Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json)
Hash identifier: S1q93JbpT0m7swoFQ1hGMw/Xf7Cyu3el+LDsaGY6SfI=
Subject key identifier: 82:D7:D0:79:3D:51:AD:84:2C:92:A2:E5:38:B2:60:F7:34:AD:87:CF
Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Certificate serial: 01936934034B5C9C686A7C35F451FE989425
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
Manifest number: 08D9
Signing time: Tue 26 Nov 2024 16:00:36 +0000
Manifest this update: Tue 26 Nov 2024 16:00:36 +0000
Manifest next update: Wed 27 Nov 2024 16:00:36 +0000
Files and hashes: 1: H412dFhpULtmjw9nq96ZzXLHVyc.roa (hash: uDe4a41iWG66UKXhgc+CadzXPkPzpEahBptzcEzltrU=)
2: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: qXoN5fNf4PvDnJrSp3AKbygV92sD0ALrVez7bkThc5A=)
3: WIIsSIk0oAqZ-zpzLhEILB0lkyY.roa (hash: 0Br8xx+/b87POLLjDVH4qSOOVCF3Jr2VYr/ulAFgp14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 16:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:34:03:4b:5c:9c:68:6a:7c:35:f4:51:fe:98:94:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Validity
Not Before: Nov 26 16:00:36 2024 GMT
Not After : Nov 27 16:00:36 2024 GMT
Subject: CN=82d7d0793d51ad842c92a2e538b260f734ad87cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:da:9b:6e:76:4f:41:45:29:5a:59:a5:24:68:
c6:b1:f7:7d:10:a0:15:a9:aa:54:76:b9:eb:c3:cc:
32:4b:a9:00:07:da:55:50:c2:0b:01:a2:65:d1:6c:
81:ab:54:81:46:48:b3:7a:9f:ff:21:1a:b0:ac:47:
54:71:5a:8d:cf:0d:a6:24:13:df:e3:9c:47:52:6a:
1a:0a:f1:1f:27:ba:fc:3f:92:a9:b5:7d:3b:f3:cf:
b8:b0:09:da:31:89:ed:2f:4c:fa:0a:2f:0a:33:67:
c8:53:ec:2f:8d:e7:07:1e:21:06:ec:4d:26:94:f7:
36:fe:5d:d3:35:09:24:9d:14:2a:e1:60:99:e8:a7:
51:2d:4c:41:80:e8:40:cc:18:3b:f0:75:9b:fa:98:
b8:c9:d2:46:67:ab:41:09:8a:07:30:8b:9c:aa:6f:
a8:e8:e4:29:c1:00:98:0a:8f:28:b1:69:3b:1d:26:
f6:0a:43:75:72:38:dc:10:53:6b:c3:49:0c:ba:17:
7f:ae:71:c9:62:b5:b7:ad:bd:c2:a0:5b:49:dd:dd:
34:d1:dc:de:ba:a9:ac:fd:08:22:d3:eb:46:dd:7b:
af:f7:cb:6f:44:58:dc:c4:36:41:29:57:6c:eb:e0:
76:b2:13:2c:7d:87:68:09:3d:a1:09:34:f1:36:8f:
65:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D7:D0:79:3D:51:AD:84:2C:92:A2:E5:38:B2:60:F7:34:AD:87:CF
X509v3 Authority Key Identifier:
keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:92:c4:9e:ec:41:25:0a:8e:8e:46:d9:59:45:75:36:35:81:
a9:54:fe:f5:5c:3a:08:bc:d2:7d:ba:1e:26:10:30:46:72:bf:
4c:dd:09:9d:a3:b2:5c:34:87:63:9e:00:f6:3c:a1:97:4f:82:
b8:ce:be:14:56:e4:25:93:45:fe:f7:95:84:f9:c4:e9:1f:49:
80:04:d3:13:c4:cc:8c:15:20:ab:25:a5:f6:20:13:99:f2:94:
9c:13:cc:92:aa:8b:51:c4:5a:4f:0d:09:3a:a5:ee:6e:55:61:
2a:fc:82:6f:2b:03:fb:e4:d6:d0:db:0c:25:0c:7a:10:bd:87:
92:0c:12:a4:e7:1a:46:bb:f6:69:19:17:0c:53:01:21:9b:40:
0a:0a:94:c4:4b:95:db:30:f8:d3:db:61:4b:a9:8f:12:ca:be:
37:90:3e:c4:19:bf:f6:b6:c8:7f:ea:6c:40:90:af:34:a8:20:
6a:26:8b:07:5f:65:65:65:99:45:8a:22:14:bd:1b:c4:56:59:
21:51:16:a9:8e:5f:22:6c:ce:91:b1:3f:4b:93:ad:21:03:0e:
f2:b3:22:29:23:ea:69:e2:98:ec:6d:03:18:e4:42:0e:8a:df:
f8:aa:0e:99:20:f2:a6:2a:e3:f6:91:5f:ad:14:40:ee:35:ac:
4a:5d:6b:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 21:29:19 2024 by rpki-client on console-fra.rpki-client.org