Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
File: QlbgyzjNYSXO4U5Jcii4SQodQOk.mft (raw, json)
Hash identifier: SSJGiRDOJWn3UCuUHzUm/Puxbd3xY+qJC7DxiAqFaQ0=
Subject key identifier: 11:02:73:61:8D:DE:3C:52:BC:2C:49:F5:E0:0C:A6:D5:49:C7:B1:4A
Authority key identifier: 42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
Certificate issuer: /CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Certificate serial: 01936A0F6BD3D6B628BA5DB19BF445304D3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
Manifest number: 02D6
Signing time: Tue 26 Nov 2024 20:00:15 +0000
Manifest this update: Tue 26 Nov 2024 20:00:15 +0000
Manifest next update: Wed 27 Nov 2024 20:00:15 +0000
Files and hashes: 1: 7mqJACvRo8GB9ppp6gMUWsLV9Hk.roa (hash: QWABn/rdzRPIQ4bSGnlcg3vSiXVHM9FSvr2GPwAtWI8=)
2: QlbgyzjNYSXO4U5Jcii4SQodQOk.crl (hash: Wj440AuD9ZEG7Tmhhty6UFDbwitJ3Lp8Or0SaqW5FOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:0f:6b:d3:d6:b6:28:ba:5d:b1:9b:f4:45:30:4d:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Validity
Not Before: Nov 26 20:00:15 2024 GMT
Not After : Nov 27 20:00:15 2024 GMT
Subject: CN=110273618dde3c52bc2c49f5e00ca6d549c7b14a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c0:88:90:52:40:5d:6e:29:d3:c0:26:c3:15:
fe:bb:d4:fc:1e:37:b3:a9:8e:89:88:ab:fc:4e:a3:
16:60:95:41:f8:cb:0e:b4:90:00:cb:79:20:b7:db:
68:98:40:0f:69:f1:d6:59:7e:1e:6a:6b:bf:c8:b6:
77:83:bf:79:ee:d5:80:d8:34:a4:cf:b7:59:b1:aa:
68:41:0c:6b:5b:fb:79:83:96:fd:7c:e9:5e:f6:14:
ac:96:7a:1f:1e:de:12:98:6d:a8:ab:3a:4c:fe:2a:
7f:9e:39:f0:81:54:03:6f:7f:65:14:ec:0d:cd:ea:
64:f9:01:51:e3:a1:fc:f4:12:a9:44:d0:8a:34:56:
6b:c9:16:71:4e:b5:dc:b9:20:2c:47:71:de:19:2b:
73:bc:e4:c6:f4:91:43:ab:c2:44:24:dd:fd:a6:1d:
cb:86:9d:6e:55:f0:43:d4:03:f3:67:8d:5a:12:00:
2f:d6:5c:41:a5:73:4e:e2:cc:e0:89:cc:1b:43:3c:
07:46:61:8f:bf:9d:20:65:67:56:9a:2b:84:9d:d2:
72:21:b9:6e:e1:2a:4b:3a:20:c6:ef:3e:ee:5a:46:
57:61:5f:97:b5:de:ae:b7:4f:03:df:95:c8:55:57:
00:9f:e8:5a:e0:01:c2:2d:1c:f0:4c:92:18:df:70:
1d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:02:73:61:8D:DE:3C:52:BC:2C:49:F5:E0:0C:A6:D5:49:C7:B1:4A
X509v3 Authority Key Identifier:
keyid:42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:e1:68:99:0e:83:3d:7b:57:be:da:15:ff:fd:e8:27:b4:2d:
66:ce:df:f3:49:3c:e0:9d:cf:25:93:a4:44:52:e9:3f:26:8b:
f3:e1:84:56:5a:04:0f:42:09:53:57:89:ce:3f:67:21:2f:8b:
28:7b:c7:5c:d5:7d:aa:f2:d3:7b:0b:92:80:7d:39:fc:b2:c6:
6b:f0:b9:c5:95:b4:91:8c:16:8e:43:fc:5d:2e:62:e4:69:e5:
5a:08:b2:41:02:b5:0a:12:fb:48:08:9e:d5:d0:66:cf:bb:ae:
f8:1d:bc:50:5c:e5:2a:04:1a:f2:2d:8a:54:b6:e4:ef:06:fc:
f9:d5:b5:1c:2b:ba:4f:36:f6:d4:5a:c1:47:66:41:f3:3b:eb:
f2:71:8f:b0:4b:02:98:03:38:14:b8:66:fb:a7:c5:1b:c8:b6:
30:da:68:33:61:9a:95:3a:2e:85:4d:ce:5a:e4:e2:dc:0f:ba:
c9:0c:bf:0e:29:a9:52:94:d2:35:2f:74:0f:31:03:ad:0b:02:
9f:11:9d:24:da:73:a8:9f:e3:fe:17:b4:d3:b4:e4:ba:ac:b7:
2f:1b:db:45:b6:f5:90:be:66:94:47:85:5f:70:d0:e6:f1:27:
4a:c6:dc:02:35:e8:78:7c:3e:cf:f8:05:f5:b4:4d:a7:fc:78:
3b:92:22:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:41:05 2024 by rpki-client on console-fra.rpki-client.org