Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
File: KgGcraFj42jMM2J2PyBrPerE0yA.mft (raw, json)
Hash identifier: xaR+cRbtHg8QONGo58CnEwATU2Lx03ZaRskqmNjCuLc=
Subject key identifier: 12:B1:EB:9C:EC:BE:C3:8B:A7:4E:49:3D:21:5A:F6:E7:B7:76:0E:18
Authority key identifier: 2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
Certificate issuer: /CN=2a019cada163e368cc3362763f206b3deac4d320
Certificate serial: 01935351372F3F7B07972EDD52C68C8870C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
Manifest number: 08DD
Signing time: Fri 22 Nov 2024 10:00:51 +0000
Manifest this update: Fri 22 Nov 2024 10:00:51 +0000
Manifest next update: Sat 23 Nov 2024 10:00:51 +0000
Files and hashes: 1: KgGcraFj42jMM2J2PyBrPerE0yA.crl (hash: uFlEiOzxVTvVcgrlmO9pAeWG5bVv28ktROF24LsEPVE=)
2: Sm77MpX9YleplIxaurnHn7c31Wo.roa (hash: wROQbxEt2+P94m0JKevKhkQD3Lz0s2Cax2F0H1VBsSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 10:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:51:37:2f:3f:7b:07:97:2e:dd:52:c6:8c:88:70:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a019cada163e368cc3362763f206b3deac4d320
Validity
Not Before: Nov 22 10:00:51 2024 GMT
Not After : Nov 23 10:00:51 2024 GMT
Subject: CN=12b1eb9cecbec38ba74e493d215af6e7b7760e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c4:db:a8:c2:d7:e0:b1:4f:34:31:be:01:5b:
0e:aa:c7:6f:7a:39:81:33:a6:f5:db:6b:5a:48:24:
f1:72:74:96:9f:8e:5a:9c:3c:6e:e6:63:6e:d8:a1:
16:5e:8b:6e:a2:a9:97:54:f6:82:43:1e:32:6d:04:
ec:c4:11:26:2c:bc:5c:98:d7:f4:be:15:87:ec:10:
f2:96:72:d2:94:ca:15:e4:b8:e6:fb:d0:e7:ff:63:
1b:65:6f:60:14:30:30:b1:9b:64:d3:f9:cd:39:b8:
72:72:7d:9d:b9:e3:cb:81:e0:5d:7f:b0:b4:04:c6:
a7:76:95:93:25:e1:68:71:a0:f5:df:f5:39:e3:9c:
cd:78:cf:3f:38:c3:b8:31:40:3b:4d:17:27:74:09:
88:d6:d8:b2:9d:45:b6:ad:2c:2d:9f:b4:16:6d:4f:
72:89:6a:e0:b1:36:43:3b:a4:d1:4f:33:d8:78:4b:
87:12:65:1b:fd:ae:5f:6e:e7:5b:10:d1:45:64:2e:
fa:f0:ff:89:27:8b:ee:04:03:78:d1:a0:f1:ab:1a:
1d:a8:08:8c:0b:7a:09:6c:d4:ae:13:15:2a:a2:2f:
6f:0a:5b:12:fa:ff:b8:79:09:1b:d5:af:57:b7:1b:
77:b7:9c:d7:52:89:15:ff:f0:cf:83:91:aa:7e:17:
fd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B1:EB:9C:EC:BE:C3:8B:A7:4E:49:3D:21:5A:F6:E7:B7:76:0E:18
X509v3 Authority Key Identifier:
keyid:2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:08:fa:69:a0:02:ee:94:62:d5:29:da:66:aa:20:88:d1:57:
e5:34:bf:c2:c3:90:11:17:08:be:5a:10:b4:8e:20:b1:02:3b:
20:42:de:1e:5f:e8:8d:32:02:e8:67:a5:a2:cf:e4:46:47:25:
57:33:13:cc:f8:89:55:03:38:cc:73:a9:6d:33:8f:b6:ab:00:
7e:c5:e5:55:c4:67:97:a1:68:4b:d9:e4:cb:94:e0:a2:d7:45:
2c:e0:54:db:1b:91:1f:ef:95:3f:2a:51:12:d6:a6:bc:a2:40:
2c:cd:8e:fb:96:2f:fa:73:09:28:f8:8f:97:47:e7:87:a6:ed:
7c:1d:da:dd:d4:36:3e:47:e3:3a:43:ed:a1:86:57:a2:a7:35:
b5:be:6d:92:e9:8f:fb:3e:21:6d:fc:80:a8:b3:9a:f5:22:65:
1d:91:b5:4e:5c:e9:b7:f3:45:da:26:a0:6f:45:80:8c:67:b7:
d0:49:cc:23:d1:bd:31:7d:06:9a:64:68:9b:92:41:6f:3c:dc:
9c:96:e4:c6:66:12:10:d4:79:5e:bf:e3:b8:a0:c0:d0:e0:ca:
8d:ab:14:7a:1a:d3:70:16:84:26:a6:ce:f9:f8:cf:38:af:45:
da:2b:17:f1:5e:96:79:a3:6d:d5:76:ee:7d:3a:04:0d:0b:b0:
c5:d0:33:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:33:44 2024 by rpki-client on console-fra.rpki-client.org