Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
File: KVZYS3DOhHwam0AFSLFNsDG-3_I.mft (raw, json)
Hash identifier: zVorilJAJYp2v+M2tRkfujKNJdBVQ8mSrSj51GMgwOA=
Subject key identifier: 5B:A9:DC:3F:6F:6D:ED:50:86:1C:75:48:28:3D:A0:9C:4D:FC:8F:AB
Authority key identifier: 29:56:58:4B:70:CE:84:7C:1A:9B:40:05:48:B1:4D:B0:31:BE:DF:F2
Certificate issuer: /CN=2956584b70ce847c1a9b400548b14db031bedff2
Certificate serial: 019351D041144BA8967EA33E75EAF9981F33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
Manifest number: 0652
Signing time: Fri 22 Nov 2024 03:00:22 +0000
Manifest this update: Fri 22 Nov 2024 03:00:22 +0000
Manifest next update: Sat 23 Nov 2024 03:00:22 +0000
Files and hashes: 1: KVZYS3DOhHwam0AFSLFNsDG-3_I.crl (hash: 4qb9Y0/iwxcFNpjm7e4LLnojuP3o9b1wZXxhkusIMDQ=)
2: bXgx8l_gJyZ7vQo8YBqUlMpa5MQ.roa (hash: pAfwoE/kzqpfvMGe8tbS+xHEUrQjp2YsKLVS2rm22uM=)
3: hPxlLLfCN7kTHwFbX64bbTQ0eFA.roa (hash: B2w1lj9kQUIjl+/dFg7yrcdECTFRTcbjHzK1R0GUv3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:d0:41:14:4b:a8:96:7e:a3:3e:75:ea:f9:98:1f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2956584b70ce847c1a9b400548b14db031bedff2
Validity
Not Before: Nov 22 03:00:22 2024 GMT
Not After : Nov 23 03:00:22 2024 GMT
Subject: CN=5ba9dc3f6f6ded50861c7548283da09c4dfc8fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2e:40:6a:41:53:8c:a8:c9:c6:3c:f9:65:dc:
ef:e6:2a:3a:1f:a7:53:59:b4:cf:95:7c:11:9c:ff:
ca:cb:46:e8:d3:0d:61:64:e0:94:2a:4e:42:ea:51:
0c:44:9a:51:96:dc:aa:3b:e7:c7:84:9c:db:ca:47:
f4:e0:ab:76:c2:d1:8a:b2:12:08:7a:9e:35:6c:18:
aa:8c:27:b6:5d:ac:f9:14:59:39:bd:7c:1e:d1:85:
3d:1e:0d:bc:f6:41:ca:57:7f:08:ef:58:87:67:d2:
98:b7:07:8f:a5:75:ed:77:b8:b9:82:27:d8:75:89:
bf:6f:74:82:f6:48:d5:ea:37:64:6c:45:bf:52:d4:
4d:5c:77:43:01:f7:c6:2d:e5:1b:93:51:81:75:be:
a1:bd:d2:c3:97:d6:85:96:c7:e9:26:84:18:0b:0e:
41:b2:1b:4a:04:6a:46:22:a6:66:14:ea:cd:23:bc:
6a:d4:a9:b3:9a:64:53:cb:98:46:46:dd:70:3b:9e:
d2:0b:66:93:b5:98:b8:2c:12:32:9b:0c:76:ca:c2:
be:db:79:56:e8:06:59:46:fe:35:2b:b8:22:d8:08:
88:22:f8:35:9a:55:d1:d3:70:2a:9a:a7:ed:84:2b:
7c:8b:df:d1:4e:2b:4a:39:53:c0:81:32:6e:21:48:
15:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A9:DC:3F:6F:6D:ED:50:86:1C:75:48:28:3D:A0:9C:4D:FC:8F:AB
X509v3 Authority Key Identifier:
keyid:29:56:58:4B:70:CE:84:7C:1A:9B:40:05:48:B1:4D:B0:31:BE:DF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:68:5d:28:dd:7b:8c:48:25:6b:32:94:20:66:48:a5:d9:cf:
11:8f:67:a8:fd:81:d8:94:c2:a1:65:d7:14:b9:99:90:d2:f6:
1a:9a:87:5c:67:7e:37:99:62:71:10:b0:f8:06:bd:1c:19:6a:
16:03:fe:6e:34:68:50:8c:49:5e:29:1b:2d:4b:d1:82:79:9a:
f9:3b:a0:9c:1c:02:54:3b:25:46:72:d8:46:62:5a:74:d4:76:
fd:a1:05:1f:ac:56:2f:dd:a5:32:6b:fa:8c:23:f2:b6:ca:13:
c4:63:1a:d0:c7:fc:1b:38:27:01:b5:53:30:7e:ef:98:71:47:
d2:02:73:d6:6d:ba:88:0d:e9:08:97:29:63:8a:99:d1:6f:ea:
bc:75:a3:c4:0c:c8:d2:58:cb:3b:af:3c:84:82:cc:8d:db:d0:
05:4c:ec:1c:95:f8:d7:d6:ad:f2:0c:cf:b2:3d:47:74:bd:99:
21:ff:93:3f:65:39:f0:73:0c:aa:e5:20:29:6d:c7:97:dc:6b:
76:3e:4b:96:de:b9:4b:d2:b9:b3:40:89:85:97:7a:99:23:5d:
c6:48:38:dc:c5:84:df:27:8c:8f:fd:f1:92:0e:01:05:52:1d:
1f:2a:5f:31:9a:76:ea:1c:37:9b:f5:c0:98:5e:71:9e:be:12:
a3:f6:97:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:54:50 2024 by rpki-client on console-ams.rpki-client.org