Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
File: Q1w_GpeQPnlikqKsenjUGxwh24U.mft (raw, json)
Hash identifier: CgtxlS/waHvRnBCLbGdJgQeDvJUpbHxzR8048OU0Txc=
Subject key identifier: A5:77:33:65:F6:A3:7D:35:7B:6B:D3:D8:A9:32:DF:F0:C2:86:AE:93
Authority key identifier: 43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
Certificate issuer: /CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Certificate serial: 0193579BA4A9360575BE1D45A93E17D56803
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
Manifest number: 0C99
Signing time: Sat 23 Nov 2024 06:00:38 +0000
Manifest this update: Sat 23 Nov 2024 06:00:38 +0000
Manifest next update: Sun 24 Nov 2024 06:00:38 +0000
Files and hashes: 1: IIP2V3nwlxk2cYt0y3T8AJVT3ec.roa (hash: fS9HRIpx83pacmSdg6yvDCEtpJ5F4QKZDDhnlVfX/Ac=)
2: Q1w_GpeQPnlikqKsenjUGxwh24U.crl (hash: SKLi/b57xW9Iw19XauglfD0J7nf7wvNmh8WRRYSql+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:a4:a9:36:05:75:be:1d:45:a9:3e:17:d5:68:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Validity
Not Before: Nov 23 06:00:38 2024 GMT
Not After : Nov 24 06:00:38 2024 GMT
Subject: CN=a5773365f6a37d357b6bd3d8a932dff0c286ae93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:35:90:9c:6c:e5:69:3c:e5:be:e6:b5:03:8b:
c7:b5:c7:7f:38:41:eb:3b:f4:ce:71:dd:5e:b0:70:
3e:fa:a4:c7:a8:98:6e:40:d4:af:8a:c9:d6:9d:fa:
f9:4d:b8:d0:5e:0c:e3:b2:47:09:85:6c:ce:fc:a6:
f5:b4:56:e7:7e:c5:37:61:87:94:e9:3e:5d:0a:65:
d7:c5:79:06:71:a2:e4:16:4f:2f:94:eb:cf:c3:7e:
13:bd:06:1d:f4:ef:c8:33:ec:ab:72:98:0b:5d:2d:
67:b6:5f:71:d3:fc:44:29:5c:e5:5a:7d:bc:41:ee:
77:e3:7b:56:a9:de:f7:53:22:0a:4f:b1:fb:9a:68:
ad:12:cb:3e:22:20:f1:cd:35:75:11:3f:8a:eb:a4:
63:d2:08:91:04:fb:f8:e6:b7:91:cd:4a:66:85:c3:
77:8c:64:d2:3e:b8:2e:4a:56:29:97:9a:c0:48:9c:
e5:67:ad:1e:20:3f:d9:d9:1d:55:34:87:c2:e2:1a:
f2:ff:cd:57:12:7d:55:8f:e3:78:85:bb:b1:d5:d6:
43:f7:b9:d2:a5:e9:c9:73:63:79:57:5a:98:90:91:
f7:a3:a1:a1:02:92:ea:20:ed:f9:f6:dc:b0:8c:44:
1d:00:c6:46:90:2c:91:3e:49:1d:74:c2:70:61:52:
de:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:77:33:65:F6:A3:7D:35:7B:6B:D3:D8:A9:32:DF:F0:C2:86:AE:93
X509v3 Authority Key Identifier:
keyid:43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:98:cf:da:b8:b1:58:33:9a:0e:e9:e7:bc:98:3e:0b:5e:6f:
65:36:fe:e8:a0:ab:53:f0:ec:c3:30:d5:43:bc:20:bd:46:af:
7a:1e:ec:46:f1:d4:2e:72:c2:3f:28:ad:37:79:ce:de:a5:aa:
63:54:6b:7b:3b:70:8b:e7:53:44:16:1c:db:01:4a:be:5a:6f:
5d:73:b6:71:b3:94:41:d6:09:2d:e1:83:99:77:84:32:14:a0:
5b:ce:c0:d1:17:24:86:a6:77:4d:f3:2e:73:7d:60:de:70:95:
1b:29:9a:02:79:e1:a7:32:f1:ff:58:bd:e6:30:31:bf:1e:3f:
f8:6d:3c:b9:81:88:b7:21:e1:e8:f4:42:7b:5e:ba:84:24:2d:
36:6f:22:fe:b2:e6:1c:89:8c:9c:c8:be:73:ba:88:03:37:3d:
b6:b6:f9:34:f1:e5:16:2b:a7:a1:fe:f9:fd:dc:4b:cd:49:cc:
94:df:c2:8d:8e:71:be:5f:66:00:0c:e1:88:61:52:84:c6:09:
b7:7a:0b:29:17:74:31:79:93:33:47:de:2b:60:9e:88:95:50:
3d:01:50:ca:22:3e:45:fb:a6:ef:df:17:19:dd:8e:b0:18:b0:
68:5a:68:30:66:ff:b7:81:d8:19:78:a2:06:f0:73:12:16:91:
69:3b:7c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:24 2024 by rpki-client on console-ams.rpki-client.org