Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft
File: VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft (raw, json)
Hash identifier: EyPYMfVszB8zcTdkZaPVRqPcPB2bYIASLPV8Rrd/g/Q=
Subject key identifier: D4:B7:2B:92:C0:FD:31:59:B0:DA:09:A0:99:3C:34:B1:23:BE:FC:01
Authority key identifier: 54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96
Certificate issuer: /CN=54a14be619755eeeeb91fe2f62a1d4ee07861496
Certificate serial: 01935878D355CE2ADDDC61E41B9A0E4CCF20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft
Manifest number: 0A6A
Signing time: Sat 23 Nov 2024 10:02:13 +0000
Manifest this update: Sat 23 Nov 2024 10:02:13 +0000
Manifest next update: Sun 24 Nov 2024 10:02:13 +0000
Files and hashes: 1: D7mucRvSmVl5Mip-HbvrhYgOXA8.roa (hash: XB8SNCKgCB4SyzwYqUPew/0H8EtN9270D6CJ2i0DJiA=)
2: VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl (hash: eaDPEbZ1KYSohR7mcYKTRiS9gRo3znx/QVLrLFu0vA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:d3:55:ce:2a:dd:dc:61:e4:1b:9a:0e:4c:cf:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54a14be619755eeeeb91fe2f62a1d4ee07861496
Validity
Not Before: Nov 23 10:02:13 2024 GMT
Not After : Nov 24 10:02:13 2024 GMT
Subject: CN=d4b72b92c0fd3159b0da09a0993c34b123befc01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:14:0c:8b:06:fe:a2:82:ed:04:7b:e1:94:ec:
c4:8d:0f:f1:3a:c2:10:f3:67:b6:85:f1:61:cf:7b:
cd:a5:8b:af:91:bb:58:c0:8c:5b:d7:22:38:f8:30:
92:bb:4c:1a:30:4b:44:a4:f5:bf:64:e2:cc:53:0b:
42:4f:34:66:39:b6:98:c8:d0:b7:a5:56:b7:3a:3f:
33:62:0a:4f:f8:e8:d5:da:af:6a:fb:96:6a:9f:4f:
1a:13:09:ea:1d:b2:d2:0b:97:30:6a:0c:6d:5e:50:
27:b8:de:6e:6c:f5:ae:cf:6f:f7:6f:0f:3d:13:1e:
a0:65:2e:56:c1:04:67:0d:df:53:33:08:c9:33:69:
e8:0e:8d:a4:41:f8:e0:7b:87:8c:0f:93:2c:f8:a4:
75:43:6a:ce:a8:1f:a1:69:3f:59:40:ea:62:1f:30:
c4:29:cc:73:13:37:33:70:13:4d:c1:fc:bf:2c:88:
fe:26:46:89:a6:54:b0:87:a5:ca:5a:d2:d5:76:d2:
05:0d:9c:54:de:7e:52:ab:2a:4c:63:f0:ac:02:4f:
f6:6a:1f:ee:c7:44:d2:c4:a1:48:53:d4:6c:93:ea:
70:1f:fa:d6:0c:26:0d:74:e5:21:52:bb:f7:f0:71:
d3:b9:2f:fa:73:59:ae:e1:a0:71:8b:3b:b6:82:5a:
00:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B7:2B:92:C0:FD:31:59:B0:DA:09:A0:99:3C:34:B1:23:BE:FC:01
X509v3 Authority Key Identifier:
keyid:54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:a6:8a:69:66:19:b5:05:99:cb:2b:3a:2e:92:2e:21:a3:b2:
84:16:e1:03:dd:58:3f:9f:cf:1c:59:38:37:8b:c5:5f:5f:28:
87:05:6f:25:4f:7f:4e:cf:5c:26:4a:c9:8e:4c:a3:05:cd:80:
a8:be:d6:d3:3f:4d:42:ec:a3:db:db:e7:8e:ea:12:33:06:01:
37:ee:19:ab:1f:ed:1f:c2:43:4b:65:20:3f:7e:dd:ba:16:02:
f3:e5:5b:96:d1:ad:58:74:c9:5d:5f:30:aa:68:ae:23:4d:5b:
6e:dc:aa:5a:88:86:3e:15:35:c9:b1:5d:d5:09:04:f0:c8:2b:
f9:71:01:2d:9e:3f:fc:f5:a2:9e:91:3b:c3:08:a6:7b:12:b8:
1d:2e:9b:2b:8d:aa:bc:bf:05:bc:53:10:6c:10:12:e0:a5:10:
17:01:8a:b2:da:90:13:db:bf:a7:50:a9:23:df:90:8a:7a:77:
f0:51:89:c3:de:ae:4a:ea:d0:54:1a:c8:2f:d1:d9:cb:d2:43:
73:d5:2e:2b:4c:8b:4a:46:0e:bb:f1:ce:b9:4f:23:8f:3c:98:
c5:d6:2b:9b:6d:c6:bb:34:e9:b7:5f:5c:0d:80:b8:08:ed:bc:
2f:83:fd:f3:f6:8e:d2:07:2d:d4:9a:59:57:31:15:74:7c:86:
1f:b5:00:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:04:36 2024 by rpki-client on console-fra.rpki-client.org