Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
File: kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft (raw, json)
Hash identifier: gpfXt2ltX1Yl7SAI5T0MvMnEMI8AQW8OCUVKgPN7T5g=
Subject key identifier: 01:A1:93:F3:F6:44:E7:69:98:76:32:33:10:5A:8B:28:94:A7:EB:A3
Authority key identifier: 91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE
Certificate issuer: /CN=91188ca64c4670a6eb56b42a50a10588ad9647ee
Certificate serial: 019073F63D238A556EA230540A0F8C5AEDE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
Manifest number: 0684
Signing time: Tue 02 Jul 2024 15:00:35 +0000
Manifest this update: Tue 02 Jul 2024 15:00:35 +0000
Manifest next update: Wed 03 Jul 2024 15:00:35 +0000
Files and hashes: 1: UTTripa3cZ-E4YKxrYv4DAimqlw.roa (hash: Z4tiS+DDVTjOL70213Q+/FYHgfZPidzYP7w2S+s1b8g=)
2: kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl (hash: KG32dqQASeNhjAPSzHYNb38rant4BroFZQUYBeB5GP0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 14:20:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:73:f6:3d:23:8a:55:6e:a2:30:54:0a:0f:8c:5a:ed:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91188ca64c4670a6eb56b42a50a10588ad9647ee
Validity
Not Before: Jul 2 15:00:35 2024 GMT
Not After : Jul 3 15:00:35 2024 GMT
Subject: CN=01a193f3f644e76998763233105a8b2894a7eba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:39:c9:41:94:ae:6e:fd:6f:5d:89:80:fd:
76:07:35:07:2c:12:26:cc:d7:ad:d6:2f:c1:4e:40:
5a:45:42:5e:02:ae:1e:9d:71:2c:45:22:2c:79:56:
df:9f:72:d4:75:08:f7:80:17:63:0a:7f:13:85:3d:
72:e9:fa:52:25:90:47:a4:a8:6d:ed:66:33:38:7b:
b0:da:19:dd:d9:87:c1:1a:0e:07:81:e8:7c:e9:8f:
66:fc:29:87:fa:50:ca:65:0a:5e:3b:7f:a6:67:c4:
5a:cd:0a:73:33:a9:2e:01:d8:0a:2a:9e:c3:06:62:
85:20:72:1e:ad:82:8e:57:42:36:6d:bb:2a:00:28:
c8:ee:9f:7f:58:5e:38:37:cf:66:c5:bf:28:f3:b0:
65:9c:a7:79:b9:60:cc:a0:a0:c4:9c:c6:00:83:9f:
8d:35:d9:37:b7:fa:7c:da:5e:3c:13:3d:8e:56:f2:
a8:eb:a2:4d:15:2c:ef:9f:33:cc:d2:e7:7d:ad:24:
46:14:86:bf:41:7d:c7:ed:77:c6:80:d4:cb:cc:51:
27:af:36:8d:80:81:dc:39:a9:38:e3:7f:ce:5b:d8:
c7:d5:0f:a3:13:1e:76:46:66:0c:06:0b:1e:ed:35:
6c:c2:10:e8:34:b7:16:a5:27:05:ab:b2:74:a4:7d:
8e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A1:93:F3:F6:44:E7:69:98:76:32:33:10:5A:8B:28:94:A7:EB:A3
X509v3 Authority Key Identifier:
keyid:91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:6d:5a:57:20:9a:36:ac:32:ae:ec:78:6d:39:50:3d:15:d1:
e2:11:18:92:07:8e:a1:03:54:66:c9:9a:9b:38:15:fc:3f:fd:
04:50:71:1b:e0:b3:d9:80:c4:5d:8f:db:ea:ea:3f:eb:38:4d:
4f:0d:f9:66:2f:d6:00:85:e2:db:47:d0:7c:7f:67:38:fe:cf:
73:a5:20:16:26:7a:e0:fa:03:b7:ea:eb:bc:55:75:d7:52:69:
74:b8:b7:7a:38:53:0c:6d:82:6f:76:22:dd:3d:22:03:50:a4:
23:5f:95:96:9d:8a:23:b5:82:29:d5:92:6b:4c:f2:8f:a2:64:
2e:a7:1b:77:68:c9:69:e2:ab:a3:08:57:9c:45:24:37:50:03:
42:96:94:24:af:f6:d9:a7:6c:1a:e8:72:7a:dd:e3:22:61:3c:
88:a9:30:2c:4d:08:53:75:00:9c:85:ce:b6:e7:8f:6e:c9:52:
d9:de:47:98:a0:fc:0f:b9:8d:64:59:e3:06:c1:20:50:28:3a:
6b:b1:f6:33:5f:d0:f1:9a:3f:f8:e8:a8:2b:98:22:ed:f0:50:
17:15:9e:51:f4:16:85:b5:18:74:1f:e9:f3:36:b9:12:50:41:
b1:cb:c4:da:a4:82:da:ab:4f:93:aa:74:8a:26:8a:29:1c:3d:
2f:fa:7d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 22:17:43 2024 by rpki-client on console-fra.rpki-client.org