Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
File: KNX3dyLGFlf4HJ965JznKbWA9ng.mft (raw, json)
Hash identifier: PNPfRsa8nK0fWOzNm0izNLUIzjyKyiwEeFtSB4k33i8=
Subject key identifier: FA:50:74:04:6B:39:D8:7D:F4:2B:EF:EC:D7:E3:0C:BD:23:F0:C3:D1
Authority key identifier: 28:D5:F7:77:22:C6:16:57:F8:1C:9F:7A:E4:9C:E7:29:B5:80:F6:78
Certificate issuer: /CN=28d5f77722c61657f81c9f7ae49ce729b580f678
Certificate serial: 018F87498EF51760B94FD721E4C997E2ECE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
Manifest number: 1175
Signing time: Fri 17 May 2024 16:01:35 +0000
Manifest this update: Fri 17 May 2024 16:01:35 +0000
Manifest next update: Sat 18 May 2024 16:01:35 +0000
Files and hashes: 1: KNX3dyLGFlf4HJ965JznKbWA9ng.crl (hash: 0e5U0yRVNlofVBwuZI+4Trogr3C2ZfxLwlxx9vKq1uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:8e:f5:17:60:b9:4f:d7:21:e4:c9:97:e2:ec:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28d5f77722c61657f81c9f7ae49ce729b580f678
Validity
Not Before: May 17 16:01:35 2024 GMT
Not After : May 18 16:01:35 2024 GMT
Subject: CN=fa5074046b39d87df42befecd7e30cbd23f0c3d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:ff:88:65:80:36:8c:ce:07:a0:4a:2c:3e:
d7:39:90:b6:27:83:51:69:17:0e:ec:24:cf:e9:bc:
24:00:87:0a:be:fb:97:e5:ce:73:fe:e4:6a:69:7b:
13:a6:44:6f:aa:8e:d3:07:c0:f7:82:c5:c5:22:9c:
6e:23:11:e8:3c:82:2c:ca:5d:57:42:07:85:a8:1c:
7d:af:40:62:72:e4:a6:e0:8a:9f:a4:3a:68:91:3c:
d8:9a:6a:fb:f2:4e:c6:74:50:b2:8f:09:2a:9c:b2:
5b:15:ac:b6:67:f4:ee:4e:56:87:85:a0:31:df:f9:
89:82:83:78:b6:c3:db:a5:00:63:16:62:39:b1:3e:
a6:01:f7:5f:2f:55:c3:f8:87:9b:b0:0f:7e:37:a2:
c3:39:68:cd:58:18:5d:28:ca:ca:ea:41:b9:38:7f:
1c:0f:ff:72:19:d3:04:72:ef:b8:60:87:e3:87:34:
4a:64:97:7f:04:e6:ff:f3:47:b0:e5:64:3c:79:87:
2d:a1:07:24:f7:dc:6f:f6:a5:5b:e1:41:46:9a:ba:
2f:4c:d3:37:8b:30:a0:56:99:75:6b:6f:4c:0d:22:
be:5f:eb:b9:3d:d4:3e:5c:1c:23:5f:54:1c:14:5e:
13:b2:f7:41:8e:b7:f6:c1:6d:ca:69:99:9a:6c:2f:
e9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:50:74:04:6B:39:D8:7D:F4:2B:EF:EC:D7:E3:0C:BD:23:F0:C3:D1
X509v3 Authority Key Identifier:
keyid:28:D5:F7:77:22:C6:16:57:F8:1C:9F:7A:E4:9C:E7:29:B5:80:F6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:71:ce:e6:00:a9:17:ae:99:89:78:1a:f6:c5:84:0a:76:f0:
c1:68:9a:b8:fe:f7:6d:f1:21:36:86:19:3f:68:91:1a:4e:7b:
55:ed:7c:0b:19:06:73:38:e0:06:f5:47:dc:56:b1:b2:a0:aa:
9e:8a:0d:74:99:ad:fa:fe:6a:fe:bd:64:be:1b:bc:ce:1b:a9:
4d:bd:6a:dd:71:86:57:5e:b7:16:95:63:57:37:4d:e0:b0:4e:
7f:70:b4:a9:fe:e6:65:77:20:e4:98:9b:c6:5b:0b:7e:46:0c:
c1:73:27:78:70:33:b0:a7:31:9e:66:52:04:3f:29:bd:47:64:
0b:d3:58:f2:a8:d9:c7:14:c4:0c:11:b9:e1:8c:8c:04:0e:b9:
e9:89:33:2e:3d:c3:7f:f3:c9:26:89:82:f0:04:30:9e:81:a3:
c8:f4:40:58:dc:f2:90:57:f2:0f:3b:d6:b3:e2:78:ee:1e:00:
55:de:a4:45:1a:0b:4c:10:66:d8:44:c5:82:ed:02:bd:a4:ba:
a4:06:60:f3:86:14:6e:c2:ea:66:41:f5:ac:78:02:f4:be:1c:
11:63:6a:1f:20:8e:f3:93:0e:f0:30:48:98:0b:f7:17:a7:80:
ad:06:0c:50:fd:27:19:25:dc:12:15:56:85:4f:af:c4:58:38:
99:88:de:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:05:51 2024 by rpki-client on console-ams.rpki-client.org