Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: dTfLUkiLmgXCGpDqnIAa4wcbYMTkorpKBCEknyl0Zdc=
Subject key identifier: 04:9D:DB:D7:23:E5:DA:DB:2C:A4:53:BE:13:17:22:93:B5:0A:F5:86
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 0193572DBC3A632D6FB6B1760CC2F3D79607
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 04:00:35 +0000
Manifest this update: Sat 23 Nov 2024 04:00:35 +0000
Manifest next update: Sun 24 Nov 2024 04:00:35 +0000
Files and hashes: 1: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: IX3GqpZPfmyQqRFqW4glqzThVqXZ6aieFL1MhTM/sjU=)
2: Yh2c_GMzK3-ijSMXLN98lVp8G-A.roa (hash: pBXbcVOr8+NQ8LoLA5X/tpdifZDHN83WO+8liZ4BTk0=)
3: jwfrcBCg6MoNhSy3KxKnQj8V_II.roa (hash: z5q2uwN5T07R2skggzSIvtjbYq/0ixhJfTSaucS8h6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:bc:3a:63:2d:6f:b6:b1:76:0c:c2:f3:d7:96:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Nov 23 04:00:35 2024 GMT
Not After : Nov 24 04:00:35 2024 GMT
Subject: CN=049ddbd723e5dadb2ca453be13172293b50af586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f9:fc:30:ae:0d:8f:c6:f0:ee:39:ae:cf:44:
b6:c0:a7:cb:78:72:84:17:cd:c3:e4:b0:34:62:a9:
1c:7e:c1:28:83:d3:bd:58:a9:6c:ba:a9:0f:29:c3:
1a:6d:00:db:d4:ff:22:16:b2:1c:34:7d:e7:cb:ed:
67:33:7b:07:97:06:66:61:07:6d:62:43:db:43:aa:
41:3d:45:9d:1e:b3:fb:d4:49:a1:2f:18:b3:c7:80:
ef:10:f7:34:51:8d:d5:fe:b6:0b:c2:1b:76:32:84:
3e:c1:47:76:de:34:ac:4a:18:7d:0e:0e:08:96:ac:
6f:17:2b:44:b2:f4:c6:86:c5:d8:0a:df:10:cb:1e:
d5:ab:da:87:0b:7a:cc:ed:ea:67:20:5c:94:b6:83:
3a:a5:0b:52:8f:05:ac:e5:6c:7c:ff:5f:dd:72:a1:
9a:8c:e6:e0:18:d6:97:fe:a9:b9:79:51:ce:9e:37:
a5:77:d9:3d:0b:81:38:8b:91:7b:25:5c:ca:55:9e:
c2:7a:d0:ea:9b:39:c2:8b:d7:6e:44:a4:9b:38:aa:
c3:3f:48:26:c6:50:57:5f:65:a2:5e:7e:fd:e7:6c:
c3:d8:12:d7:ac:5d:ae:ce:51:4b:f8:c0:18:e1:c4:
a1:6a:cb:2d:37:0b:c6:ac:c7:31:d6:18:43:3a:7b:
f4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:9D:DB:D7:23:E5:DA:DB:2C:A4:53:BE:13:17:22:93:B5:0A:F5:86
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:15:3d:1c:9d:6e:ce:e9:c9:3d:c7:00:86:71:41:57:2e:99:
c7:6b:57:f1:a0:b0:eb:24:b4:b2:96:9c:56:fe:07:87:3a:da:
09:0e:43:ab:34:d3:08:2d:ea:69:2d:36:46:86:d1:bb:9d:2f:
ea:c8:26:0f:c0:f7:5f:8c:9b:61:ce:d2:9f:6a:c3:fa:e7:23:
6e:c1:43:da:87:28:30:7d:f0:8a:d1:76:d4:43:76:a5:da:7a:
cd:57:38:6d:27:0a:0f:64:c7:c4:73:45:29:9e:47:b5:d1:80:
5a:27:50:b0:67:cf:61:f9:32:f8:22:f3:34:29:ae:8e:8a:85:
03:f5:c1:12:bd:17:7d:a0:a6:c5:ed:d8:43:de:f3:53:e8:64:
91:74:77:3a:9f:35:08:ed:9c:4b:90:11:8d:a9:da:28:75:27:
2d:7c:6e:6e:64:f2:89:1b:ff:29:a4:8f:76:5c:24:21:b7:b9:
39:32:ce:45:14:e1:ed:d1:8c:89:af:0d:8e:3e:a0:0a:86:13:
30:e2:57:68:c8:d7:43:08:ff:1b:da:d7:f5:32:10:85:38:d6:
22:67:c2:d3:09:c3:98:82:ff:d6:4e:2a:ae:68:48:f2:d5:bc:
f3:f0:65:01:da:84:13:12:aa:ec:90:80:d9:92:3b:fc:d9:57:
9e:75:b7:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:12 2024 by rpki-client on console-ams.rpki-client.org