Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
File: KNX3dyLGFlf4HJ965JznKbWA9ng.mft (raw, json)
Hash identifier: GtfU5cob61pe7Y1BH26JmXxeXpINsEzKAB6T5QPQW9U=
Subject key identifier: 56:B8:F4:CC:EE:34:A5:39:4B:F9:92:AE:83:39:06:57:62:D4:EC:59
Authority key identifier: 28:D5:F7:77:22:C6:16:57:F8:1C:9F:7A:E4:9C:E7:29:B5:80:F6:78
Certificate issuer: /CN=28d5f77722c61657f81c9f7ae49ce729b580f678
Certificate serial: 0193549BFB825EB89D852E77F625AA42CF06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
Manifest number: 136D
Signing time: Fri 22 Nov 2024 16:02:08 +0000
Manifest this update: Fri 22 Nov 2024 16:02:08 +0000
Manifest next update: Sat 23 Nov 2024 16:02:08 +0000
Files and hashes: 1: KNX3dyLGFlf4HJ965JznKbWA9ng.crl (hash: ogbw3KmMM3wFi6DViVuXZKmqMcrLG0YdYI+SqDpt28M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:fb:82:5e:b8:9d:85:2e:77:f6:25:aa:42:cf:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28d5f77722c61657f81c9f7ae49ce729b580f678
Validity
Not Before: Nov 22 16:02:08 2024 GMT
Not After : Nov 23 16:02:08 2024 GMT
Subject: CN=56b8f4ccee34a5394bf992ae8339065762d4ec59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a0:20:02:fc:51:8f:b3:15:03:0d:e4:d4:8a:
05:8e:e9:37:c8:a7:ba:08:17:10:7d:60:28:d7:6a:
4f:26:a9:46:26:91:ef:31:50:ae:7d:ab:ad:00:23:
10:ab:f3:a6:ef:26:a1:e9:35:07:d5:5d:e5:f5:31:
55:96:82:32:73:66:d8:c9:dc:03:03:64:5d:1c:40:
96:82:26:82:72:56:4d:ef:b0:5c:ba:93:e7:f0:b6:
c3:a1:7e:7b:69:42:8e:aa:ab:50:b7:56:8c:5f:7a:
38:43:d8:6e:82:1d:8f:64:92:4e:5b:6f:04:8b:20:
76:46:6c:b3:d0:51:cb:00:3e:25:76:46:d0:88:83:
a8:8a:36:d3:31:3a:3f:ed:9e:c6:bf:17:16:42:1b:
db:22:c7:7a:a0:ac:ac:d7:44:52:72:57:e4:9e:07:
b4:8c:5c:74:68:e6:a6:b2:a1:71:a9:4a:d5:05:26:
c0:a1:d3:e6:48:72:56:3f:e8:8f:c5:de:3c:dd:0a:
da:1a:1b:bc:a3:87:a4:e1:27:28:9d:4c:0e:5d:59:
d1:8e:78:2f:07:0f:14:ef:bd:c3:4a:8c:85:3d:af:
c9:04:44:3b:21:1e:3b:97:f1:62:f4:26:ff:78:16:
6d:98:f4:8b:90:2f:9a:f3:2c:cb:7e:e4:7d:d3:39:
dd:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B8:F4:CC:EE:34:A5:39:4B:F9:92:AE:83:39:06:57:62:D4:EC:59
X509v3 Authority Key Identifier:
keyid:28:D5:F7:77:22:C6:16:57:F8:1C:9F:7A:E4:9C:E7:29:B5:80:F6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:2f:d2:d8:95:ff:b1:04:64:b5:99:8e:48:d5:8a:b3:1e:c7:
57:cd:ca:65:ab:a1:f5:87:5e:a6:87:46:e5:7e:4a:00:ff:07:
7c:49:7e:81:c4:21:07:c8:4e:c7:60:26:49:e8:0e:66:f6:42:
d0:40:c8:2a:94:59:a9:92:89:26:e0:04:d4:e1:1e:1e:c7:f1:
2a:13:a7:00:a4:88:a0:ca:5f:9d:a9:4f:cc:15:4e:ed:6f:25:
d9:f1:78:64:80:7d:91:4c:2d:cc:ca:b5:cf:5b:9d:a7:b8:fc:
bd:af:13:69:9e:5d:eb:0f:cf:bd:f1:c5:48:8f:26:3d:9a:f6:
28:43:99:d3:fb:be:2f:ea:85:44:98:ce:e0:a0:85:86:27:8d:
60:5e:94:98:dd:63:01:84:16:1e:22:70:6b:2f:72:d4:2d:50:
c5:3b:91:e8:a4:93:6b:d0:2b:98:1d:bb:d9:e1:74:08:a7:c9:
86:8f:b4:80:7a:40:82:1d:b6:58:dc:08:14:6a:1d:27:c8:90:
e3:38:48:09:03:75:83:f2:bf:e8:b2:37:34:77:c7:d2:fa:3b:
c6:9f:2f:16:d2:1d:ec:ff:ed:f2:d1:a2:4a:c6:59:57:0c:29:
38:9f:c2:e2:35:1a:73:f1:29:82:db:aa:e9:2c:ac:9d:ee:19:
23:c5:e7:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:13:30 2024 by rpki-client on console-fra.rpki-client.org