Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json)
Hash identifier: 38oJdSbfagCFyEItxSNgLxvetxv9FOycFQEdnAP91A8=
Subject key identifier: 6F:9D:13:EF:CA:E3:24:50:E3:BC:41:68:6F:E9:A5:5C:E9:77:EE:63
Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Certificate serial: 0191FB22D5C300FA6FA749D94A556046E043
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
Manifest number: A5
Signing time: Mon 16 Sep 2024 14:00:49 +0000
Manifest this update: Mon 16 Sep 2024 14:00:49 +0000
Manifest next update: Tue 17 Sep 2024 14:00:49 +0000
Files and hashes: 1: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: kcr5aCYf6eVZXrbVh5n32GtySmlLwtBjPNruGP0Aj8o=)
2: LUrdHzgS_l7_WngQRohJ8cfyZLU.roa (hash: YtI+3yX+mtgRv4ToNHxHVZ2z3gKS8ImseWRP9Kb2J/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:22:d5:c3:00:fa:6f:a7:49:d9:4a:55:60:46:e0:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Validity
Not Before: Sep 16 14:00:49 2024 GMT
Not After : Sep 17 14:00:49 2024 GMT
Subject: CN=6f9d13efcae32450e3bc41686fe9a55ce977ee63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:66:f9:46:c1:f8:b8:0f:d1:91:4e:4e:9e:1d:
60:b5:45:03:1d:fc:a6:70:ce:c5:4d:20:4c:b7:92:
a0:62:41:56:92:c8:2a:cd:cb:ea:16:d1:9e:8b:81:
d7:2b:78:13:48:12:8f:f0:5d:fb:47:ab:80:0e:d9:
e6:9f:3a:66:eb:42:cb:03:39:d7:e0:e0:40:da:b5:
4a:43:1e:8d:2a:0f:54:d8:29:23:82:8a:4c:e0:92:
4f:04:0b:28:2a:7a:99:9a:06:92:3e:1e:13:06:c4:
14:27:7d:10:e8:f5:6d:21:9d:c4:ab:e6:c8:1b:f7:
5f:d1:16:54:5d:3c:2c:d8:50:13:c0:fa:b7:e5:0d:
42:72:7c:92:d8:0a:c6:17:73:c4:4d:ea:fe:ca:64:
53:22:2c:ef:f6:cb:2e:c8:69:57:fa:23:b2:82:14:
62:fd:dd:01:31:11:7d:ec:9d:f8:f3:03:a4:bf:4a:
ac:ea:15:86:6c:0c:87:9c:0d:0c:a0:57:83:f5:6f:
92:df:2a:f0:e7:f2:6d:eb:f4:b5:61:0c:cc:f6:2a:
1f:85:ec:28:76:be:69:1c:3f:81:48:0b:66:f4:f8:
06:98:a6:8a:c1:57:46:1f:6a:d0:d1:bf:c1:9b:c3:
36:f4:69:fa:33:9f:01:52:2a:61:56:17:8b:0c:d5:
03:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9D:13:EF:CA:E3:24:50:E3:BC:41:68:6F:E9:A5:5C:E9:77:EE:63
X509v3 Authority Key Identifier:
keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:56:bb:94:6d:8c:fe:d6:b3:da:14:8e:99:c0:bf:b3:89:b8:
45:8a:16:2f:56:2b:1e:84:7d:47:ae:9e:b6:cd:35:aa:34:43:
c9:d0:7f:06:31:6a:62:e3:86:d3:db:82:14:ad:90:24:68:07:
ce:38:60:8c:58:be:08:bd:1f:3f:72:65:fd:0c:25:17:ef:fd:
36:41:87:d2:8f:1d:77:f2:06:33:6e:90:a2:46:19:af:00:a8:
93:f4:55:21:28:04:1e:45:12:9e:07:d8:8d:89:ec:9d:38:e6:
1a:65:4c:2e:8d:85:15:07:a2:6a:5c:44:ee:a0:1e:fa:e3:df:
49:57:93:28:8f:77:65:8a:9a:27:43:41:28:e0:fa:86:6c:3a:
46:50:e0:75:e3:ea:3b:07:b3:e9:c6:3a:3d:09:ec:1a:7b:75:
3b:f9:07:88:e7:b7:c0:e9:b1:1f:fb:f1:07:81:45:7e:b0:1d:
ff:4c:4e:e7:00:d6:aa:30:54:37:13:55:48:cb:9e:b0:98:06:
aa:83:a2:47:b9:46:19:1b:37:85:78:d3:a9:10:ca:b6:4a:32:
ca:7b:09:6c:e9:51:c0:f5:62:18:e2:cd:21:d9:1e:c3:a3:b8:
37:d0:c5:3f:cf:ed:99:47:cd:80:df:49:cf:59:16:23:eb:ea:
76:3c:d0:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:17:32 2024 by rpki-client on console-ams.rpki-client.org