Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
File: NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft (raw, json)
Hash identifier: 87ucmzS2+ZK4Di3qKH5sB8cIhS1TRga9dsmW33cD4cc=
Subject key identifier: BF:21:7A:95:E3:8B:9C:1A:F0:42:F7:D1:1B:DD:8B:70:11:FF:C4:E3
Authority key identifier: 35:01:77:24:57:E0:F8:27:B9:E9:20:B0:0C:D1:14:82:4A:5F:A6:21
Certificate issuer: /CN=3501772457e0f827b9e920b00cd114824a5fa621
Certificate serial: 019369DAE465C96ED322CBEAA709198F03B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 19:02:53 +0000
Manifest this update: Tue 26 Nov 2024 19:02:53 +0000
Manifest next update: Wed 27 Nov 2024 19:02:53 +0000
Files and hashes: 1: NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl (hash: JQ7gp+d8N/6Pzl0LUai980LroMDMezPVVVI9MxXMNBk=)
2: elWDusDYRJqiBaIO7NVJpheE6y8.roa (hash: cXRDoPJV05JHXkQoLp92uMCidMP8L9xluQrHg5CzY/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:e4:65:c9:6e:d3:22:cb:ea:a7:09:19:8f:03:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3501772457e0f827b9e920b00cd114824a5fa621
Validity
Not Before: Nov 26 19:02:53 2024 GMT
Not After : Nov 27 19:02:53 2024 GMT
Subject: CN=bf217a95e38b9c1af042f7d11bdd8b7011ffc4e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3c:24:a5:8a:b7:51:1b:15:31:7c:5b:bf:9d:
42:f3:bb:af:b1:d0:96:d3:21:ef:b8:e7:34:48:4c:
1b:64:a9:e5:ce:1a:32:48:76:02:9f:a9:29:1b:7b:
d5:e4:56:de:51:12:83:55:59:00:ef:d3:90:e0:61:
49:76:49:41:3f:66:b9:53:55:9e:fc:d1:21:50:dc:
14:76:98:ee:ee:ce:97:80:34:99:9a:12:a0:de:9d:
8d:42:e7:df:12:e8:57:3a:31:0a:46:da:2d:f9:df:
7c:d8:82:82:7c:3b:99:fa:2d:ba:35:02:36:25:44:
81:bd:da:fa:af:26:92:81:35:31:12:c5:b8:74:a3:
13:e9:4e:4d:16:7a:9d:e2:98:01:ff:ec:fa:c2:51:
32:f6:22:5e:7b:de:7f:81:77:4c:66:a8:98:38:38:
50:50:4b:43:d0:1d:12:4f:03:62:e1:e0:36:e5:1c:
05:b6:14:56:f3:33:6a:91:8c:43:c1:cc:73:57:2d:
ed:6e:72:17:87:f0:58:b5:b7:23:3d:92:bc:82:99:
31:49:0e:8f:0d:53:a4:63:84:99:1c:10:54:41:0d:
aa:4e:d0:dc:2e:0a:70:7c:7d:8d:2e:de:39:65:87:
40:05:b2:9b:b4:fc:9a:d5:f7:c6:4c:59:c2:b1:7d:
21:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:21:7A:95:E3:8B:9C:1A:F0:42:F7:D1:1B:DD:8B:70:11:FF:C4:E3
X509v3 Authority Key Identifier:
keyid:35:01:77:24:57:E0:F8:27:B9:E9:20:B0:0C:D1:14:82:4A:5F:A6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:65:78:0c:f7:f6:8c:15:5a:c9:0a:40:36:ba:df:36:25:6f:
cd:f1:46:db:7d:b7:96:48:15:0a:97:ab:ab:b6:ec:1a:db:18:
9e:4f:0d:08:5d:8f:6f:12:83:01:9d:12:94:97:bf:5c:94:af:
a0:21:a4:10:b7:e8:50:ce:02:36:95:f4:f6:6d:a3:e8:9d:7d:
29:2a:c5:c9:9f:7b:42:88:50:9c:64:8c:b9:fc:88:6a:33:c4:
62:1b:11:c9:68:cc:67:ab:ce:34:2c:99:1f:7a:03:2f:fb:d8:
50:c1:10:86:64:30:de:a3:1b:b3:54:e3:be:65:4e:2e:e5:88:
7d:57:f3:5d:7b:15:82:4d:ba:dc:c2:7f:1e:18:1f:bf:c9:8b:
2e:a2:a8:41:1b:fe:19:0c:a4:82:7b:98:71:22:9a:b6:e3:6b:
c6:45:86:75:20:0d:78:00:ec:af:f6:f6:40:d7:38:e7:c9:87:
f5:ba:cb:de:fc:67:ee:50:33:ff:1f:76:e9:de:0a:4a:57:89:
84:7f:ef:a3:30:31:18:18:ee:e3:c7:12:40:27:aa:7d:c1:84:
5a:3d:32:4b:a4:a1:44:4d:93:2e:a2:13:b5:29:19:3c:2e:15:
ed:a2:a1:d3:31:2a:1b:be:be:75:7a:b1:66:45:db:fa:f2:59:
c1:de:21:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:13:48 2024 by rpki-client on console-ams.rpki-client.org