Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft
File: kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft (raw, json)
Hash identifier: q+CzDuuoV5xeRqv9ZjdqSTmBmnux0386wI8DDL3IdLY=
Subject key identifier: 88:FB:BC:17:31:46:E5:6F:04:9E:5E:97:8A:08:8B:C1:65:15:63:8E
Authority key identifier: 91:DD:0E:48:D9:01:1A:DF:37:66:65:AD:4D:62:CF:31:CE:63:05:8C
Certificate issuer: /CN=91dd0e48d9011adf376665ad4d62cf31ce63058c
Certificate serial: 019352AD12CE44CD410CC174D84B5FCA8347
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft
Manifest number: 0A8E
Signing time: Fri 22 Nov 2024 07:01:34 +0000
Manifest this update: Fri 22 Nov 2024 07:01:34 +0000
Manifest next update: Sat 23 Nov 2024 07:01:34 +0000
Files and hashes: 1: Lj8FrQTEyskp5C0NaHAX89WitBY.roa (hash: 0VvKQF3305WcNMSW50KiCBKErdX6PqYUjnlj691RARg=)
2: bw-MQalXkXYJmrXmzEKENOIK2Tg.roa (hash: bAJkw/mh+kktoYGqNhPi36g9Mk0QrQf7O1Vdl24WSjo=)
3: kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl (hash: lA6CrfrxxGsQseDYD0M908bSL5ATxjOxyH1kNHX3OAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ad:12:ce:44:cd:41:0c:c1:74:d8:4b:5f:ca:83:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91dd0e48d9011adf376665ad4d62cf31ce63058c
Validity
Not Before: Nov 22 07:01:34 2024 GMT
Not After : Nov 23 07:01:34 2024 GMT
Subject: CN=88fbbc173146e56f049e5e978a088bc16515638e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:13:26:bc:5c:e8:45:3f:74:86:e7:1c:14:c1:
fa:bd:df:32:36:7d:8f:06:2c:b9:71:41:58:8f:7f:
26:d2:23:ac:f0:5b:85:a6:9c:f5:a3:7f:e5:d8:ac:
61:8f:14:60:49:cd:8d:9a:94:e2:34:d8:f8:c4:4b:
1f:9d:05:45:2b:f1:f2:a8:cd:a3:4b:22:42:30:b3:
ca:ff:64:99:48:2b:bc:03:b7:5b:b7:a5:b9:ec:aa:
85:56:cb:0d:2d:71:1a:79:71:2f:47:18:ad:4d:dc:
19:b9:9c:d2:42:88:40:5a:52:11:dc:a4:0d:e9:be:
24:c7:d6:a5:9c:f0:57:c9:27:f8:b4:3a:af:21:ff:
d5:82:81:42:e2:42:15:27:58:c3:40:d7:9d:47:38:
f0:62:ba:68:f4:c3:64:25:33:e9:16:9c:11:92:73:
f4:70:31:79:5c:86:7e:d3:37:c7:a8:2a:9f:4e:ca:
92:07:9d:ba:f6:25:ac:23:6a:df:f2:8e:f6:e2:bc:
5b:79:0e:fd:8f:1f:3a:16:64:b2:8f:fa:55:3b:89:
1f:1b:72:48:1d:bb:e2:34:67:5b:55:f6:e6:52:10:
25:e9:0d:50:c6:29:d5:d3:c9:ef:4f:24:67:29:af:
67:4f:e3:db:0b:71:c6:b0:b4:7f:91:28:73:27:68:
ad:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:FB:BC:17:31:46:E5:6F:04:9E:5E:97:8A:08:8B:C1:65:15:63:8E
X509v3 Authority Key Identifier:
keyid:91:DD:0E:48:D9:01:1A:DF:37:66:65:AD:4D:62:CF:31:CE:63:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:7d:b2:77:2c:aa:d9:d7:d7:6f:28:6a:af:fc:86:00:47:d7:
6a:11:5f:13:52:8c:4a:e1:cc:b8:dd:99:40:1d:8f:f3:0e:4f:
80:e0:50:dc:07:72:47:dc:1c:e5:4e:cd:fe:0b:f6:55:f1:58:
99:65:d6:fc:1e:cb:e7:7d:79:e5:2b:9b:62:19:54:f0:06:da:
96:52:5f:fe:3b:2a:8d:e2:5d:7c:95:51:d6:b0:6a:04:b6:2c:
2c:cc:23:84:ad:b0:19:01:2a:8d:ab:90:4b:f4:e5:15:7a:a9:
0e:ee:5a:28:ae:b6:97:1d:24:8a:4a:cd:36:52:45:cd:9f:a4:
a7:2a:a2:7e:5a:6a:f5:7b:2c:09:de:a6:94:92:f1:1f:0d:bd:
58:a4:db:44:ac:33:35:10:ba:c4:b6:98:a3:29:29:b3:f1:6e:
8c:43:ce:d9:e6:d1:1a:5c:7b:c6:46:e2:ac:d5:45:e2:af:6e:
49:38:f2:3d:bb:fb:02:7b:bd:89:78:d1:34:85:98:9e:f5:46:
df:9a:ba:cd:a2:01:22:31:b2:9c:f4:5e:ae:7e:29:4d:a2:e3:
e9:d1:58:08:b4:3f:54:73:3c:90:79:7f:52:db:28:fb:49:8f:
e3:40:d7:70:2a:20:c2:bb:c6:52:75:5d:c2:ba:99:42:28:94:
96:4d:3a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:45:46 2024 by rpki-client on console-ams.rpki-client.org