Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json)
Hash identifier: CAGeBMeAFjntx4pnneIDX1tnPmrBxULkrh8NMmz9MaM=
Subject key identifier: 1C:27:41:3C:2F:1C:85:A2:4D:AD:BE:B0:FD:61:7F:75:E0:59:B4:69
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 0193572D90C878086720B9339EA9E962639E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 04:00:24 +0000
Manifest this update: Sat 23 Nov 2024 04:00:24 +0000
Manifest next update: Sun 24 Nov 2024 04:00:24 +0000
Files and hashes: 1: WonCC1d05Rdnfwi1S0l7W6HpVyg.roa (hash: xatVlPZAdSMa/SeJyryxqZaOu8tf4Aog24rhyw+bqWQ=)
2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: skLLXnlcTQBWOXsFufMVaHwST2lFRyimMnK9SqDKgRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:90:c8:78:08:67:20:b9:33:9e:a9:e9:62:63:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Nov 23 04:00:24 2024 GMT
Not After : Nov 24 04:00:24 2024 GMT
Subject: CN=1c27413c2f1c85a24dadbeb0fd617f75e059b469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:83:29:dd:9f:71:dd:f1:80:f9:cc:1b:9a:d2:
8d:3b:ea:b9:e2:ae:89:73:95:ca:c0:89:9f:57:ed:
d2:48:fd:50:8c:03:11:73:1e:64:1c:e0:09:28:98:
b6:a3:94:81:b0:1d:a3:cf:f4:26:0b:e8:ac:24:c0:
49:13:ea:0e:6e:63:65:d2:ab:16:e7:6c:84:60:74:
ad:1c:16:dc:f3:ed:58:08:bd:1e:6d:69:4e:ce:98:
db:70:1b:b0:a7:19:f2:f7:52:1a:3a:8f:26:8c:8f:
ac:44:f2:55:69:81:3c:54:b5:5e:b7:eb:3c:c1:6b:
30:6e:40:11:bc:b7:5c:2b:a8:2c:56:10:ca:3b:72:
fb:67:10:5a:2c:7b:af:39:81:43:33:28:d1:4a:70:
76:4d:bf:d6:03:dd:04:1d:c5:5e:01:f6:e7:8a:3f:
51:aa:0f:5b:0d:61:3a:ae:ce:da:b7:39:da:5a:4a:
df:49:ea:5a:c7:17:fb:7f:9b:01:0e:18:f5:b5:25:
3d:a8:b7:7d:5f:f7:c2:2b:77:db:21:84:e8:15:ab:
62:7c:05:21:bc:b6:3f:dc:3c:9b:6c:7b:5b:65:dd:
21:e0:02:cb:49:19:36:4e:a4:8a:55:20:68:46:56:
62:bb:84:54:86:24:22:14:0a:5c:12:1c:c0:d8:21:
1d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:27:41:3C:2F:1C:85:A2:4D:AD:BE:B0:FD:61:7F:75:E0:59:B4:69
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:b2:32:c0:08:6c:36:42:41:b5:66:55:a7:b3:32:88:df:a9:
a9:74:e0:97:ba:92:06:e7:ba:ee:37:4f:8b:cc:cb:a1:b2:4d:
31:12:f6:a8:6e:52:97:6c:39:6f:90:4e:fe:ab:98:ae:e4:af:
83:05:28:8e:4c:c4:d8:11:19:0a:af:57:81:6c:6a:92:36:c5:
c8:25:10:46:0e:bc:63:af:40:df:8d:10:e2:58:1c:0e:2c:3d:
09:1c:53:81:0e:b8:e8:76:0f:85:6f:90:14:c2:99:5e:84:78:
99:8f:dd:ff:40:be:52:20:f7:b2:23:f6:32:cd:09:d4:4b:2c:
05:f0:5b:db:ff:5f:33:48:01:5d:ec:eb:92:8e:04:f4:0e:cf:
df:45:b1:77:c8:fa:35:f2:20:4a:7e:c3:4f:68:9b:e5:6c:3d:
80:c5:04:00:6a:a4:94:8a:bc:39:5c:06:a1:ab:7f:12:f3:f9:
b7:4f:7f:e1:86:e1:4d:d5:65:7a:37:ab:62:06:1d:d9:92:0c:
75:0f:b0:a4:eb:b6:39:ae:62:d2:b6:91:a8:f8:d1:cd:95:29:
9d:57:9f:6d:ff:fb:a6:02:8d:d1:76:4d:d4:c9:6e:78:01:b4:
ed:73:f6:71:b3:ec:e2:95:28:22:ac:7e:d8:b1:0f:b3:26:fb:
69:bd:13:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:23 2024 by rpki-client on console-fra.rpki-client.org