Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json)
Hash identifier: LnP7id+K/h2aQJtKfivzRPgqn/iWA8KBy1mQcamWrGc=
Subject key identifier: D4:D9:06:4D:69:31:CE:04:91:46:95:46:18:88:F4:C2:39:6D:20:C2
Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Certificate serial: 0193572D94B60871A34569D50B42E9522114
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
Manifest number: 136E
Signing time: Sat 23 Nov 2024 04:00:25 +0000
Manifest this update: Sat 23 Nov 2024 04:00:25 +0000
Manifest next update: Sun 24 Nov 2024 04:00:25 +0000
Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: TZ8MmGboyM6Lr0jI/oPHmo/jtGUxBXFB7rvPHrnHQEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:94:b6:08:71:a3:45:69:d5:0b:42:e9:52:21:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Validity
Not Before: Nov 23 04:00:25 2024 GMT
Not After : Nov 24 04:00:25 2024 GMT
Subject: CN=d4d9064d6931ce04914695461888f4c2396d20c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f2:4c:08:d5:98:df:5b:d8:2a:14:a2:d9:e4:
12:bd:77:84:71:6d:7a:5c:62:1d:c1:34:11:1c:95:
e6:9d:19:53:e9:4a:c7:52:f5:2f:5c:0a:38:08:13:
a2:4d:06:65:f1:95:b3:64:43:dc:19:5c:63:e1:a6:
54:3c:96:2e:ea:70:bf:be:6f:00:a8:bc:f6:d5:6c:
a3:01:1b:90:c9:26:49:4b:09:f5:39:09:29:fe:cc:
e2:0f:96:2b:9a:e4:2f:1d:0d:aa:29:ed:75:49:6f:
93:d0:b8:0e:70:ff:cc:0a:43:b4:ae:0b:be:3d:fa:
f1:8a:88:55:15:3c:65:c5:dc:5c:54:a2:aa:65:f4:
77:7e:9c:93:a9:d5:dc:7c:54:b3:d7:68:c6:1b:98:
be:bd:e6:c7:64:46:a9:36:80:47:df:06:c4:2e:71:
4c:d0:bd:68:ea:db:2c:7b:2f:8d:a0:f0:9d:0c:ad:
1b:87:83:3c:b8:cf:02:96:1c:fb:47:7b:68:81:3d:
da:13:62:b1:8f:f2:74:b7:25:00:df:dc:d7:a3:e6:
1d:8b:99:e8:31:d5:39:e6:6c:7f:ff:08:e6:37:0f:
b4:fc:b0:04:bc:dd:f6:b4:27:81:e4:19:aa:46:d0:
40:38:70:71:29:3f:93:38:5d:72:93:b5:a4:e6:33:
57:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D9:06:4D:69:31:CE:04:91:46:95:46:18:88:F4:C2:39:6D:20:C2
X509v3 Authority Key Identifier:
keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:95:6e:91:5c:51:ff:ed:11:2e:7b:29:c2:03:91:6b:a6:89:
79:ad:d5:27:f4:78:cb:24:b6:39:c5:99:f0:02:a7:5f:d5:c0:
54:e6:6c:cd:1f:93:cb:83:2f:a9:94:0c:cf:f7:9c:96:8f:1d:
d1:de:c9:39:e7:6e:8a:02:6e:a4:3e:64:7b:3f:ac:f0:95:d4:
80:15:f2:f8:58:18:3e:66:12:2d:d2:31:3d:82:c8:cc:af:e1:
02:64:a2:d1:3b:bd:79:1a:d4:c3:62:86:60:fd:7b:c9:0d:25:
a7:ae:30:5d:13:1d:02:f1:9f:0e:85:e2:6a:a8:7b:90:0f:49:
5a:62:d8:a7:cd:5f:1b:2e:ac:7b:fa:d8:0c:47:ae:bb:96:a9:
66:09:f7:c0:f8:c9:4e:25:75:be:17:00:a5:36:86:44:d5:2e:
d1:81:c4:6f:88:60:f2:ee:3d:d9:be:42:f6:ff:05:2d:5f:3e:
b4:f0:3b:ae:5d:ba:e8:0c:55:d2:ea:c1:2b:29:01:8c:4f:4a:
df:14:52:d8:28:ef:bb:66:6e:13:45:1e:36:47:36:95:1e:46:
ac:82:6f:df:40:93:6f:00:b1:60:46:d2:50:bb:e3:26:28:38:
b6:e3:23:91:23:6c:49:fe:0b:ed:c8:07:be:3c:b4:57:5d:1e:
02:11:0d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:51:46 2024 by rpki-client on console-fra.rpki-client.org