Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
File: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft (raw, json)
Hash identifier: qNE/9CA57gI0qaV8DltYoEcDjo7LwgESXEUSFMkJEPQ=
Subject key identifier: 67:BC:F4:CD:4A:50:BD:E1:3B:5B:8D:19:FA:06:59:8C:C7:F2:A3:0A
Authority key identifier: 42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57
Certificate issuer: /CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57
Certificate serial: 0193572DB62A59E856AA7E81F304CA8C1ADD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
Manifest number: 0295
Signing time: Sat 23 Nov 2024 04:00:33 +0000
Manifest this update: Sat 23 Nov 2024 04:00:33 +0000
Manifest next update: Sun 24 Nov 2024 04:00:33 +0000
Files and hashes: 1: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl (hash: uO65nEJaB9c84qvRmIxlimgIdjMJ71qZacJexMBz0dA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:b6:2a:59:e8:56:aa:7e:81:f3:04:ca:8c:1a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57
Validity
Not Before: Nov 23 04:00:33 2024 GMT
Not After : Nov 24 04:00:33 2024 GMT
Subject: CN=67bcf4cd4a50bde13b5b8d19fa06598cc7f2a30a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:66:76:ea:e3:96:84:bd:66:a1:0f:4b:4b:af:
0b:67:bb:73:e4:cf:86:4f:f6:16:02:05:ac:77:e6:
7b:5f:fc:0d:56:a2:34:15:f9:a6:a0:23:bf:ee:68:
1b:82:e6:23:7b:1c:4f:20:1d:f6:b5:a6:43:9b:ad:
1e:5a:45:a3:9c:ea:5f:ce:35:10:9d:16:21:37:b6:
5f:c6:3c:23:73:a7:5b:ef:0e:f3:4f:45:3a:6b:86:
a8:30:fc:c6:67:b4:3a:be:6a:d5:83:c3:73:67:35:
57:ba:23:b2:ad:f5:53:2c:2f:6a:ba:ae:8a:71:0b:
8f:fe:5c:cd:0e:c3:10:c7:21:56:35:3c:97:5f:84:
b6:2b:06:9a:78:e4:42:93:37:01:95:20:77:2f:f6:
1d:07:ad:a3:94:f0:7e:88:7e:75:a7:9b:c1:81:53:
54:97:f2:0d:1a:f3:ce:fb:f2:84:9f:61:6b:d9:16:
a6:75:97:28:a3:09:f9:33:02:f4:38:e5:2b:b3:25:
2e:88:5a:5a:ee:cf:9f:b9:a0:9c:f3:25:ef:61:10:
63:4a:73:cd:a8:c7:4a:0f:42:24:49:41:1e:3c:03:
bf:4e:a8:be:6c:ed:e2:a7:8e:93:90:09:8c:43:ac:
92:b0:a8:80:db:66:63:3a:f5:2c:1c:4e:9e:d6:8a:
68:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:BC:F4:CD:4A:50:BD:E1:3B:5B:8D:19:FA:06:59:8C:C7:F2:A3:0A
X509v3 Authority Key Identifier:
keyid:42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:63:dd:54:d6:0d:42:86:c0:db:5f:8c:88:21:d3:22:7d:0f:
18:1f:4f:bb:b5:8a:c4:5d:2b:c7:24:32:d8:d8:b3:25:fb:30:
fc:ed:91:31:9e:f8:01:49:44:d0:aa:f8:9d:d7:fb:c8:67:81:
23:93:70:03:6d:5d:61:c6:74:86:32:00:d8:cb:9c:39:ea:ed:
a0:b9:de:08:04:12:db:cb:c2:46:50:11:86:33:03:a0:24:07:
a0:f0:8b:c5:ae:9a:03:7d:91:f4:d5:23:bd:8f:9f:70:17:4b:
09:53:9f:27:76:26:0a:98:49:54:31:15:95:02:f6:19:53:74:
19:21:3a:61:59:a1:1d:bc:6a:ad:a6:04:28:91:e5:d6:30:1c:
cf:b2:ef:5d:bc:d2:79:65:e0:9d:76:29:71:6f:ad:83:66:3f:
0d:2c:f1:3e:a0:4a:6e:00:75:33:de:48:f4:46:54:ba:ca:bf:
cd:11:76:6f:29:f1:86:b9:6c:70:d9:f3:61:4d:4b:dc:89:89:
dd:a1:50:b7:ed:bd:27:e6:59:d1:2d:e1:a7:28:2b:4f:c0:7e:
30:f3:9a:b6:48:8c:4d:ee:d8:e4:b0:f8:60:49:69:3d:69:51:
7d:fe:f9:52:1a:64:56:ea:c1:14:b5:d5:ac:f0:2f:b8:78:28:
bb:01:23:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:37:05 2024 by rpki-client on console-ams.rpki-client.org