Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json)
Hash identifier: piT/XpIWre7d1ZkXOe0N9j9RO7ZAW/JRmZWTyF0KahE=
Subject key identifier: 63:8D:CB:D0:93:24:08:4C:10:75:82:54:1D:33:D4:8F:5C:E2:D2:D9
Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109
Certificate serial: 0193579B93F25E43ADDFFEE35AF2B824E73F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
Manifest number: 1005
Signing time: Sat 23 Nov 2024 06:00:33 +0000
Manifest this update: Sat 23 Nov 2024 06:00:33 +0000
Manifest next update: Sun 24 Nov 2024 06:00:33 +0000
Files and hashes: 1: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: xxDHYo9kZRILCiy6qEpDH5JCjlEiKKHkPcNbKVeDfVE=)
2: vYiw0GXNfeIVJ7PtV2QQXWxyo04.roa (hash: qtpXwTwNGn+4OhTYZURFF4vDI9QiXmmSBrhlBbTB0uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:93:f2:5e:43:ad:df:fe:e3:5a:f2:b8:24:e7:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109
Validity
Not Before: Nov 23 06:00:33 2024 GMT
Not After : Nov 24 06:00:33 2024 GMT
Subject: CN=638dcbd09324084c107582541d33d48f5ce2d2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:85:fc:d3:4e:b2:86:d1:91:47:fc:ba:ba:2c:
5e:cc:df:5e:d9:55:6c:85:a2:12:74:2f:8c:fb:9e:
0e:ab:99:6b:2f:be:25:d7:1f:44:8f:76:ea:46:35:
dc:70:cb:a5:a8:8e:8f:b9:0f:28:dc:88:47:16:32:
f7:97:7c:2e:09:02:32:46:cd:30:c3:43:30:97:9d:
c1:7a:8f:1c:69:c5:5e:dd:ef:2d:40:2f:eb:c4:a3:
d4:d5:57:3d:a0:12:6b:c9:91:81:77:86:97:c5:1e:
85:54:97:6d:02:46:75:a2:c9:e0:32:0b:55:61:f8:
be:eb:1f:06:c7:36:27:71:72:44:8c:e7:ac:92:86:
da:95:e8:50:2e:e0:bf:59:1d:b9:d2:2a:c5:71:eb:
b7:69:8a:21:a5:cb:29:20:5b:36:a1:ef:ba:af:08:
07:4e:91:c0:a3:9c:5f:db:70:96:e7:c4:a6:b3:70:
f2:68:5a:e8:39:9b:27:18:b6:30:7c:47:14:2b:b3:
64:c9:55:f2:65:e5:a5:13:03:c8:5e:e9:61:21:3b:
53:c7:29:9e:53:fd:8b:71:4d:90:8d:97:4e:bf:f2:
21:5d:00:9b:8f:89:33:df:aa:6d:be:eb:dc:13:ed:
82:b6:22:1f:93:8e:63:c9:d2:07:68:05:d2:51:a2:
cc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8D:CB:D0:93:24:08:4C:10:75:82:54:1D:33:D4:8F:5C:E2:D2:D9
X509v3 Authority Key Identifier:
keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:8e:93:24:3d:0d:b0:dc:30:3c:a6:3c:95:da:51:bb:7b:88:
01:9a:b6:47:33:dc:61:08:45:74:c6:ba:b9:3f:f3:89:d2:e7:
64:1c:99:32:d9:34:81:3a:5b:62:c0:36:1c:74:e4:30:c7:70:
99:46:e5:19:7f:bd:e3:d4:03:81:d5:6c:b1:f2:a8:0a:de:36:
a3:94:c7:11:76:25:59:e2:40:f9:b7:09:61:fe:95:19:21:3d:
40:5c:34:d7:94:be:c1:83:9c:c5:84:65:fc:95:33:80:96:74:
3a:fc:98:73:58:bc:80:e9:be:73:e8:47:53:0b:48:cc:8c:69:
fe:84:7c:04:8e:76:ea:5c:84:c2:f9:64:cb:b9:b5:d9:ac:cc:
54:d9:f0:4f:ed:50:7f:f3:be:9a:18:60:68:3e:3e:34:cb:17:
36:63:ba:da:98:7f:96:6a:81:f6:2c:54:aa:f9:c9:92:7f:eb:
45:e7:e9:42:5c:95:e9:2a:36:8a:45:db:3a:29:de:7d:90:99:
cd:b5:5a:db:53:7a:e4:6e:2f:f4:ad:c5:2b:ba:d0:6b:c2:bb:
15:9e:d2:af:fb:50:1d:a5:29:06:21:02:e7:e7:6d:b6:49:c9:
fe:fc:8b:ec:26:9b:81:58:97:6f:63:ca:d1:09:87:56:d5:6a:
63:4c:18:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:12:04 2024 by rpki-client on console-fra.rpki-client.org