMQgMM4ume80=
Subject key identifier: A6:5F:EC:75:81:59:F0:09:72:83:CA:9B:6E:60:28:32:82:B9:5C:8A
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 0193549A8B709491626B401C56D2FFA55ED2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 1370
Signing time: Fri 22 Nov 2024 16:00:34 +0000
Manifest this update: Fri 22 Nov 2024 16:00:34 +0000
Manifest next update: Sat 23 Nov 2024 16:00:34 +0000
Files and hashes: 1: VJl2KeErYofZaDB8ySDAebxcxf8.roa (hash: 9q3xwgTqUEMi/3MZWD4NFAZnnIdymt67Rrl3QZz+9IQ=)
2: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: uCJ1nwduM/089e9p+nRGrDaOXJcQ+ZYQFgn/2BUlzak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9a:8b:70:94:91:62:6b:40:1c:56:d2:ff:a5:5e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Nov 22 16:00:34 2024 GMT
Not After : Nov 23 16:00:34 2024 GMT
Subject: CN=a65fec758159f0097283ca9b6e60283282b95c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:16:0b:7d:ef:21:18:82:5d:8f:70:45:34:43:
7b:62:ec:88:51:61:6e:ca:b0:a0:4f:60:83:66:61:
60:6e:fa:b7:04:5a:d9:d4:9d:8e:fa:19:1b:71:a4:
ae:21:85:4a:3f:e5:65:40:20:f8:37:88:47:98:dd:
d5:f6:17:de:61:37:9f:e0:53:e1:4c:e4:11:7e:d0:
0f:28:bd:89:3d:67:4b:73:ab:e2:a5:c3:bb:de:cc:
80:9c:02:ba:96:40:57:8a:4b:97:73:25:2e:ed:e0:
aa:68:8e:a4:d7:d1:a4:2b:76:83:d2:7d:bf:50:e5:
ca:40:fc:07:d4:8a:fa:d5:85:32:c0:cf:1e:3c:dd:
ab:83:57:1b:d9:ed:5a:5f:ba:56:06:a7:4a:b8:02:
5c:2e:f3:2a:4a:fa:22:06:1a:24:09:c9:06:2f:e8:
b7:04:5e:6e:cf:4e:39:cf:3b:c1:fc:3e:5f:2b:c9:
43:32:ca:c4:b7:2b:de:19:5a:aa:36:aa:57:2a:52:
f7:87:0f:d4:49:45:8f:0c:9e:d7:b1:03:ca:73:0f:
60:9a:c2:84:e4:9d:74:48:5a:82:de:7d:dc:51:2a:
c2:76:64:22:36:5e:25:a6:18:49:c4:27:c5:94:82:
7a:fc:09:e3:5d:30:43:67:81:36:47:06:f0:81:32:
6c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5F:EC:75:81:59:F0:09:72:83:CA:9B:6E:60:28:32:82:B9:5C:8A
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:42:68:10:fc:40:96:f1:ed:b8:05:0a:b6:dc:5c:4b:f1:2b:
4f:f5:23:a1:96:79:06:65:78:2d:0d:8d:43:c8:ef:3b:42:23:
70:5e:3f:a7:fa:8f:60:64:e7:3d:d6:47:bb:02:4b:e7:98:d1:
52:3c:fb:2e:8f:ea:04:97:07:4c:ec:32:f1:02:22:99:f5:d6:
c7:c8:6c:5f:79:70:41:d5:6d:e8:87:13:37:05:16:cd:27:81:
55:58:64:90:8c:1d:47:2a:b3:66:31:f9:a9:e9:ee:84:e3:8c:
2a:65:52:70:cc:c0:8c:23:28:ab:9d:20:c0:e4:ff:d3:44:3a:
c2:74:4f:fc:c8:37:c2:c3:48:5b:e9:98:f0:33:e2:29:6b:7e:
49:40:cf:ab:73:af:6b:33:71:6b:27:1b:d5:a4:9e:4f:bd:a0:
ab:e3:f2:be:7f:01:61:ca:42:3e:fc:8d:45:35:d4:25:f7:0b:
fc:e0:90:49:9d:b5:db:b9:0e:f3:22:cc:88:32:01:ac:97:f7:
13:62:0b:fd:df:6e:fc:c0:c7:50:2b:03:e4:fb:a9:d1:4a:7a:
c2:f1:4c:a1:85:e6:44:25:27:be:80:92:01:26:9e:7b:61:f8:
ec:09:e2:7d:71:01:8d:4d:e9:b0:4b:37:7d:18:08:44:a2:b8:
1d:a9:60:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:05:18 2024 by rpki-client on console-ams.rpki-client.org