Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
File: kmhshS82--n8i-d8QJtSJqbuVNU.mft (raw, json)
Hash identifier: JjVdJkpwMbeBGBKn3RwB67L7VVaa/aOeJocM/UnV0xw=
Subject key identifier: 72:E8:39:AA:CD:38:FD:A1:1A:8E:BA:77:3A:A2:CC:4F:DD:43:EC:F9
Authority key identifier: 92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
Certificate issuer: /CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Certificate serial: 0194C42C4003EB65093B78A9CF78B1BA7E5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
Manifest number: 1431
Signing time: Sun 02 Feb 2025 01:00:21 +0000
Manifest this update: Sun 02 Feb 2025 01:00:21 +0000
Manifest next update: Mon 03 Feb 2025 01:00:21 +0000
Files and hashes: 1: IvJ7HvT-6tCK5GKbaPNyk54ml9M.roa (hash: 7zWh/VLAgd5GsVxZJpmQ4YamOZV0jGAf5fVHM29zO30=)
2: kmhshS82--n8i-d8QJtSJqbuVNU.crl (hash: 8YAGl+r69dsmZA5AF4wzqSRqMsEyfUpIME7AERs/WS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:40:03:eb:65:09:3b:78:a9:cf:78:b1:ba:7e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Validity
Not Before: Feb 2 01:00:21 2025 GMT
Not After : Feb 3 01:00:21 2025 GMT
Subject: CN=72e839aacd38fda11a8eba773aa2cc4fdd43ecf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f4:ec:25:4c:7e:08:b2:9f:21:02:9f:a3:b5:
31:4d:4f:c2:ea:6f:36:ea:dc:e1:e8:33:57:36:a2:
d3:99:87:d5:93:cf:67:b8:53:17:ae:bd:a3:18:36:
91:5e:f9:b5:25:06:1e:e2:78:99:ba:74:c0:37:e3:
ba:86:de:84:24:ba:09:e0:eb:fd:e3:61:24:b5:f0:
20:1b:96:d4:3d:c3:10:a5:54:30:10:22:9f:61:e0:
77:96:6b:ba:ee:24:84:17:c3:7a:0c:0a:1c:34:40:
c0:d7:15:e0:94:82:13:ba:a1:02:f3:0c:2b:74:da:
94:b2:75:c8:4e:88:da:d1:20:48:fe:ec:21:50:2c:
68:63:9f:c3:2c:24:fc:08:9a:1f:6b:95:55:58:4d:
6e:2d:19:3b:b6:d2:57:26:34:0b:2a:b5:75:7b:56:
28:30:51:28:e9:7a:e5:bc:9b:f3:76:45:5a:09:e8:
6b:94:7c:ed:15:1e:8e:e9:ac:7d:74:72:71:f9:bc:
4d:35:b6:c5:f7:f3:e2:1c:67:aa:c1:92:32:51:14:
b3:1a:41:fa:c1:2d:89:56:cf:2a:47:d3:bb:9f:66:
81:d3:2b:1b:52:fe:1c:8a:e0:a2:eb:8c:c9:c7:5b:
9d:07:9a:55:a7:f9:67:3c:a4:6a:b0:4e:f1:5b:6c:
6d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E8:39:AA:CD:38:FD:A1:1A:8E:BA:77:3A:A2:CC:4F:DD:43:EC:F9
X509v3 Authority Key Identifier:
keyid:92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:17:f3:ed:9d:b0:62:66:8d:8b:08:f1:0a:1c:3d:79:6f:3d:
41:bb:d4:a3:28:d7:13:b2:97:e6:86:08:1f:42:d5:5f:f1:a0:
07:90:24:57:e1:f1:3c:40:ec:fa:fe:ba:10:c6:e4:b9:fd:df:
f2:a4:70:e5:08:ec:1b:ab:92:12:42:7b:4d:ab:2c:a0:cb:88:
74:91:b1:1a:85:3a:54:8c:ca:13:49:c0:2c:a0:d6:2d:5c:f6:
27:8f:a0:55:7f:58:08:31:20:f2:4a:1d:28:9e:90:32:1d:75:
0f:05:88:64:7b:77:57:eb:7b:4e:ca:f7:45:83:c6:19:aa:27:
ab:0d:df:f6:a6:9d:5c:79:b1:16:97:7b:bb:ca:3a:18:63:e1:
28:40:7b:03:38:74:bf:63:8a:c6:33:54:29:58:c3:c7:83:cd:
ed:1c:f3:d1:f4:7c:a5:03:64:7b:f3:5c:02:c3:62:06:9d:8a:
c5:f1:e8:ba:27:02:b1:1e:78:18:69:13:b3:8d:2b:83:82:e0:
bc:22:c1:72:68:2a:91:36:73:4f:87:f1:19:0c:4a:a6:7b:f9:
f9:bc:63:48:a6:8f:c0:8b:c6:6e:4c:73:9a:c8:6b:ec:82:35:
d5:be:e8:9e:2c:7f:35:f6:7f:ed:46:07:db:d2:67:58:f4:60:
68:04:8e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:22 2025 by rpki-client