Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
File: KqPjBJdiCGjhestHhoLOegvRNTQ.mft (raw, json)
Hash identifier: u2NBEIuriF86YfRwGbYKhwUknJX52v8VNr1DV5CcXhk=
Subject key identifier: 66:10:C3:05:78:80:95:94:35:6D:1D:25:3F:B7:4B:EA:AF:65:11:81
Authority key identifier: 2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
Certificate issuer: /CN=2aa3e30497620868e17acb478682ce7a0bd13534
Certificate serial: 0193587899D8357D52B4969541870FFD0344
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
Manifest number: 1370
Signing time: Sat 23 Nov 2024 10:01:58 +0000
Manifest this update: Sat 23 Nov 2024 10:01:58 +0000
Manifest next update: Sun 24 Nov 2024 10:01:58 +0000
Files and hashes: 1: KqPjBJdiCGjhestHhoLOegvRNTQ.crl (hash: OBdY1oFViLKmcN7ghemOt1hQrjnOBwUV0FR999Tg+7A=)
2: ZOWGFapmqYmYjG1ZzoOe6jNiNV8.roa (hash: IAmugNWbNIxTCfUrbHxnaivO0SsEuAS4hdFkXNnQFyA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:99:d8:35:7d:52:b4:96:95:41:87:0f:fd:03:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3e30497620868e17acb478682ce7a0bd13534
Validity
Not Before: Nov 23 10:01:58 2024 GMT
Not After : Nov 24 10:01:58 2024 GMT
Subject: CN=6610c30578809594356d1d253fb74beaaf651181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d9:ea:7e:19:58:23:d0:39:6b:d9:ce:04:04:
c8:15:06:a8:ed:56:63:df:62:84:6a:c5:f2:d3:8b:
be:a3:8c:b1:e3:a1:0b:e6:d2:7c:c5:88:cf:65:9e:
dd:df:51:a3:ab:3c:9d:75:e8:b2:50:a4:05:ea:72:
b1:3a:ba:b0:0d:77:99:bd:90:11:69:d6:dc:98:f4:
26:08:88:bb:bd:2e:02:7f:57:99:0a:2d:4d:86:82:
0d:1a:55:64:72:cc:a1:47:f3:33:f6:d7:a4:bd:8d:
c4:6d:00:51:1e:6b:22:7a:58:0d:cb:f1:68:7d:8a:
07:e3:cb:63:35:80:43:4c:eb:59:67:c0:d2:c9:ff:
1b:0e:42:70:f1:b3:d2:5e:d3:5e:96:1d:10:34:d6:
b9:90:e5:8f:65:83:59:fe:ee:15:36:0d:d1:ed:cc:
b4:3b:1a:d6:7b:6e:aa:be:55:ea:0d:b4:68:fb:99:
2f:88:fb:16:49:be:e1:5a:21:1f:ae:78:e9:6d:85:
ae:0b:be:e3:9a:18:6f:21:81:f2:91:44:5a:63:e7:
19:28:f1:64:d7:59:a7:11:ef:3a:f5:6e:bd:a6:0b:
0a:f5:5c:35:89:ed:56:c5:bb:75:b8:ff:bf:d8:fb:
f9:93:f7:6a:72:04:eb:3d:6c:94:a7:10:12:de:a6:
29:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:10:C3:05:78:80:95:94:35:6D:1D:25:3F:B7:4B:EA:AF:65:11:81
X509v3 Authority Key Identifier:
keyid:2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:9b:2b:15:fd:de:d2:87:9c:b3:28:65:4e:6c:fd:59:d4:ea:
8a:7a:8d:e7:39:f4:2c:10:c9:4c:c2:12:ff:7c:be:7e:ad:76:
8f:c5:94:21:db:07:4f:08:b4:ff:25:4e:18:d0:88:79:cd:0a:
d4:6c:52:c1:ac:24:39:fb:b8:cc:9f:c1:3b:3c:cd:9a:ed:82:
8f:c2:d5:54:2a:96:4a:e6:76:5d:23:01:36:8e:3b:70:a8:6a:
0e:58:5a:75:f9:90:3f:40:57:1c:e9:51:0b:90:67:d2:a0:fd:
93:2b:98:5a:43:71:5c:94:ee:f8:fc:54:9c:43:fe:c8:bc:a3:
f9:ef:2d:6f:bc:97:e3:02:a4:f6:6d:32:ef:98:a9:c1:42:48:
e6:ad:13:70:59:8e:7e:db:4c:b8:28:ca:b1:46:18:c5:c1:12:
d0:bf:ea:ca:92:4c:1e:b2:48:8c:f3:e4:e5:a2:fa:17:32:ea:
ec:c5:2e:ab:f5:52:0c:f3:17:f3:e1:6c:ba:8c:49:89:19:e4:
19:89:1f:98:6d:d5:f7:85:65:8a:df:e0:0f:28:34:c3:71:96:
eb:b0:da:64:55:b1:0d:ff:8e:c7:d5:6b:27:d4:f8:a4:63:68:
c1:87:03:4f:a6:26:a7:79:10:64:35:b4:4d:b2:f4:5c:bb:83:
71:2b:c3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 11:59:10 2024 by rpki-client on console-fra.rpki-client.org