Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: YCua5hWgF4uQs/h0KmH5CRkypAPwmbLZcoB3baKqqZM=
Subject key identifier: 17:00:3B:61:99:E4:9D:50:59:05:9D:C4:E1:03:FB:DF:3D:A6:F0:C2
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 0194BABB4E0734E89E50454F544DF69C2BB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 13A6
Signing time: Fri 31 Jan 2025 05:00:24 +0000
Manifest this update: Fri 31 Jan 2025 05:00:24 +0000
Manifest next update: Sat 01 Feb 2025 05:00:24 +0000
Files and hashes: 1: CgAYwcYqjGUwI5cuY-inYF9ViL4.roa (hash: DG9lxho2Qdp+1bj1jPdlMwaM6onKyvGHv7zkZeOCV70=)
2: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: 4MPb1lh4qkyIbzK+WtUi1YafixO58oNtnclVMStD0i4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:4e:07:34:e8:9e:50:45:4f:54:4d:f6:9c:2b:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Jan 31 05:00:24 2025 GMT
Not After : Feb 1 05:00:24 2025 GMT
Subject: CN=17003b6199e49d5059059dc4e103fbdf3da6f0c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4c:2c:dd:ab:31:85:13:1b:ff:3a:c5:18:f3:
9d:39:9d:dc:fa:52:98:6f:90:ec:3d:62:d8:d2:4f:
50:61:27:be:d5:82:50:d0:17:43:f7:6b:19:65:ce:
96:80:8b:ea:db:3e:25:3d:27:8c:5f:94:86:94:3f:
df:bf:50:3e:58:37:7d:10:d2:4b:ff:2a:5d:63:16:
75:81:e7:c1:0e:e8:57:ed:4c:5a:c3:e3:ad:7c:0d:
84:1f:21:2b:e1:57:26:bd:39:e1:a7:4c:e3:33:89:
60:8e:96:71:4c:5b:5f:e2:5f:3d:ab:b6:b2:de:a2:
08:ad:08:38:1a:a0:49:3d:3f:43:33:17:a6:40:10:
a8:d7:b9:bc:96:cb:6b:69:65:2a:89:38:03:dd:c3:
a7:3c:8f:2c:ee:99:2e:f5:ef:27:34:c6:49:9d:2f:
c5:bb:8a:f6:58:54:99:1e:8a:d7:83:fb:6d:84:dd:
cc:64:70:68:75:0c:9b:40:c6:b6:20:8b:05:aa:ca:
03:bf:b0:8f:49:5e:c8:5b:73:46:25:5b:3a:2b:a7:
c8:8e:5c:2b:ca:18:38:27:a4:25:c9:75:ba:be:05:
5d:5b:2e:9e:ce:e3:1b:e5:f9:10:34:6c:9f:35:0e:
ba:2a:66:93:56:b2:7f:86:55:c0:75:9e:6f:d3:6f:
41:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:00:3B:61:99:E4:9D:50:59:05:9D:C4:E1:03:FB:DF:3D:A6:F0:C2
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:83:dd:59:4b:a6:1b:ca:e4:3a:c6:12:f8:01:c6:26:fd:33:
9b:09:f3:ec:5c:72:64:bd:b1:18:a5:f1:68:e6:6e:e9:ae:67:
cc:bc:59:a9:fc:fa:08:1b:7b:c4:af:85:c9:2e:d5:bd:c6:56:
9d:7d:da:e1:c1:e9:36:e9:ab:96:a3:ed:c4:72:3a:ef:ce:5b:
10:6f:0f:44:5b:ec:6c:61:fb:ee:4f:1f:38:08:51:a6:31:5d:
d4:81:ed:d3:c5:4b:68:ae:a7:3a:ce:fe:9b:42:7a:51:e2:82:
9e:69:1d:5d:9b:9e:f4:09:4a:3a:06:d8:c0:7f:e5:1f:df:bf:
50:1c:71:66:a8:b1:1f:ab:e3:68:41:22:31:ce:48:52:af:8a:
fa:11:6a:bd:fa:df:75:28:d5:79:85:b9:02:e5:7d:9c:50:15:
ec:c9:ca:5e:86:5b:d0:0f:b7:ad:0e:4f:c7:0b:5f:fb:0b:15:
02:7b:24:70:f9:7d:4f:ca:82:26:aa:f7:95:12:ea:3a:7d:81:
6a:ef:09:69:cd:98:f9:f7:f6:6c:6d:a5:14:31:bb:d9:67:70:
31:3e:bc:c2:1e:5b:0c:d9:15:43:3e:06:36:50:88:ff:25:29:
0b:10:75:f7:f0:d7:27:04:e2:0d:51:4f:52:92:40:36:92:7f:
b3:9e:c9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:43 2025 by rpki-client on console-fra.rpki-client.org