Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json)
Hash identifier: 3uFrjCGS1Zo2F0OJRi+0qCRvNqwqhFlimwlXf+eYSJ0=
Subject key identifier: 4A:E4:08:D3:A2:CE:0B:B0:1C:F7:DE:A9:C8:75:D4:B6:04:51:75:33
Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Certificate serial: 0193658DDCA5943046E64FDC0E2E9C20839D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
Manifest number: 042B
Signing time: Mon 25 Nov 2024 23:00:16 +0000
Manifest this update: Mon 25 Nov 2024 23:00:16 +0000
Manifest next update: Tue 26 Nov 2024 23:00:16 +0000
Files and hashes: 1: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: Gxi+nfloe5yEOpQ3jNzvHjGJjvDBsINBjnkgWWss4O8=)
2: XL-M3jjiuPhbGYVxRqf7uHRltuQ.roa (hash: fzeAV43Nxnxpms9IvR9K1s2LqRNJ4kaJ1iu9ZJkRoco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:65:8d:dc:a5:94:30:46:e6:4f:dc:0e:2e:9c:20:83:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Validity
Not Before: Nov 25 23:00:16 2024 GMT
Not After : Nov 26 23:00:16 2024 GMT
Subject: CN=4ae408d3a2ce0bb01cf7dea9c875d4b604517533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c9:5e:c9:10:54:ac:e6:ef:60:ca:a3:3f:13:
82:8a:2b:46:0d:06:1f:7f:7d:63:45:9b:17:a7:34:
d8:f5:00:ae:10:46:2f:0f:be:61:ef:da:1d:d0:2a:
01:0f:d6:5b:6a:37:52:af:86:85:06:47:d0:87:82:
9e:aa:6c:df:d1:73:33:ea:cd:95:a2:ed:6e:5a:42:
34:03:96:c4:d9:72:62:eb:47:41:96:3d:ca:8b:6a:
74:a6:13:52:6d:71:f8:61:9d:1d:ef:0a:93:66:90:
ce:d3:8e:d8:f7:06:48:33:06:87:69:05:15:c2:7d:
1f:30:8f:2c:21:f2:e4:a4:65:3e:80:af:06:06:60:
7d:a8:1a:5c:b3:65:ba:15:8c:d3:bf:fd:08:96:6e:
df:11:87:1c:3b:f4:f1:b2:b4:58:60:21:68:7c:64:
51:07:45:fc:cb:0e:a6:02:fd:e8:2f:9d:30:9f:cf:
ec:10:4a:80:82:6b:a6:fa:a5:69:b5:25:65:65:30:
bc:4c:61:ad:5b:cf:40:56:09:26:67:67:92:07:a9:
d6:ad:71:77:fe:47:5a:48:47:96:50:80:8d:b4:3f:
dc:a6:d4:f5:93:18:1e:52:e6:1a:31:27:d2:c4:a2:
97:59:ca:7d:d0:be:79:88:1d:8b:b8:1e:e4:f9:6d:
fb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E4:08:D3:A2:CE:0B:B0:1C:F7:DE:A9:C8:75:D4:B6:04:51:75:33
X509v3 Authority Key Identifier:
keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:41:29:64:fb:7f:64:d9:fe:60:0c:08:fb:79:33:03:18:a7:
8b:a8:67:3a:79:21:86:b1:33:5d:e2:04:2b:94:cc:7e:6f:b3:
b7:03:cf:2f:ce:1a:1e:73:e8:55:ed:25:a9:e4:99:c2:8a:fd:
a2:c7:eb:22:04:21:0f:ad:f0:d7:e8:b2:9d:41:c3:cd:85:f7:
a5:58:bb:75:b9:1d:52:0a:57:85:8b:b5:ed:c9:e3:b6:43:25:
57:2b:0b:5e:f3:a7:04:81:ac:8b:e5:40:d9:06:8d:91:52:8a:
a4:62:39:fd:b5:4c:5d:63:b6:87:92:6c:e3:ea:56:7d:3b:16:
80:03:35:31:48:de:67:71:6f:2b:d8:46:98:fb:02:f8:ec:ab:
d3:e8:db:34:a6:f5:ce:65:94:66:b0:d2:33:a0:11:80:a6:b6:
ca:34:2a:f9:cf:c7:69:f8:c0:a0:e7:f4:f7:6e:51:40:46:8d:
fc:36:ea:be:27:64:f6:47:d9:c3:fb:88:33:da:01:0d:87:99:
6a:58:99:3e:e3:d0:a3:63:ef:c3:1c:e5:d1:6b:a2:91:ff:ed:
55:dc:1f:ae:d4:f5:92:d7:93:52:9b:06:d0:9d:34:21:e4:e3:
4c:ae:b0:9c:e3:c1:c8:ab:1b:b5:a2:52:c6:6e:26:c4:a4:75:
10:27:d2:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:16:07 2024 by rpki-client on console-fra.rpki-client.org