Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
File: PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft (raw, json)
Hash identifier: q9J5UkSiyaIAGYP7FVq5FZZdBdfi5mN5V/sFAs6zuQo=
Subject key identifier: 09:08:BE:A8:9A:7D:B6:B6:F1:A3:30:5A:27:AB:BD:81:81:9F:98:B9
Authority key identifier: 3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
Certificate issuer: /CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Certificate serial: 01938D09E0E2C9D66E0BC2D1CA53EF16FB28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
Manifest number: 138D
Signing time: Tue 03 Dec 2024 15:00:54 +0000
Manifest this update: Tue 03 Dec 2024 15:00:54 +0000
Manifest next update: Wed 04 Dec 2024 15:00:54 +0000
Files and hashes: 1: PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl (hash: pgoHS0xJ2JJrZ401IRpI7Xc3WHzxZUMehX+2srVmosA=)
2: b6Iugu-NjhWcVIf3r3vhh0w_hI8.roa (hash: p7ewm6uCtlqRqAv+839Pngnhn5q1XAQMHu0JicCM/3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 15:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8d:09:e0:e2:c9:d6:6e:0b:c2:d1:ca:53:ef:16:fb:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Validity
Not Before: Dec 3 15:00:54 2024 GMT
Not After : Dec 4 15:00:54 2024 GMT
Subject: CN=0908bea89a7db6b6f1a3305a27abbd81819f98b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:da:d8:d4:06:84:4e:8b:11:ef:9c:9d:63:20:
29:20:be:08:94:9e:f4:40:ad:b9:e9:f4:04:fd:fd:
b8:7f:82:df:0f:f4:82:c4:c4:f3:d2:c3:5b:c7:71:
61:7f:b5:d9:77:6a:9e:10:d1:08:b2:10:ac:3c:46:
67:d0:b2:5c:cd:f8:19:60:86:ee:a5:44:4f:e2:33:
e2:3e:f3:f5:61:de:b9:39:93:fc:c0:61:40:b6:a2:
8a:68:c0:48:ab:e7:61:9f:e5:c3:83:6e:8b:42:ed:
a4:1d:20:59:d2:f4:73:98:47:39:03:44:3f:b3:61:
06:30:16:fe:eb:9c:8e:a6:7f:b6:c5:c0:3f:9c:ca:
05:a4:2b:2f:82:d0:77:ec:c1:80:01:9e:19:72:de:
48:ad:7c:d4:a1:5b:9e:68:7c:69:08:fe:2c:94:88:
dc:08:fc:03:95:69:c6:22:12:0d:2a:c9:9d:36:42:
56:ff:06:6d:2a:b1:a2:1a:ab:9d:d1:b1:65:e3:a4:
eb:23:ca:28:30:08:5c:b9:82:39:1e:f1:55:30:ea:
a1:c4:ad:67:c5:03:1c:15:1d:c2:86:a1:c6:4d:d4:
86:b1:e4:9d:10:ac:c9:d5:2d:f4:47:d9:50:da:11:
da:8f:dc:c0:84:82:71:20:10:b5:f1:ca:11:41:18:
70:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:08:BE:A8:9A:7D:B6:B6:F1:A3:30:5A:27:AB:BD:81:81:9F:98:B9
X509v3 Authority Key Identifier:
keyid:3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:04:4c:5b:cd:d7:9f:b0:91:aa:23:79:13:21:8d:9f:a3:6f:
bf:d1:d3:80:77:88:df:dc:ed:6e:f9:12:f2:b5:9c:ed:e2:b5:
51:71:76:bd:4b:71:17:9b:07:ce:23:c6:28:f6:cf:f5:0e:1d:
9b:18:39:f2:03:71:20:7f:aa:b5:97:7b:55:32:ff:9e:0a:76:
13:c1:de:00:77:9c:41:37:72:10:a0:2a:6b:1b:17:92:6d:10:
cf:aa:97:4a:c3:b4:6e:93:4f:8e:aa:93:ff:7d:d5:53:aa:4d:
ab:75:41:87:d7:0f:d7:5f:40:42:12:13:f5:31:b6:1a:40:81:
b5:11:11:a6:0c:57:1c:ba:cb:1a:f4:2b:49:00:da:1e:2b:ca:
25:e5:f5:7f:7d:89:f3:d3:4b:7a:10:c8:0e:10:96:0a:33:bd:
aa:0f:fe:83:7b:33:d9:e9:59:c7:1c:e5:db:d2:fa:01:eb:84:
59:69:29:e4:5c:c2:cc:88:be:96:34:15:ed:18:48:5e:b0:21:
3f:04:c7:97:87:12:08:a7:67:53:0b:83:41:31:0b:94:f1:1d:
3c:4c:78:78:a0:41:81:4c:99:2c:92:c8:0a:0e:75:8c:eb:00:
42:29:a4:ce:95:43:df:57:2e:d4:41:b7:aa:4b:8f:4d:16:ed:
35:a6:08:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 18:10:09 2024 by rpki-client on console-fra.rpki-client.org