Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
File: CKkhe9gwYnyz5lfAuQY8giNN28s.mft (raw, json)
Hash identifier: ramWIKuEcoO7h+eWVhmcejkWwKG4pqbhl4a9uisX5Ic=
Subject key identifier: 37:3F:45:0C:7D:78:BA:0E:DD:ED:F6:33:07:5B:3D:71:37:D1:83:B0
Authority key identifier: 08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
Certificate issuer: /CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Certificate serial: 0193598A3837F051DE323B4C3349F08A9172
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
Manifest number: 1375
Signing time: Sat 23 Nov 2024 15:00:50 +0000
Manifest this update: Sat 23 Nov 2024 15:00:50 +0000
Manifest next update: Sun 24 Nov 2024 15:00:50 +0000
Files and hashes: 1: CKkhe9gwYnyz5lfAuQY8giNN28s.crl (hash: Exkgga7v90vo1jG10uvjwOVrUWekkKi3kSxk05mdUWo=)
2: apILGtQflvaLcBidaVY8RkDjP8M.roa (hash: 6v45IYxoAxgdE3XcrDJdNAI6e1uPTMz7j1Gkkd6Nr6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:8a:38:37:f0:51:de:32:3b:4c:33:49:f0:8a:91:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Validity
Not Before: Nov 23 15:00:50 2024 GMT
Not After : Nov 24 15:00:50 2024 GMT
Subject: CN=373f450c7d78ba0eddedf633075b3d7137d183b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c8:83:90:9d:3c:b2:52:84:10:1d:a6:c4:2f:
97:45:26:80:1c:c0:aa:74:fa:1e:ec:8d:de:0c:44:
8f:bb:58:c4:80:9e:f5:11:20:e9:a5:5a:cc:49:86:
08:df:a8:56:46:62:f2:f5:4f:a7:71:cb:d6:67:70:
83:26:6b:63:17:4b:80:4e:3f:76:62:47:1d:e2:d8:
5a:97:bb:3d:33:d2:13:4a:cc:87:70:eb:a4:fb:60:
54:21:b6:6e:c2:b8:c0:23:91:fc:61:67:df:78:d5:
4c:6f:a4:77:5e:bb:d8:b4:54:2a:50:4b:82:8f:be:
dc:28:cf:5a:ca:e1:65:2e:03:f1:33:e5:14:3c:5f:
83:c0:a3:14:24:dd:6d:ec:f2:42:e9:fb:a4:24:79:
93:a5:c4:e7:e0:89:0b:ff:b5:62:3a:d4:cc:24:18:
f6:44:a0:7d:96:15:7a:44:90:e7:f1:16:db:15:30:
72:1f:13:51:61:bf:31:52:2d:03:8c:84:a0:cd:78:
6a:c3:1e:00:c4:be:75:e8:22:91:b5:9a:ff:7d:28:
e0:b9:2d:c5:3a:67:b8:a6:5d:57:33:48:fd:78:0e:
7e:a3:e1:15:3b:12:d6:57:62:02:17:7a:69:4e:04:
ed:57:72:05:02:7b:04:b7:aa:16:79:26:4d:92:2d:
c1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:3F:45:0C:7D:78:BA:0E:DD:ED:F6:33:07:5B:3D:71:37:D1:83:B0
X509v3 Authority Key Identifier:
keyid:08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:89:cc:2e:50:ca:13:50:c0:eb:d9:06:69:3a:0e:36:a3:bc:
80:2f:0b:a2:5a:87:d0:2b:ac:2d:2f:35:cb:69:ff:2b:8c:48:
aa:15:cb:99:11:69:67:96:d5:53:12:da:5a:ed:ed:36:a3:cb:
70:0f:cc:8a:cb:c9:58:4a:a2:74:a5:b4:17:0a:fc:d0:81:e1:
6d:08:a6:bb:c6:7b:41:97:08:7f:7c:f5:8a:85:3c:00:b8:a7:
97:cb:6e:3e:a7:04:16:67:8b:49:b7:1e:61:c7:3e:a5:29:6c:
9f:d6:a1:f7:56:d3:56:06:a2:ad:a7:63:71:34:60:06:21:1a:
e6:35:5c:46:fe:63:02:89:76:ed:51:df:1d:32:5a:76:a1:97:
85:64:ee:3c:25:00:7e:82:04:6e:f0:c1:00:1a:3f:c0:37:7f:
b2:84:b9:33:b9:9f:4d:56:91:11:df:55:d5:f2:6f:cd:49:7d:
0e:c8:54:65:ac:78:c1:bb:6f:ed:e1:9f:2c:cc:2f:63:48:05:
76:a7:ac:70:5e:37:35:d3:64:01:25:5e:40:bf:73:18:dc:c1:
de:93:81:22:43:3b:2d:2b:f8:ef:48:84:f1:4e:bc:5d:80:b7:
91:85:cc:d4:48:f8:16:ad:31:d8:0f:31:9b:70:1f:bc:57:9a:
f1:24:54:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 17:12:14 2024 by rpki-client on console-ams.rpki-client.org