Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: MzHqxZdw+6YMjBXuVL+5G80LeGFRtOZJ06R2ZgZihTQ=
Subject key identifier: 24:A0:72:B5:B2:72:66:B7:E3:25:F1:93:A3:A7:41:DC:E4:A5:54:EB
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 0193572DD8F51A814E09F992398872FD12F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 0304
Signing time: Sat 23 Nov 2024 04:00:42 +0000
Manifest this update: Sat 23 Nov 2024 04:00:42 +0000
Manifest next update: Sun 24 Nov 2024 04:00:42 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: 4zU9cCWVyKuAWryj61CLNPAfo3z/cC0SC3zlDbZUsac=)
2: 60m0IvtX5lxrjrezdZMal1jqoHI.roa (hash: ZVCD8Tijn0yA//ietc09REfNA1P83ybVta6/dplw/cA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:d8:f5:1a:81:4e:09:f9:92:39:88:72:fd:12:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: Nov 23 04:00:42 2024 GMT
Not After : Nov 24 04:00:42 2024 GMT
Subject: CN=24a072b5b27266b7e325f193a3a741dce4a554eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c7:f9:f2:58:87:e5:4d:55:5a:e2:53:36:b3:
6a:a5:2b:f1:84:ea:eb:1b:c5:4d:12:31:5e:aa:d9:
00:c4:8d:d1:88:00:68:97:bf:d8:c3:b2:bc:e0:c5:
03:ec:03:e1:03:05:b6:44:56:4c:44:35:09:39:01:
b0:5c:7f:b8:6f:f9:a6:f8:2e:63:30:9b:02:35:8b:
5a:59:1f:3e:8f:a0:6d:ca:a5:b3:5c:34:2b:5b:a7:
99:39:41:1a:f0:f1:9f:20:81:f5:a0:0c:e1:c1:18:
fd:1c:f6:5e:df:36:a1:8d:cf:dd:41:15:bb:51:35:
04:bc:6f:4f:8a:6a:77:72:1f:bb:3e:8b:6c:29:e2:
02:46:31:6c:18:b4:01:b2:c0:43:94:f6:3c:c5:e7:
e4:19:d5:61:ec:3c:6c:dd:a7:d4:5d:a3:7b:19:94:
fd:98:04:c2:cf:a8:5f:6f:65:a4:fc:f1:c5:79:26:
bf:24:6d:2c:c7:02:38:32:5f:2b:27:5a:d0:19:d3:
4c:e2:d1:25:32:73:2d:51:fb:31:23:5b:21:9d:c9:
d8:61:55:dc:b1:d9:b9:23:7b:8b:b6:2e:6e:2c:ab:
8a:0d:80:7e:90:54:41:13:a9:4f:1a:55:c3:5a:98:
6f:51:1d:3b:9d:77:e2:2b:6e:6b:02:ed:21:e4:50:
8a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A0:72:B5:B2:72:66:B7:E3:25:F1:93:A3:A7:41:DC:E4:A5:54:EB
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:de:dd:ab:b1:d6:b8:2a:be:e9:75:b5:cb:6f:d3:20:7e:3b:
83:09:9e:2c:a3:61:a0:e5:15:33:96:c8:c4:34:60:1c:f3:29:
a9:9a:a4:a6:67:98:96:2c:ca:c0:19:1e:e8:64:a3:cf:ea:73:
dc:36:46:a0:4b:bf:03:bb:a8:e8:29:58:37:91:c5:b8:29:b6:
5c:0d:31:82:f0:98:8d:bb:08:d0:ad:de:49:30:de:ea:76:78:
69:33:d6:5d:c9:34:98:8c:6b:12:61:b4:1f:25:6f:7e:46:88:
21:20:c5:27:b9:c5:8c:b8:fb:76:15:c8:a2:f7:fc:4a:49:c7:
8b:6c:5f:13:e6:40:f7:c3:25:a4:69:93:a2:65:e8:8f:65:3f:
46:0e:39:49:d1:f5:50:42:62:a7:3a:17:ca:e9:85:3e:b3:e1:
29:1b:36:eb:7e:1b:51:54:74:df:25:ad:ca:0a:34:a5:10:a6:
71:83:be:37:89:41:f5:b9:39:d4:4f:92:5a:c9:ee:3d:52:d1:
39:bc:2f:08:ae:6c:f5:64:b1:e9:38:0f:f5:c9:28:10:a5:88:
c5:06:36:e1:4d:db:b0:31:63:fa:2a:7f:6c:cd:fe:fc:b9:77:
8d:94:a9:d8:c7:c0:67:a5:5a:67:8d:c3:ab:09:70:ec:bf:44:
83:b3:63:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:51:09 2024 by rpki-client on console-fra.rpki-client.org