Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
File: kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft (raw, json)
Hash identifier: Z+l+56Nte7Vz5Ipz7mRJ73q7QKdmYskCHLmgklG+3lI=
Subject key identifier: 5E:27:08:75:28:09:DA:53:B4:1A:E0:96:DE:48:FE:CB:E6:66:B4:5A
Authority key identifier: 91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
Certificate issuer: /CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Certificate serial: 019357D23D4397E876956A286FCFC9F92707
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
Manifest number: 129F
Signing time: Sat 23 Nov 2024 07:00:16 +0000
Manifest this update: Sat 23 Nov 2024 07:00:16 +0000
Manifest next update: Sun 24 Nov 2024 07:00:16 +0000
Files and hashes: 1: 9yI2MvZlU01_je-ZD3ezf3wPUnU.roa (hash: ChencjGmHJ02S7ggejHZMH3t9ZXHWq3WCRN4T1AGP+8=)
2: HUSB6hZ5KSsjeL5MPpH39VClwwk.roa (hash: Ujs/oMHLysDwQ+kH+KTSKyvCSPPoLHFHmQe2M7cWVe4=)
3: kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl (hash: H54a+mr+iro1t/VNeScDMdRpcyizcDNqprH9qw6lfRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:3d:43:97:e8:76:95:6a:28:6f:cf:c9:f9:27:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Validity
Not Before: Nov 23 07:00:16 2024 GMT
Not After : Nov 24 07:00:16 2024 GMT
Subject: CN=5e2708752809da53b41ae096de48fecbe666b45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:30:13:e4:33:8e:9f:fe:21:67:bd:30:5f:1f:
08:14:e0:be:d4:e9:74:85:70:0d:e4:0d:6c:0a:f8:
21:50:1e:48:fc:e1:d4:62:9a:97:b5:bb:11:47:35:
a3:a5:01:18:fe:39:2c:e8:81:5d:3c:56:bd:75:48:
f2:9e:86:f4:c0:7a:f3:5f:0c:51:13:30:3d:84:71:
a7:e6:ba:db:3b:f4:ac:57:0e:fe:a6:ec:f2:80:50:
f5:e3:ef:9b:37:c0:28:f5:14:8a:88:6d:5f:b1:39:
49:ca:ac:70:d7:1a:80:66:6d:30:50:76:97:00:11:
7b:60:0b:3b:27:fa:8e:8d:77:a3:91:0b:6c:03:83:
c3:fa:cd:7a:8e:ed:ba:1a:50:15:ce:cc:81:1f:d2:
9e:da:6b:cb:ae:02:3e:a9:4b:62:ec:d2:56:14:76:
c7:60:04:85:45:f2:8a:48:91:fc:86:8d:5c:80:8d:
91:f5:9c:f9:32:73:2e:57:6c:5a:21:5d:33:7e:27:
df:d1:9c:3f:69:63:ca:9b:99:8f:30:01:bf:d3:2d:
a0:50:bf:17:66:cd:5b:39:43:81:20:0a:25:da:74:
b5:e0:08:f4:db:3e:b0:13:2c:3b:8d:1d:06:26:54:
98:86:e7:a2:2d:2c:62:d8:88:42:51:87:dc:d7:74:
cf:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:27:08:75:28:09:DA:53:B4:1A:E0:96:DE:48:FE:CB:E6:66:B4:5A
X509v3 Authority Key Identifier:
keyid:91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:35:f9:57:25:52:4c:2a:e4:64:18:51:10:07:b1:93:a5:2a:
e6:e2:2a:7f:1e:ab:fb:ae:a3:41:49:6c:19:1a:bc:4e:99:6b:
60:df:91:af:09:d3:72:89:6c:36:b2:93:bf:ef:f3:c1:b0:61:
a8:67:d4:15:99:a3:0c:b5:8b:ca:0f:ad:30:f7:47:18:a8:07:
cf:55:2f:3e:64:36:55:39:ef:49:6d:83:54:96:b4:ef:ee:47:
da:2e:49:c1:15:6d:c8:48:3b:58:59:2d:2d:d5:2e:4f:4e:44:
8e:ce:c5:52:40:c6:92:7a:be:62:06:04:d3:6f:d2:35:ba:f6:
fc:30:ed:72:f5:54:90:20:4a:3b:d9:4b:b9:68:d4:25:3e:e4:
9b:07:28:c7:cd:18:a2:44:4e:9b:ee:70:7c:1f:a6:82:de:7f:
f8:1f:75:80:ea:61:51:4f:8e:20:a8:85:e9:56:34:1f:e0:6c:
67:07:74:e6:01:64:18:fe:5f:18:da:a0:ad:57:54:25:35:10:
68:60:eb:12:02:16:5c:7b:57:6d:65:9c:89:9b:f0:56:e3:78:
30:7c:08:fb:50:ba:71:bc:6f:f4:a1:c5:7f:90:28:42:ef:34:
98:b8:23:2c:0b:ea:29:cd:9a:35:ae:13:ff:32:ab:68:f2:83:
0a:e3:e7:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:55:39 2024 by rpki-client on console-ams.rpki-client.org