Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
File: KVZYS3DOhHwam0AFSLFNsDG-3_I.mft (raw, json)
Hash identifier: Kg9GYJiWhBPo36JZoB4OKtH15L4cgCfNWBz19I252bo=
Subject key identifier: 96:33:10:CA:85:1E:C8:DA:69:8F:FE:3C:38:FE:EA:72:97:11:62:F7
Authority key identifier: 29:56:58:4B:70:CE:84:7C:1A:9B:40:05:48:B1:4D:B0:31:BE:DF:F2
Certificate issuer: /CN=2956584b70ce847c1a9b400548b14db031bedff2
Certificate serial: 018F85FECFFD7B8A3757E7AAF7DF9130D588
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
Manifest number: 0458
Signing time: Fri 17 May 2024 10:00:19 +0000
Manifest this update: Fri 17 May 2024 10:00:19 +0000
Manifest next update: Sat 18 May 2024 10:00:19 +0000
Files and hashes: 1: 2tpHWzCwMZ38mQ-VM1cE2R0QXi4.roa (hash: 7QkrRRfYJ+ZiX3aOJO1rNHu++xUZatE+ofPl5J+eWlk=)
2: KVZYS3DOhHwam0AFSLFNsDG-3_I.crl (hash: Jn2wSLuEid8lJftspxWolvs3ESvm7RBIUQNQrF2OT9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 10:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:fe:cf:fd:7b:8a:37:57:e7:aa:f7:df:91:30:d5:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2956584b70ce847c1a9b400548b14db031bedff2
Validity
Not Before: May 17 10:00:19 2024 GMT
Not After : May 18 10:00:19 2024 GMT
Subject: CN=963310ca851ec8da698ffe3c38feea72971162f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f9:0c:8f:4e:f9:1f:39:3c:82:ff:63:dc:b7:
e9:a5:7e:f3:bf:50:f8:13:13:02:59:13:3d:41:ee:
3c:b5:58:75:3b:44:70:2c:c2:19:f5:0e:72:0c:7f:
27:b7:a6:94:49:81:83:6a:d7:8c:d1:48:0f:8d:c7:
96:c9:7b:2a:56:f0:4b:25:38:86:6f:b9:51:3c:b1:
ec:96:e4:df:a8:72:f9:c4:14:bb:dc:fc:f5:08:0f:
05:2d:08:89:64:68:4f:7f:aa:23:77:43:49:30:b4:
a5:a2:65:3d:f8:c0:cd:4b:ad:83:d3:e6:11:c0:a0:
d5:2e:d7:6a:d0:30:f6:a9:81:1e:17:29:e4:a6:7f:
01:2b:64:79:ef:72:8a:dd:71:e4:fa:36:c5:b5:3a:
62:6d:2b:6c:2d:fd:f2:1c:a1:45:25:81:05:8e:4a:
75:3f:90:35:f3:f4:82:ee:64:df:8f:c8:c1:f7:bf:
e1:25:2d:02:6b:d2:93:52:3d:9c:cd:55:3e:72:bc:
19:98:c1:af:e9:fa:6b:8b:18:6a:0c:a2:b4:15:31:
55:7f:fc:30:7e:59:14:a6:81:bc:c0:90:c8:81:a7:
f1:25:fb:7c:73:b7:8a:ff:4a:f4:ac:11:cd:fe:b9:
70:27:7c:6c:fe:3a:d8:15:6f:42:f5:61:2b:08:00:
f9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:33:10:CA:85:1E:C8:DA:69:8F:FE:3C:38:FE:EA:72:97:11:62:F7
X509v3 Authority Key Identifier:
keyid:29:56:58:4B:70:CE:84:7C:1A:9B:40:05:48:B1:4D:B0:31:BE:DF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e4:56:62:4f:08:98:31:42:0a:04:8a:be:4e:8d:ae:8b:30:
42:b1:12:b8:46:19:04:b0:df:53:24:f7:4a:20:78:de:e6:be:
4f:23:d1:cf:16:b5:d6:ca:85:dc:38:1b:39:dd:dc:73:5e:c3:
19:2c:6f:c9:0a:c3:5e:dc:81:77:d2:47:3e:d3:09:05:a9:f2:
bd:6c:e7:69:8c:56:b9:8b:13:79:ef:29:b8:67:8e:fa:63:71:
68:27:4a:68:b7:ce:11:79:75:32:0c:92:7c:7a:f3:4a:20:8d:
12:51:3c:da:4f:c3:a3:20:ba:63:bf:bf:34:6e:4a:0c:1a:26:
8d:bc:fa:1d:90:a5:b5:95:60:0e:6b:78:ac:0b:07:8f:00:21:
4f:7d:92:31:3f:75:94:79:72:88:05:8f:d3:63:13:95:9e:62:
36:7a:9c:5e:6b:2d:84:a6:48:fc:53:bb:14:b9:cf:9f:7c:8a:
ad:f0:74:64:d9:18:39:9a:4f:3b:27:c1:b2:5f:b7:36:cd:ac:
23:58:87:6e:6c:5e:e1:47:db:b7:a8:b5:70:f0:a3:69:72:d4:
42:ac:71:89:ab:cb:50:ef:ad:9e:c0:33:13:c8:64:53:f3:63:
4f:24:7f:d8:9d:9f:19:02:e4:41:2f:5f:52:2b:82:54:61:2c:
68:b0:6b:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:44:01 2024 by rpki-client on console-fra.rpki-client.org