Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
File: kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft (raw, json)
Hash identifier: ZmOiRbEquZr/AWEqVeGnBzL34e8AjW3m5U/Fh5W2ulY=
Subject key identifier: 5D:2F:6E:21:A8:D9:9C:21:33:25:A2:9E:C4:77:4D:DD:68:6A:DD:56
Authority key identifier: 91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE
Certificate issuer: /CN=91188ca64c4670a6eb56b42a50a10588ad9647ee
Certificate serial: 0193579BABEE8E66D00070C675DBBBF5C26E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
Manifest number: 0803
Signing time: Sat 23 Nov 2024 06:00:40 +0000
Manifest this update: Sat 23 Nov 2024 06:00:40 +0000
Manifest next update: Sun 24 Nov 2024 06:00:40 +0000
Files and hashes: 1: UTTripa3cZ-E4YKxrYv4DAimqlw.roa (hash: Z4tiS+DDVTjOL70213Q+/FYHgfZPidzYP7w2S+s1b8g=)
2: kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl (hash: DMO/mHwXTiCXEs5k7Jlwov8kMjxnepi9FiBdLm3CcVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:ab:ee:8e:66:d0:00:70:c6:75:db:bb:f5:c2:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91188ca64c4670a6eb56b42a50a10588ad9647ee
Validity
Not Before: Nov 23 06:00:40 2024 GMT
Not After : Nov 24 06:00:40 2024 GMT
Subject: CN=5d2f6e21a8d99c213325a29ec4774ddd686add56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6c:77:18:1b:7d:54:03:00:45:39:12:20:b3:
7d:ed:d6:3c:cc:ce:f0:d2:3f:3a:dd:18:ba:67:5e:
27:48:45:6a:60:20:26:63:a4:ee:b9:c9:1d:2c:d0:
75:67:7f:01:25:97:7c:21:0a:f1:37:8a:25:ec:d3:
91:59:cc:65:1b:e1:1a:bf:fb:8e:e9:b5:eb:48:59:
6c:5f:26:7d:91:a9:f4:1e:c9:0a:47:5a:f3:2e:42:
74:49:39:71:dc:a0:08:76:7c:9d:f6:95:65:18:14:
9f:e1:40:30:43:9d:4b:de:74:0e:9d:b5:3e:76:3d:
c0:ca:13:36:b0:40:71:47:c6:31:5b:77:2c:0d:c4:
41:bc:9d:95:56:3d:fa:a3:99:b5:b5:98:05:c1:e6:
f4:8f:1c:f2:95:59:29:3a:69:59:30:49:c0:98:8e:
a8:e3:45:74:ef:2e:f9:75:e5:fd:05:49:8f:4d:07:
78:d1:14:0c:63:20:9a:5e:a8:9b:7f:5d:62:ad:51:
0b:8e:6e:01:9e:12:86:74:c3:52:0f:87:35:00:ae:
b7:68:70:a5:a9:17:b2:f1:d7:f8:3c:aa:83:ab:0c:
94:84:ba:10:af:eb:e6:14:c2:0a:59:a1:f0:a1:0a:
10:59:21:a1:a8:21:15:3d:cc:68:39:da:14:a0:f2:
65:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2F:6E:21:A8:D9:9C:21:33:25:A2:9E:C4:77:4D:DD:68:6A:DD:56
X509v3 Authority Key Identifier:
keyid:91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:0d:27:49:dc:78:1e:8f:29:92:dc:d0:31:03:07:1e:bc:4d:
89:f8:3b:15:cc:af:a2:1f:5f:c4:c0:17:b9:29:1f:00:3a:33:
30:4b:8f:33:16:8d:8a:8f:78:b5:26:72:e3:de:f1:6d:cc:87:
cb:e6:a2:43:5a:79:e7:4f:11:4c:69:66:90:82:6e:d7:57:92:
f6:74:52:af:77:fc:94:65:1d:d9:f8:b7:df:9f:ea:2f:35:dd:
11:35:43:5b:d3:fd:5a:c7:31:c8:3f:54:67:bf:b5:f7:6f:7e:
d1:9c:74:71:5b:ed:52:80:b8:d6:cc:8a:90:14:9a:8d:5f:0a:
5f:21:66:dc:42:84:76:ca:1d:fd:ec:52:04:af:31:88:9f:d3:
52:7a:48:5a:34:6d:97:d6:e7:fe:8e:7e:aa:f4:12:d4:0b:4a:
05:96:6e:4f:f4:94:d6:e0:4e:7f:11:b5:00:fb:47:ea:63:fa:
61:54:c9:cf:32:da:b6:83:1f:db:52:08:d7:98:df:e5:65:a8:
6c:e6:89:7c:1d:bb:62:84:de:c4:eb:b5:a7:dd:87:9e:ab:6f:
40:f2:21:00:e9:8a:eb:38:45:96:97:06:49:db:36:e1:e9:44:
47:ce:19:d3:e2:eb:ea:02:a1:31:1d:50:02:e4:44:f7:33:e1:
cb:1e:6f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:00:07 2024 by rpki-client on console-ams.rpki-client.org