Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: QRVsMYP5TB/PywgxoAHsVknn+Oh5JqbAmuQjUCOaQOk=
Subject key identifier: 71:05:60:09:EA:0B:A3:D3:A3:E0:67:01:C5:FF:80:3B:6D:1D:B2:18
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 0193B82AFB694A1EC0626D165F1EABFA0323
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 13A3
Signing time: Thu 12 Dec 2024 00:00:44 +0000
Manifest this update: Thu 12 Dec 2024 00:00:44 +0000
Manifest next update: Fri 13 Dec 2024 00:00:44 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: UG+fKnvsZNwvQRHIPwdNywzXHyScr5J+4dFqEvbM3rY=)
2: xEUM5_-bOrjYIJSfRbII-Ga7hok.roa (hash: iLuKdr2vVKNh7H3vamhLqdEU1vgQTrEk4mF7e51Rcm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Dec 2024 22:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b8:2a:fb:69:4a:1e:c0:62:6d:16:5f:1e:ab:fa:03:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Dec 12 00:00:44 2024 GMT
Not After : Dec 13 00:00:44 2024 GMT
Subject: CN=71056009ea0ba3d3a3e06701c5ff803b6d1db218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:50:de:63:65:b4:b2:a5:23:2c:2f:12:db:0e:
6c:36:d2:65:a1:d1:a7:94:12:60:28:c3:3e:a0:6f:
d5:cf:d7:c8:ed:80:e9:67:ac:89:6d:d8:b3:12:5d:
54:88:c1:4f:8f:1c:ce:c4:c2:be:c1:d0:80:03:a2:
64:d3:d5:3c:e9:b0:4a:08:0a:a4:28:1d:da:bf:45:
5e:4f:31:5d:7f:ea:82:1a:e9:48:85:47:71:35:26:
d0:fd:b1:31:34:98:4b:01:20:f4:e8:29:f3:e7:3a:
3d:45:cd:a7:81:22:29:75:c8:53:13:cb:d1:75:a8:
16:1f:48:c5:ed:94:59:07:63:9c:83:53:8c:99:3d:
06:a3:de:e0:e9:e0:08:f0:7b:77:2a:35:0d:6d:87:
1d:c0:01:94:81:9f:1d:43:1f:58:eb:23:26:db:54:
75:b2:3f:d1:a0:ab:d0:9a:6a:ae:93:e4:ea:e0:e4:
dd:55:7a:5f:88:8c:06:5f:25:ee:c5:45:f0:52:00:
07:45:63:16:eb:e1:51:e0:e9:8f:e0:93:6c:59:be:
41:ce:b8:5e:14:d4:ee:ae:89:90:34:90:56:60:78:
88:63:e0:31:eb:36:f0:db:ae:70:3c:45:9e:2e:38:
2a:1a:fb:82:c5:93:9d:cd:6f:6d:88:a6:4e:9e:1c:
cd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:05:60:09:EA:0B:A3:D3:A3:E0:67:01:C5:FF:80:3B:6D:1D:B2:18
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:cc:47:a9:22:6d:98:f4:b9:f0:f3:19:ec:bb:cb:e3:80:b0:
12:6f:ed:c6:e8:9d:a2:b4:23:fd:56:6b:9d:87:4e:ae:71:b3:
73:97:e7:9d:9c:d2:2b:fc:60:ed:7c:7a:4c:40:99:4d:94:36:
b2:d4:c9:cf:8b:a2:07:ca:73:1f:fc:06:e7:71:21:1c:77:f1:
1d:51:bc:1c:46:ad:c9:41:65:99:66:fb:57:73:49:fd:1a:c3:
ad:0d:dd:1b:c1:a2:c9:9b:f5:f6:6a:ad:6d:5e:be:fc:f9:8d:
42:47:13:91:75:5f:a8:0d:05:d5:a9:d0:cc:9e:15:3c:ac:6d:
53:0a:d8:5c:eb:c7:13:ef:ce:dd:fe:db:ce:32:27:e9:f8:bc:
1e:fa:c8:76:fd:78:1f:fd:81:48:6c:5a:26:c9:38:44:c7:90:
a4:1f:cc:d7:92:02:0c:ab:aa:70:51:1f:4b:e4:f7:4d:9d:ad:
0b:68:98:61:b8:fb:08:45:a9:6b:00:b6:62:fe:e2:0d:81:93:
d5:77:ae:d8:85:9b:3b:d5:fc:4a:39:3c:4b:21:a5:ab:54:1b:
71:47:03:51:1f:65:7a:6b:d1:2d:eb:a3:65:69:3b:b0:0e:f0:
fc:8e:50:51:cf:7d:88:f3:ca:d2:00:e9:40:a4:b9:b4:de:fc:
fa:71:35:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 12 04:13:25 2024 by rpki-client on console-ams.rpki-client.org