Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
File: kjlpG6eScAY69DZNMIYxNl6QEWo.mft (raw, json)
Hash identifier: MNrjWhpWSmtQoa19sop6uL+cKXgfMoYD277ASMS+h9M=
Subject key identifier: D2:AE:AF:27:71:23:5C:79:24:13:3C:F2:BF:56:3E:D2:19:A8:DD:2F
Authority key identifier: 92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
Certificate issuer: /CN=9239691ba79270063af4364d308631365e90116a
Certificate serial: 0194BABB9955E728FFE47A33139A8B62B12B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
Manifest number: 0B83
Signing time: Fri 31 Jan 2025 05:00:44 +0000
Manifest this update: Fri 31 Jan 2025 05:00:44 +0000
Manifest next update: Sat 01 Feb 2025 05:00:44 +0000
Files and hashes: 1: kjlpG6eScAY69DZNMIYxNl6QEWo.crl (hash: 0eKO1XLI1qUJM6Ve/WzRYNtgRdF/W2RkJAUUA5FfEno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:99:55:e7:28:ff:e4:7a:33:13:9a:8b:62:b1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9239691ba79270063af4364d308631365e90116a
Validity
Not Before: Jan 31 05:00:44 2025 GMT
Not After : Feb 1 05:00:44 2025 GMT
Subject: CN=d2aeaf2771235c7924133cf2bf563ed219a8dd2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ea:64:c5:e8:31:f1:77:2e:69:f0:14:97:30:
ea:0d:9a:44:2e:8f:a5:da:3f:6d:54:5c:dd:97:aa:
aa:fd:b8:03:3e:ea:89:54:0d:fc:74:c1:7a:7a:cd:
4a:81:e1:d9:3e:f2:91:e6:5e:89:80:21:6d:7f:7f:
18:1c:27:35:a7:44:0e:b9:61:73:bc:df:ff:2e:43:
1f:0e:98:47:6c:c1:fd:e4:1a:ac:6b:4c:38:40:99:
ee:c0:b8:0f:59:19:48:d7:1a:6c:14:da:ea:90:50:
a5:0c:cc:80:24:84:99:be:dc:a6:46:08:84:70:18:
79:f4:6c:22:fc:95:8a:7e:65:ba:32:17:d1:91:b9:
7d:4f:6f:3f:49:e3:28:d5:0b:01:54:00:c1:c8:49:
17:5e:31:8c:78:0b:cd:3e:e0:3f:af:e5:8e:bf:d9:
81:32:44:b9:1f:e0:ea:ce:e6:7a:d4:f5:e9:ff:d6:
39:b6:a2:be:f7:bc:ab:71:db:40:e9:48:89:08:04:
c8:2e:31:73:3c:23:68:d1:55:ec:1d:e4:f7:71:b6:
ff:df:97:17:91:25:4a:ff:22:fe:4e:60:4b:0e:73:
8a:13:92:d0:fd:46:08:7f:d3:19:ec:05:75:6e:f6:
ee:90:a2:56:9b:96:b5:5e:f5:46:d8:f7:40:52:34:
47:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AE:AF:27:71:23:5C:79:24:13:3C:F2:BF:56:3E:D2:19:A8:DD:2F
X509v3 Authority Key Identifier:
keyid:92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:42:76:ea:a1:c8:31:27:ca:cc:77:f4:5a:de:52:32:82:24:
d3:ce:3d:9c:e5:ac:4a:7b:50:bf:02:fc:04:a8:0e:d3:6b:d2:
f9:fb:de:93:6c:92:39:41:e4:dc:30:fc:e5:2d:6f:bb:c4:0f:
db:b3:24:c4:4b:df:6c:4f:35:3c:aa:b1:79:68:2d:98:29:c2:
06:7d:96:10:cc:33:95:49:cf:f2:08:45:00:e7:ac:31:3a:35:
29:55:7a:fc:d0:ea:69:8d:22:fb:0a:d7:a2:b3:c7:6d:5d:a4:
f1:17:f0:2a:45:82:4d:0e:04:f8:6d:9e:c5:56:f3:d3:e6:ba:
fc:e6:ad:85:c7:e8:e4:ab:36:fd:5b:ea:98:55:c8:5f:b7:6a:
78:c9:30:cc:ec:ba:76:5a:27:98:e7:02:08:b7:fe:d7:af:60:
d0:26:75:2d:95:e3:b9:1a:a9:65:19:de:27:e3:1f:cd:04:4e:
47:03:15:5d:a3:cf:19:f7:77:57:28:d5:29:04:75:a5:eb:97:
1f:e5:58:7d:27:87:8b:b0:1d:b8:bd:05:82:34:42:c4:62:6c:
a1:c6:b6:dc:09:72:1d:a5:d8:ae:ab:40:66:1b:33:68:c7:c5:
a6:de:9c:3f:1d:1a:d2:8e:32:f4:02:06:3a:f1:18:33:1f:24:
8d:fb:b8:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:29:06 2025 by rpki-client on console-fra.rpki-client.org