Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: m/J4E4JPCsmg+4yZHS/+PQK4RVQLGIhj0QIUMMS1lU4=
Subject key identifier: 15:44:DF:86:2B:D6:47:96:EC:4A:68:61:3E:1B:5F:C0:5D:95:E8:DC
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 01906CE13E258E4538CD40E173FDD4641E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 0B7E
Signing time: Mon 01 Jul 2024 06:00:18 +0000
Manifest this update: Mon 01 Jul 2024 06:00:18 +0000
Manifest next update: Tue 02 Jul 2024 06:00:18 +0000
Files and hashes: 1: aMyatW8ijHQLIxlxVn2fZgMpzTI.roa (hash: J/LENkfq82htB6tvEMf6u4QE3Ek6E/+jDRNcvCKXUwo=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: av4LQmxjPO0/aK6PeXsvZW+mTHBNzb5tUyi/CjCTRco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 06:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6c:e1:3e:25:8e:45:38:cd:40:e1:73:fd:d4:64:1e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Jul 1 06:00:18 2024 GMT
Not After : Jul 2 06:00:18 2024 GMT
Subject: CN=1544df862bd64796ec4a68613e1b5fc05d95e8dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ce:d1:be:47:9c:2a:91:0b:36:9d:7e:62:0b:
b4:93:c4:c9:1d:15:b7:40:0e:46:53:93:c0:55:23:
c4:b4:e3:ea:37:4c:a0:7e:d2:0a:b6:5b:64:d7:9e:
52:6f:7f:ea:86:40:a1:3d:b5:7d:60:cf:07:74:0e:
b6:e9:27:b1:32:66:d8:fb:27:0b:db:c4:d5:a8:25:
b4:63:50:fc:b2:dd:a3:ee:3a:0c:f5:09:4d:78:f3:
68:0b:b1:42:14:36:ae:98:f3:10:ae:a1:1e:d5:84:
6e:8b:4a:57:b4:a7:b4:b4:35:6a:a1:43:63:3a:23:
17:b4:2c:6d:b6:1d:3f:36:ad:b6:ba:8b:75:27:42:
45:3c:28:bb:d5:25:2c:dd:f8:d0:6f:37:22:8b:7b:
83:1e:ce:2e:06:90:95:ca:5c:e1:f8:66:b1:35:84:
4e:b5:b9:b6:b8:a7:e1:6a:97:9a:ec:75:57:70:0e:
38:59:e8:66:a2:bf:3d:b9:b4:2a:34:a0:54:b6:1a:
94:eb:7a:70:fd:2c:d4:7b:92:5e:d8:2e:4c:86:4b:
a4:53:0e:18:24:0f:09:1c:9e:65:00:57:af:40:0b:
7c:68:66:c8:ff:41:29:25:8a:07:04:3c:6a:54:55:
1e:b3:7a:c7:80:e0:c7:f5:4a:25:0d:57:d2:98:57:
39:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:44:DF:86:2B:D6:47:96:EC:4A:68:61:3E:1B:5F:C0:5D:95:E8:DC
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:b5:05:df:3c:dd:30:a5:98:f4:3c:48:2a:fd:63:8e:f8:0f:
02:fc:ff:24:72:7e:55:64:b1:65:43:9f:1e:8a:a2:15:55:68:
46:ae:5f:8c:ca:e7:c7:04:d9:9f:16:2e:38:97:68:ad:28:54:
9f:c7:b0:74:90:47:66:20:f1:95:d3:e6:a3:d7:b1:a2:f8:63:
0c:7d:97:4a:e3:12:0d:4a:a7:4c:81:b9:1d:24:56:6a:0b:f4:
b2:3b:84:2f:81:8e:1a:60:e5:49:cd:89:c2:f5:1b:12:d6:30:
b2:5b:4c:d5:04:67:53:30:75:cd:6c:e0:d1:34:45:83:ba:28:
27:66:89:09:db:dd:b5:a2:48:16:16:33:b1:eb:02:68:79:7a:
ed:b4:1c:d6:3e:95:bd:b0:17:b0:29:70:2d:8f:8b:b8:86:42:
f6:c1:5d:13:1e:b4:f2:89:c7:a3:92:59:c8:1c:58:cc:6c:e8:
96:ae:80:13:39:3c:43:68:1f:c0:97:8b:44:51:8f:d6:52:7e:
8c:03:89:95:c0:5c:37:2d:54:95:12:f5:b6:57:c9:90:79:c9:
5d:e9:70:ee:3a:91:c1:a0:25:87:d9:41:c5:cc:e8:52:9e:cc:
e2:84:49:5b:fb:7e:3b:ea:82:13:e4:ef:5c:a4:cc:f9:3b:26:
7a:a3:b4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 16:09:56 2024 by rpki-client on console-ams.rpki-client.org