Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
File: 3QtmPEXXvCck0WhIUIdYHhREj7Y.mft (raw, json)
Hash identifier: Mff45/ikZJJj3LR5sQxoISqNdWVGm89vpo/beTbehKE=
Subject key identifier: 3A:38:64:0D:CA:D4:EF:2E:78:FB:A2:98:1E:81:E1:83:39:E1:35:95
Authority key identifier: DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
Certificate issuer: /CN=dd0b663c45d7bc2724d168485087581e14448fb6
Certificate serial: 0193568A3E2CDC3CB19EDD389B4311DF7F73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
Manifest number: 1370
Signing time: Sat 23 Nov 2024 01:02:00 +0000
Manifest this update: Sat 23 Nov 2024 01:02:00 +0000
Manifest next update: Sun 24 Nov 2024 01:02:00 +0000
Files and hashes: 1: 3QtmPEXXvCck0WhIUIdYHhREj7Y.crl (hash: 6V0m0/2BlisMZoZxeHXo1PhLSYyY4ir29As4iVeeKhA=)
2: 4GLC0lNr78IMED0KCVMAmHYQaGo.roa (hash: xJQAgZPLhSrKdeKWf013a9j99zq2KJN6fNlFc1rLoJ4=)
3: CEKDk2DSJ1RiYEEupBDW_jJsdcI.roa (hash: w0o4OYX25wyFGMYwtjveegKftZMZqyfyZrwifoaqaXQ=)
4: bld-BCUIkqrySWclgtxoFZkfsNE.roa (hash: RTO7hiCLq0TDsh6JliTZr79vuytRi9u4rJkGHPlLWvI=)
5: j5Y76TqDaT8ZVN7E9XoaxeOLbmQ.roa (hash: gWaCsS9OX4dn4Q94Hk67HESZ401v5/xusJ8AUsH7ymo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:3e:2c:dc:3c:b1:9e:dd:38:9b:43:11:df:7f:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd0b663c45d7bc2724d168485087581e14448fb6
Validity
Not Before: Nov 23 01:02:00 2024 GMT
Not After : Nov 24 01:02:00 2024 GMT
Subject: CN=3a38640dcad4ef2e78fba2981e81e18339e13595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:eb:7b:ba:49:67:34:d3:d1:ba:12:a0:28:bd:
95:e7:b2:df:94:17:4a:a2:db:98:f3:ec:11:43:cf:
64:89:9b:8a:50:32:4e:9c:6e:42:60:87:3a:38:65:
15:46:b6:ad:ce:27:fb:20:f0:0c:26:89:30:d3:56:
b9:73:e3:00:75:6c:71:84:09:77:87:43:a5:70:e2:
37:00:31:45:61:2f:23:df:df:d1:b8:3a:13:62:41:
10:98:3b:da:39:20:90:03:c1:57:28:50:40:3f:a5:
2a:5a:d1:15:f0:b8:fb:d1:5c:a5:7d:c1:4a:2e:ba:
72:01:93:91:a3:78:cb:b7:36:1f:a8:ca:b6:91:38:
3d:72:04:49:3b:83:db:f0:9e:c7:d4:07:77:99:96:
ae:b9:5f:b2:66:dd:c4:18:3b:33:a2:13:f3:58:42:
ef:6b:1e:85:d5:71:65:cb:ac:83:01:c5:0b:e8:57:
5a:41:20:c9:c7:ac:8b:9a:0d:12:cd:8f:20:d3:15:
e3:90:cd:20:27:21:5d:43:2f:50:c1:4b:0c:89:67:
2a:33:43:74:53:96:3a:fb:2f:2b:54:23:70:25:ba:
60:1b:ac:3e:ef:ab:96:bc:9c:10:e7:20:cf:77:ab:
c7:e2:42:02:6e:8b:b8:e8:af:0a:83:d4:ce:4c:9f:
ef:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:38:64:0D:CA:D4:EF:2E:78:FB:A2:98:1E:81:E1:83:39:E1:35:95
X509v3 Authority Key Identifier:
keyid:DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:42:8a:5f:7a:7f:d9:a2:7a:63:b4:6d:e2:fe:51:e3:fd:1b:
14:3e:30:9c:67:a7:7a:db:aa:1b:65:d5:6f:46:0d:8d:28:76:
4a:9a:f9:31:98:4f:9a:bf:b5:4c:e2:aa:d0:a2:6c:94:60:70:
37:71:93:b4:79:e2:33:a9:d0:9d:b9:fd:d5:f1:3e:20:e6:17:
e2:d5:82:9a:ce:62:16:45:d7:f0:ec:95:19:83:5d:c7:22:94:
16:f8:2b:d5:02:56:f1:a6:bc:31:3c:20:92:1c:34:85:05:52:
14:36:19:47:f3:9b:18:3f:eb:c8:d2:71:70:91:9e:6f:20:3f:
f4:21:d6:12:e2:98:6a:51:14:a0:b7:4a:ec:7d:4b:a6:1c:e7:
79:e9:07:84:36:a8:3f:bf:5d:fe:26:60:97:0d:59:cc:4f:11:
77:bc:6d:56:2b:02:a7:bc:87:a1:c9:36:e6:dc:c7:35:68:f4:
64:9c:4c:14:f0:5e:df:34:55:53:ed:f8:e8:b2:2a:35:5b:68:
46:6b:54:c6:5e:8d:ae:0a:b2:4d:e9:ae:ae:c6:d9:76:26:0d:
c0:dd:93:4e:b2:38:4d:26:c8:58:0c:4a:de:32:01:dd:95:ee:
77:d3:23:a3:a1:a9:73:68:f4:69:3e:2b:5f:74:8d:24:ff:39:
6a:af:a1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:59:55 2024 by rpki-client on console-fra.rpki-client.org