Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
File: khjNJev3TLGwBLAe5QVQP_8kbWE.mft (raw, json)
Hash identifier: CtQkPxbQ2hA0Ortm9IH2bjB4o6h2LGSgxYLG0WUlDhU=
Subject key identifier: 00:A0:EB:A1:B2:2A:D2:1B:BC:0D:61:F3:E6:AF:78:81:C4:25:F2:91
Authority key identifier: 92:18:CD:25:EB:F7:4C:B1:B0:04:B0:1E:E5:05:50:3F:FF:24:6D:61
Certificate issuer: /CN=9218cd25ebf74cb1b004b01ee505503fff246d61
Certificate serial: 01929CECF88952B264D8AB7CF6A0B3D89F0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
Manifest number: 013F
Signing time: Fri 18 Oct 2024 00:00:28 +0000
Manifest this update: Fri 18 Oct 2024 00:00:28 +0000
Manifest next update: Sat 19 Oct 2024 00:00:28 +0000
Files and hashes: 1: HyatT7_cHeXpYhaYKG-dkrS6fQA.roa (hash: Toh8kQm9SMWCtHXasCWphHJ2k3rzXbT5dpfS9257Wjg=)
2: khjNJev3TLGwBLAe5QVQP_8kbWE.crl (hash: O3LEncyTbwBhj9dxAu5lvXZDtZUConQaFDnZ8wxRFm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Oct 2024 16:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9c:ec:f8:89:52:b2:64:d8:ab:7c:f6:a0:b3:d8:9f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9218cd25ebf74cb1b004b01ee505503fff246d61
Validity
Not Before: Oct 18 00:00:28 2024 GMT
Not After : Oct 19 00:00:28 2024 GMT
Subject: CN=00a0eba1b22ad21bbc0d61f3e6af7881c425f291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dc:8d:5d:aa:67:97:0f:77:d9:ec:bf:b0:2d:
7e:aa:3c:c5:db:11:46:71:e5:85:b3:a0:cd:33:11:
15:9f:ed:7d:4a:ea:d2:f3:41:e6:9d:3a:7e:6d:ba:
bd:8e:a6:66:8f:88:de:05:46:4d:6a:4c:a9:fd:69:
73:d5:af:bd:9b:f8:b6:c9:cd:6b:1e:81:8f:91:35:
bb:fe:b5:e7:fd:0f:52:c9:36:be:df:fc:63:f1:29:
c5:56:e9:0b:06:83:56:60:37:43:27:63:4b:bc:86:
9e:85:7b:e7:d4:83:40:d4:ca:33:39:ed:34:43:bb:
bd:34:25:5f:ff:ac:d2:95:a3:30:83:8d:18:8a:02:
36:b1:32:d9:82:c0:45:d2:5c:ae:b5:0a:ed:bf:84:
d1:fd:42:01:34:8a:df:08:21:18:a3:19:73:c2:b7:
b1:54:32:c0:7b:5a:2f:68:5a:c0:6e:50:27:38:b6:
4c:d1:12:78:47:b0:81:05:a9:62:8c:7a:5f:a4:b3:
06:a4:cc:61:db:cb:fa:c6:f6:4e:8d:89:d3:71:bc:
19:30:8d:04:f7:1a:46:e8:e2:08:9f:de:d2:cf:ac:
f2:81:3e:c6:5b:ed:68:e9:14:8f:6d:75:6f:5c:dc:
ae:8f:14:64:d5:ab:24:7f:10:3c:15:eb:2e:aa:c6:
27:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A0:EB:A1:B2:2A:D2:1B:BC:0D:61:F3:E6:AF:78:81:C4:25:F2:91
X509v3 Authority Key Identifier:
keyid:92:18:CD:25:EB:F7:4C:B1:B0:04:B0:1E:E5:05:50:3F:FF:24:6D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:dd:71:f0:2f:be:8a:85:e2:1e:d3:92:3c:54:65:e6:a4:9f:
2b:4e:21:be:b0:06:a0:25:97:ed:b7:2a:ce:dc:a2:4f:9c:18:
4f:0d:ff:c9:41:df:4a:ae:5a:49:49:25:7c:66:b4:0f:ec:67:
e4:6a:bf:33:85:5c:93:3b:8d:df:41:00:f2:b5:69:ef:3c:3f:
bf:a6:ce:89:80:5d:d7:ff:ee:3c:f8:a8:aa:33:58:c0:c7:6d:
83:d7:3c:83:aa:f1:5d:e3:16:60:a1:f7:1a:61:42:34:0d:40:
18:f2:d1:7c:26:b6:1b:a9:2c:9a:f5:c0:f5:05:09:60:61:91:
d9:ff:19:e6:82:a7:48:50:0a:b8:ae:8d:19:69:25:d0:36:96:
6d:cf:d4:88:f2:cf:a3:ce:dc:8f:3e:20:ba:fc:1d:9b:73:3d:
c5:2d:fc:ec:52:9e:83:64:99:50:df:3c:ab:a0:8d:68:23:44:
f3:6e:5d:03:53:f4:35:42:64:45:46:85:df:ad:1f:a2:fe:3d:
f0:82:1d:c8:00:49:08:11:97:bd:14:f7:ba:54:71:88:c3:ad:
9a:29:9d:df:65:1e:d2:b7:1a:77:76:b0:45:80:50:24:bd:5e:
ab:74:5e:16:c1:ba:54:1b:7d:3c:d6:ce:da:e1:e4:93:4c:09:
46:02:90:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 01:48:35 2024 by rpki-client on console-ams.rpki-client.org