Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: ce1U2Rbvj0bU4TKMd43g9fjlVtqqOai0h7q+bnSlsm0=
Subject key identifier: EE:04:49:B5:33:DD:BA:A2:CF:C8:A9:34:05:C7:09:FE:E1:DA:2F:A7
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 01938C647F5AAFE34A25B1555F14C799AF97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0A21
Signing time: Tue 03 Dec 2024 12:00:16 +0000
Manifest this update: Tue 03 Dec 2024 12:00:16 +0000
Manifest next update: Wed 04 Dec 2024 12:00:16 +0000
Files and hashes: 1: BXIARJK2zmZTWQKley8453UWGds.roa (hash: jmjmHE+H+KBFnKr/m/WyIQEyfrjEmxVbI//6dLCbosU=)
2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: yl4mZP9nhrYU291iaqoFD+kqeWzfS+tY6GDTFLKNIGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:64:7f:5a:af:e3:4a:25:b1:55:5f:14:c7:99:af:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: Dec 3 12:00:16 2024 GMT
Not After : Dec 4 12:00:16 2024 GMT
Subject: CN=ee0449b533ddbaa2cfc8a93405c709fee1da2fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:86:86:2d:67:67:3e:67:31:85:c3:63:0a:31:
ad:c7:e9:10:3e:f2:46:2c:83:3d:76:f7:7a:f9:5b:
2e:29:8b:f0:b9:3c:d3:68:c8:15:44:cb:44:c2:8d:
2d:7b:e2:b3:c8:cd:df:e9:bf:a6:9d:2d:d8:1b:3f:
25:81:4a:e3:dd:eb:04:d7:a3:f1:68:40:f3:aa:bf:
53:b1:7f:ee:94:2c:36:88:7a:a0:ca:98:49:e5:59:
93:2d:a8:aa:4e:62:e1:0c:bf:e8:02:76:41:74:b5:
0e:4c:d1:f0:63:29:82:58:3d:ab:e5:a5:91:27:3b:
70:6e:a3:34:8d:3f:c5:17:8d:20:ad:ce:de:aa:e1:
f0:ee:2d:b7:32:20:ce:21:fb:ca:78:57:47:17:82:
49:dc:b2:f1:f2:55:a2:cb:f7:8a:36:03:36:26:1d:
9b:99:b8:4c:37:46:1f:a9:eb:63:6d:bb:33:ba:d9:
13:ee:57:58:e0:c8:7a:b4:2d:fa:0c:05:eb:34:c4:
61:08:b0:6c:cc:3b:23:0f:29:64:46:54:27:a3:b7:
2b:f6:5d:d2:d1:b7:60:ab:af:c6:41:b5:5d:40:b7:
a2:04:26:03:ef:6a:91:6c:36:74:45:08:09:bf:2a:
f9:e4:a7:91:d1:24:de:40:85:8d:e9:c6:34:0f:43:
f1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:04:49:B5:33:DD:BA:A2:CF:C8:A9:34:05:C7:09:FE:E1:DA:2F:A7
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:a7:08:83:9d:a1:6d:5f:b1:96:1f:06:d0:f7:7e:55:12:89:
77:70:52:d1:73:62:09:f3:da:fb:40:af:53:8f:e1:fa:82:f8:
6d:2e:06:25:39:71:3d:b3:c4:54:3a:4a:1d:f4:ab:e1:65:97:
2e:f1:01:77:1c:82:86:a9:02:28:e8:bb:2a:64:c5:4d:3c:09:
b3:c4:db:92:47:cb:9f:0e:60:8a:de:d9:4c:75:a2:e4:fa:43:
a4:cb:f7:ac:00:73:24:da:86:ba:66:93:65:aa:32:e6:36:19:
d0:02:db:6c:46:85:43:8e:bb:72:db:36:df:b6:c9:48:99:ca:
27:bb:93:34:aa:f4:6d:29:2d:4a:49:9b:16:bf:0f:6d:75:35:
53:72:ca:64:85:22:0a:80:db:48:1a:39:32:f8:59:c0:44:2c:
f1:7f:c3:a8:9d:ba:6b:14:0f:5e:46:99:43:da:59:d0:a8:c8:
98:be:30:3d:6e:08:11:b7:77:ed:5a:bd:32:3e:ac:45:02:4a:
21:59:9e:3a:b7:57:fc:44:92:e5:c0:44:c9:db:74:39:f7:d8:
fd:cc:be:a3:48:c6:ff:2f:7d:c6:8d:3a:3c:52:99:32:de:86:
6c:a5:6b:e9:f6:10:37:fb:7d:87:e0:0f:3c:62:0f:85:0a:08:
56:c6:a1:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 14:44:18 2024 by rpki-client on console-fra.rpki-client.org