Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File: kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier: 2nWJ0K/d56MhOv0/fFaImme32VvpkMG6vIsLFczz0AY=
Subject key identifier: A8:2F:29:3A:88:4F:40:3C:C3:8F:75:B4:F5:29:A8:F7:39:E5:C5:B1
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 0193572DF8FF7E0902AD88C1E368C4945CD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number: 1375
Signing time: Sat 23 Nov 2024 04:00:50 +0000
Manifest this update: Sat 23 Nov 2024 04:00:50 +0000
Manifest next update: Sun 24 Nov 2024 04:00:50 +0000
Files and hashes: 1: EQpHEcQ0XQTOnGfqpjy43ROg81M.roa (hash: v99H4FfAlEXZ4dtZ2Bm6EyptcevGo81bKd8YuzGeZRk=)
2: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: NS3e5TDGEve9dihwuIgJ7qPqNPRG24YK/Z1XHOGuDqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:f8:ff:7e:09:02:ad:88:c1:e3:68:c4:94:5c:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Nov 23 04:00:50 2024 GMT
Not After : Nov 24 04:00:50 2024 GMT
Subject: CN=a82f293a884f403cc38f75b4f529a8f739e5c5b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:44:76:7b:52:d9:66:c2:6d:24:76:0f:b2:37:
f3:75:11:6a:df:ce:66:ba:fe:20:a9:62:4c:e9:c2:
49:8f:40:95:dd:38:69:72:19:6e:59:11:a5:42:05:
47:25:18:93:38:8d:96:55:af:91:22:e5:04:3d:9d:
ef:a4:98:9b:a1:aa:1a:ae:74:10:68:d9:51:d8:71:
0c:93:0a:87:db:85:8f:69:4c:23:45:ff:29:28:45:
6d:aa:5e:30:26:9b:ce:fa:15:8d:ad:2d:ac:b4:d8:
91:eb:87:08:0d:d0:83:15:6d:65:1d:97:cc:32:92:
a8:24:80:43:31:47:3e:a8:f8:5f:a4:20:10:41:56:
b3:8c:d0:af:25:06:1e:97:1c:aa:0e:a9:a6:31:0a:
c0:ab:18:24:34:b2:68:13:2f:09:4b:8a:18:aa:2f:
34:a4:fe:37:54:0c:73:29:f7:28:e9:46:45:60:ce:
57:de:ea:cc:80:25:99:82:39:8b:7f:90:4f:14:9a:
c3:f0:6e:f7:66:61:cb:ed:c5:e7:07:15:c7:37:b1:
55:a0:e7:51:8a:b4:ba:9c:90:3f:37:1e:aa:ef:4b:
e5:56:fb:42:83:54:9c:e8:ba:d7:9c:22:a2:af:09:
7e:8a:b1:81:24:07:a1:2f:ce:fd:3f:39:91:53:e8:
5f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:2F:29:3A:88:4F:40:3C:C3:8F:75:B4:F5:29:A8:F7:39:E5:C5:B1
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:1f:bc:dd:11:e2:44:6d:d9:a6:d2:8d:a5:25:e4:a0:2a:0f:
54:da:36:10:f7:f8:6f:10:92:87:26:e9:25:90:80:aa:62:58:
1f:31:6e:de:b7:10:e9:eb:f5:df:5e:11:83:ee:11:2f:1d:ab:
bc:6d:8a:c2:e5:cf:d6:5e:58:b9:2d:5a:83:8a:ad:a2:09:89:
5e:f3:2c:23:52:85:5f:97:d0:2b:ea:dd:f7:9d:55:89:38:4a:
7a:ca:00:f7:f4:ca:4b:75:b6:93:7b:4b:3f:30:5a:57:17:b3:
cc:ed:31:0b:94:de:08:34:57:30:57:78:cb:77:60:8b:40:4f:
16:14:57:64:7d:63:55:81:88:d5:5b:fa:b0:ed:5b:9b:0c:08:
b2:24:b2:fc:e6:93:32:de:c2:00:b4:aa:c1:07:a8:5a:18:3f:
96:1b:0d:71:f1:c8:b9:a9:97:8f:fa:f0:8b:26:8c:a8:88:be:
83:d8:e4:06:06:35:ef:3d:14:84:88:7e:48:30:a0:15:a1:f1:
23:6e:a2:95:53:1c:e5:f5:7b:db:13:9f:51:4e:53:65:45:fd:
1e:f1:fb:76:11:cf:de:ca:12:d6:00:7a:eb:89:86:6c:d9:41:
10:fe:cc:d5:5b:ef:40:1f:58:8a:65:53:45:33:1d:cb:3e:8d:
c9:b4:53:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:54:47 2024 by rpki-client on console-ams.rpki-client.org