Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
File: kRAQDzzHh9YxUwPLf8iNniXlbqg.mft (raw, json)
Hash identifier: FlmOs33SnTWswkZwRCJ8OiOZjGJDFHGAcV12uFswdGE=
Subject key identifier: 27:97:80:71:FA:2A:E9:AA:40:A2:4C:19:AE:CA:43:36:3C:4E:EA:A8
Authority key identifier: 91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
Certificate issuer: /CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Certificate serial: 019235B75695FA4478C6D2F80E2ABA42E09D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
Manifest number: 06EF
Signing time: Fri 27 Sep 2024 23:01:00 +0000
Manifest this update: Fri 27 Sep 2024 23:01:00 +0000
Manifest next update: Sat 28 Sep 2024 23:01:00 +0000
Files and hashes: 1: AhQjIhLeSXFzV3EwOIuLmAYUWHI.roa (hash: wvFUf8hPHR9k2fIECL8xcnvY98iE7pv692suq549SYA=)
2: kRAQDzzHh9YxUwPLf8iNniXlbqg.crl (hash: TOvG8pzMypV8q92rILzF+tRRzvjlVVH5A6q6KsULldc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 19:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:35:b7:56:95:fa:44:78:c6:d2:f8:0e:2a:ba:42:e0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Validity
Not Before: Sep 27 23:01:00 2024 GMT
Not After : Sep 28 23:01:00 2024 GMT
Subject: CN=27978071fa2ae9aa40a24c19aeca43363c4eeaa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:17:16:0e:4d:2a:43:e9:6e:ee:bb:52:8c:3a:
28:72:14:8f:e7:39:cf:ed:76:93:81:49:1e:b0:70:
6d:ac:97:e1:ae:89:89:3e:7a:b4:33:2a:65:1d:5f:
d3:b1:a0:d0:60:78:5b:4b:f7:85:66:07:4a:da:12:
b4:45:52:77:64:28:03:d2:1e:4c:80:0b:dd:06:2c:
b4:67:6f:07:c0:a3:d8:3c:dc:8d:49:e0:98:1f:1d:
19:13:1c:da:1f:44:1b:95:9f:a9:6b:08:be:50:2d:
60:c0:17:69:d9:b0:62:22:44:a3:e4:f0:84:f2:63:
4c:52:7d:2f:fc:04:fe:fa:fb:e9:f6:e7:1d:3c:b6:
ad:ff:64:a2:99:9e:49:2f:0b:ed:c0:c8:50:0e:ce:
88:fa:8a:57:a9:db:64:17:c8:25:df:8d:b3:2d:0c:
b3:0e:d6:7d:da:80:0a:33:bb:4c:89:66:15:b3:31:
6e:76:d4:15:58:08:dd:ba:da:73:50:05:3a:8a:f8:
be:eb:5c:fc:70:a7:4b:49:ce:ba:ce:04:bf:58:d4:
bb:f6:4e:92:08:f1:38:8b:85:36:a9:3b:95:23:5d:
5b:2a:a8:eb:5a:6e:55:49:18:7f:2f:fd:e7:68:1f:
4d:7a:f5:db:e7:f8:4c:e7:2b:17:55:ff:8b:ed:ef:
09:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:97:80:71:FA:2A:E9:AA:40:A2:4C:19:AE:CA:43:36:3C:4E:EA:A8
X509v3 Authority Key Identifier:
keyid:91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:4c:1f:02:04:65:e9:2c:81:de:f6:40:3d:6b:95:aa:6e:74:
9d:74:69:9c:3b:1e:d4:28:c1:b2:1b:d5:4c:b3:4a:22:be:de:
86:03:c8:9e:03:2c:03:c9:77:d2:37:70:f2:a3:6e:23:8e:d5:
fa:6b:04:d3:cc:b9:3d:83:61:1b:ad:0d:57:03:de:b0:dd:b0:
26:c4:8a:68:7a:c1:7a:38:87:65:70:66:f6:17:0a:f8:42:37:
db:73:1e:88:43:e4:bb:f5:9c:96:9f:d8:9d:b1:6d:c6:ae:19:
ce:42:e0:56:33:31:df:16:23:d0:c7:af:da:9b:18:c3:43:91:
1f:7d:dd:81:cb:36:4a:80:22:7f:f7:87:0e:e8:f3:b9:56:b5:
df:53:13:4e:a0:b2:19:48:bd:0f:db:42:24:7a:f5:63:23:b6:
61:34:87:83:e9:ee:34:b1:27:7a:2e:a2:b7:2b:4f:96:c6:3c:
c4:f7:ae:f2:1c:23:8c:d2:c9:f0:81:58:55:a9:d9:8b:bb:88:
ac:b9:9d:0a:54:19:c0:6c:8a:80:79:d6:32:d9:d4:dd:18:18:
73:fd:e8:35:3d:18:b8:19:d5:87:34:74:93:60:64:3a:36:de:
d3:14:52:61:c8:9e:13:63:4d:e9:b2:eb:07:6b:49:ba:d1:a9:
fc:f5:46:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 01:07:41 2024 by rpki-client on console-fra.rpki-client.org