Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
File: _KmLHQ7MzE9v8afn24S0uy9VsI0.mft (raw, json)
Hash identifier: 0hd0WKl7btRN84QfatziI49zPkkCCiz94fQ7vCBp+OE=
Subject key identifier: A9:76:3D:EA:40:00:7C:2C:E3:32:F0:EC:27:35:1F:3E:F0:DC:C7:86
Authority key identifier: FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
Certificate issuer: /CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Certificate serial: 019355769B863CE2997CD8A79B67FAC97AD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
Manifest number: 1335
Signing time: Fri 22 Nov 2024 20:00:56 +0000
Manifest this update: Fri 22 Nov 2024 20:00:56 +0000
Manifest next update: Sat 23 Nov 2024 20:00:56 +0000
Files and hashes: 1: AaukAvTMr-fEtm3UPs_ob2rgQkY.roa (hash: QU5OeN2cRmSMs/IAni/TzIUSTmbbzt5UWLmPGmWKeo0=)
2: _KmLHQ7MzE9v8afn24S0uy9VsI0.crl (hash: OaQbX9mzAKy1dvTXaEaHiWNT0xJvi/bUUlYcZ94o5es=)
3: ayi9NE0BDJVFeNnxu0P3XU3ANGI.roa (hash: B6BkZH831YZxkclfkR9Ask6ZlIZ1rkmIeblIOMH+NQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:76:9b:86:3c:e2:99:7c:d8:a7:9b:67:fa:c9:7a:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Validity
Not Before: Nov 22 20:00:56 2024 GMT
Not After : Nov 23 20:00:56 2024 GMT
Subject: CN=a9763dea40007c2ce332f0ec27351f3ef0dcc786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8c:c8:15:c9:f2:cf:b2:34:97:1f:3e:2a:20:
4e:8e:93:96:28:41:a2:9a:d9:63:cb:c4:22:e1:a8:
78:4a:f2:55:77:40:db:ea:bf:58:15:a9:a2:ad:ff:
3e:be:6e:ae:d6:67:68:e3:e5:c3:e0:5d:71:6c:ce:
89:01:2a:fb:11:ba:85:71:ac:15:3b:03:52:5e:86:
49:1f:f7:8e:0b:59:e7:28:a6:40:58:98:4c:f3:3d:
30:8d:c6:4e:c8:64:01:12:7b:d1:e3:d4:32:0c:c3:
b4:89:77:1f:27:c1:42:a3:c6:59:35:0c:ca:69:1e:
52:bc:a9:0d:14:c9:a3:cb:b3:23:4d:16:64:9f:a0:
4e:a3:c2:1c:43:e7:c7:63:ae:3b:81:f8:82:98:6b:
aa:a8:2d:f5:ae:84:f1:08:37:3e:fd:cd:d2:74:22:
76:f3:71:9e:6a:ee:7e:71:e6:f2:c8:16:3d:7b:dd:
19:33:13:df:33:4d:07:01:dd:6c:1d:cd:01:e9:bd:
60:e6:18:d1:ae:4e:31:9d:82:da:93:70:b6:ef:60:
69:9c:42:44:1a:82:4b:6a:80:4c:f0:a7:ba:a1:28:
80:19:3a:5f:28:bb:33:7c:a0:e9:8c:82:62:d5:e2:
1d:ff:4f:1f:40:46:e5:f1:f6:6d:93:17:d7:5d:62:
8f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:76:3D:EA:40:00:7C:2C:E3:32:F0:EC:27:35:1F:3E:F0:DC:C7:86
X509v3 Authority Key Identifier:
keyid:FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:62:ad:30:6f:21:77:79:b8:64:05:96:85:02:ec:fa:01:1d:
e9:e9:db:b9:b3:de:a2:bb:16:7d:fa:82:b7:bc:a7:d2:55:4b:
74:f8:b9:b3:1a:54:c5:32:a1:d1:5a:3d:30:3c:6d:3f:42:cc:
b6:4b:ad:7b:fd:b9:db:fb:2e:c1:71:99:c0:40:2d:21:f2:1b:
2b:a7:1c:d6:5f:2c:02:c7:e3:87:2c:a1:fb:11:c7:be:49:6d:
08:be:54:03:86:c3:51:07:23:3a:8c:e7:93:52:a1:5d:7f:43:
a8:f3:ea:0e:4b:f2:b6:f6:9a:dc:1e:2d:c8:8f:70:3f:34:1f:
bc:48:6f:ca:e0:94:0c:f5:2c:7f:7e:fe:78:95:66:c9:6d:70:
53:f1:f5:30:eb:ac:6b:bd:75:27:b9:47:60:98:d9:4e:0b:3e:
c2:0f:c0:69:3a:88:1f:d8:08:d3:b5:da:02:67:3e:28:c3:c9:
c4:fa:6b:1d:f4:2a:2b:0f:ef:4f:18:52:e8:e8:71:b7:bd:62:
3a:74:dd:d6:4c:69:30:05:e3:c3:24:4f:95:78:da:6f:ea:0b:
db:2f:67:9d:b9:ac:20:9e:b4:90:6a:ce:d3:57:c2:17:91:17:
e0:3b:e0:f9:a1:b8:f9:4b:7b:bd:16:c7:d5:9c:bc:ee:5b:e2:
d6:0f:a9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:38:37 2024 by rpki-client on console-fra.rpki-client.org