Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: 50m8MPFWPpOWQfuLdjHMLP/u5o65FmLmTBCVZ4JaGVo=
Subject key identifier: 7E:9C:AA:9B:9F:8A:8F:0A:52:72:64:61:F7:2A:59:C3:B9:01:19:64
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 018F96845A23E0E9089D442CE612419EBC84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0814
Signing time: Mon 20 May 2024 15:00:06 +0000
Manifest this update: Mon 20 May 2024 15:00:06 +0000
Manifest next update: Tue 21 May 2024 15:00:06 +0000
Files and hashes: 1: BXIARJK2zmZTWQKley8453UWGds.roa (hash: jmjmHE+H+KBFnKr/m/WyIQEyfrjEmxVbI//6dLCbosU=)
2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: KpT9WioMenv7H+3rF2k/a4V8+2dpfzip067c1UzHWqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:96:84:5a:23:e0:e9:08:9d:44:2c:e6:12:41:9e:bc:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: May 20 15:00:06 2024 GMT
Not After : May 21 15:00:06 2024 GMT
Subject: CN=7e9caa9b9f8a8f0a52726461f72a59c3b9011964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f6:d3:77:be:25:1f:79:20:19:1e:be:8d:39:
6e:a2:81:9b:46:2a:39:b9:ff:43:e7:a5:09:b8:c8:
3c:a5:2e:70:a4:02:42:29:90:f3:08:e1:70:72:d9:
fc:92:48:c0:05:d8:1d:41:cf:2f:88:c0:7e:e1:4b:
27:7e:df:02:a0:5f:e1:f1:25:c3:e1:55:b4:a8:0f:
b1:b4:99:53:06:f0:c3:bf:8b:aa:8f:b1:be:d5:d3:
a6:98:89:24:dd:e4:56:2f:f4:69:ef:3f:fc:91:d0:
7b:cb:e2:af:f7:5a:53:16:c6:5f:4a:56:e5:e0:c9:
d8:6e:0a:31:1d:34:1d:16:6d:f7:c1:88:e8:ee:1b:
01:c7:6d:8d:a4:2d:41:c0:12:b0:41:d4:85:57:46:
18:8e:ef:df:61:6d:31:33:cb:d5:a2:8d:fe:77:c7:
bb:c5:68:a4:7e:d1:fc:67:d3:68:4e:45:05:fa:42:
38:25:f4:e5:ea:e4:e3:1e:c6:58:5d:56:99:7a:57:
63:c1:1b:0f:51:58:42:8d:4f:fb:c5:31:27:eb:61:
1a:23:17:4b:89:c1:76:97:b8:ee:70:c0:f7:9c:65:
28:c7:b6:32:9b:bb:8a:08:d9:e0:bb:8d:51:02:8d:
f0:c9:08:89:6a:3f:f0:e7:df:37:88:66:d0:37:be:
de:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9C:AA:9B:9F:8A:8F:0A:52:72:64:61:F7:2A:59:C3:B9:01:19:64
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:7c:94:a6:67:61:4a:4e:3e:53:76:25:b6:24:b8:84:0f:09:
54:09:be:a8:9a:38:63:93:79:1a:f3:36:0a:ec:b2:55:12:10:
b3:a3:f5:c5:ae:90:36:80:19:14:ec:e6:ed:33:3b:d2:9c:f4:
24:c7:2a:47:e4:dd:6f:03:17:88:9c:ef:bf:75:54:86:76:30:
8a:2e:d4:50:89:8c:ca:c8:1f:27:46:f2:7f:b9:72:52:22:76:
25:91:ca:56:a9:1a:66:9f:43:0f:8b:1c:d2:59:de:22:8b:53:
ee:d1:56:31:e8:0b:85:f0:56:c6:f2:52:94:c2:c1:2e:4e:aa:
40:c8:84:50:3d:db:74:5a:93:45:79:80:f5:6c:0f:d2:b3:3b:
c4:dc:b3:32:43:65:35:8e:85:31:2a:09:4d:88:57:33:78:ed:
5a:61:ef:6d:04:9d:c1:f5:f7:2f:67:d3:e5:ef:60:30:89:d0:
c7:15:de:20:5f:d6:a4:0b:80:a0:8a:54:20:68:6e:ab:be:8d:
6e:f9:7e:32:d4:40:06:83:14:78:8c:9d:bd:52:a7:7d:ad:a3:
a5:0c:1f:e3:d9:69:93:e9:99:50:4a:16:78:1a:51:2b:c9:07:
99:9c:cd:6a:a7:fe:fe:c8:53:7a:4d:61:50:b1:dd:9b:c0:0a:
fc:88:c6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 17:54:55 2024 by rpki-client on console-ams.rpki-client.org