Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
File: qklDGDthG-Ogd1OCUJSQBIsK1zg.mft (raw, json)
Hash identifier: OhBGocryGvn9Q/QAHll0ToPhy2UZgLMs12CnNRDr9I8=
Subject key identifier: 84:4C:93:46:4A:17:89:A6:3E:12:79:B7:90:CE:43:5B:68:AA:72:38
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 0193568A23E915F7ADCE0C47507F2EDCA215
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 01:01:53 +0000
Manifest this update: Sat 23 Nov 2024 01:01:53 +0000
Manifest next update: Sun 24 Nov 2024 01:01:53 +0000
Files and hashes: 1: _bzSgmxYhVEpIb-uxZWmp84UBTs.roa (hash: p6o1uNKVqS33HZqbdvJuPL4+4dCacE5Ky4nTUrBByNU=)
2: qklDGDthG-Ogd1OCUJSQBIsK1zg.crl (hash: vTMBwDpqYofTyZrGib6HMTYLRPZOz3eVkd8v0mMmhco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:23:e9:15:f7:ad:ce:0c:47:50:7f:2e:dc:a2:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Nov 23 01:01:53 2024 GMT
Not After : Nov 24 01:01:53 2024 GMT
Subject: CN=844c93464a1789a63e1279b790ce435b68aa7238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a0:30:81:68:64:e3:76:0e:f8:43:25:96:2b:
0f:9d:75:16:39:21:45:23:42:88:f7:eb:17:f3:eb:
ca:4f:f1:af:aa:09:f7:ea:56:c2:9e:7d:16:90:bd:
ff:52:60:8f:83:51:cc:20:a7:cf:2d:13:a6:42:a2:
00:ca:00:74:ce:87:31:f0:42:a7:cb:b2:99:81:dd:
0a:54:10:1b:38:a7:90:16:e1:97:c1:96:5f:a5:3c:
fe:b6:55:74:9c:53:dc:98:a2:ae:4d:24:ad:0b:23:
c8:8a:a1:63:26:17:f8:7e:12:d9:d6:45:d1:01:cc:
65:c4:e0:d5:c8:c3:21:18:29:0e:d5:7b:91:50:ea:
78:2d:eb:ba:da:c2:ea:60:02:8f:65:cc:50:99:f8:
b8:5a:84:bf:33:a4:9d:f6:a3:b6:49:08:56:11:0b:
6c:b5:b6:7c:f0:e5:1a:99:22:2e:98:ab:e3:46:41:
73:8a:01:05:d2:69:aa:ad:ef:6c:06:bb:d7:ee:5d:
87:f9:04:db:48:29:a8:52:fe:ef:c4:74:cb:03:10:
94:c1:81:a8:e6:ff:db:bc:35:8a:b8:4a:df:d1:9e:
8a:9d:52:3a:24:6d:8a:43:8f:c5:45:71:2d:cf:5c:
a2:a4:eb:3f:99:fb:19:c9:00:b6:12:49:ad:f9:b6:
86:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:4C:93:46:4A:17:89:A6:3E:12:79:B7:90:CE:43:5B:68:AA:72:38
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:b1:7d:22:c0:98:5f:58:e2:b6:09:c9:dc:c7:85:cb:fa:f5:
26:22:c0:a1:df:79:05:09:a1:64:50:d7:6d:49:5b:1b:d0:c8:
1b:b0:56:41:da:79:fd:ee:17:a5:e3:c2:c6:86:4e:d7:59:2e:
df:da:8c:e4:d2:53:2b:8e:91:89:e3:0b:2e:95:35:2e:01:26:
d2:da:8c:3d:b8:6b:eb:c5:7a:59:4c:8d:22:39:1d:79:e1:0c:
f6:f4:5f:18:a0:57:d3:5f:a3:e8:63:01:09:58:0a:a8:ce:06:
9a:b6:f0:93:ce:8d:2e:7d:8d:f6:e9:5b:a5:1c:a5:ff:21:59:
72:fe:5f:17:ba:ad:98:ab:32:6a:f3:7d:32:c3:7f:c8:b9:13:
d4:6d:38:fb:95:e8:ce:23:8c:fd:5e:60:9e:06:28:ff:b3:7e:
9a:63:1c:eb:e2:f9:77:9c:f9:43:0b:bb:d8:c5:78:04:fd:01:
a3:5f:06:18:df:7f:c5:8d:79:69:11:83:b9:a6:ee:e2:1e:5f:
26:60:17:3a:d2:e7:2b:66:70:88:60:21:d2:ea:1f:0b:bc:b3:
5f:84:eb:6e:1a:73:ca:b8:19:e9:a5:c3:5f:02:f3:9a:7c:4a:
1a:d9:1b:0e:1c:fb:a8:b0:06:a6:dd:6a:c7:08:5e:b2:2d:e2:
e2:1e:ce:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiiPpFfetzgxHUH8u3KIVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNDk0MzE4M2I2MTFiZTNhMDc3NTM4MjUwOTQ5MDA0OGIw
YWQ3MzgwHhcNMjQxMTIzMDEwMTUzWhcNMjQxMTI0MDEwMTUzWjAzMTEwLwYDVQQD
Eyg4NDRjOTM0NjRhMTc4OWE2M2UxMjc5Yjc5MGNlNDM1YjY4YWE3MjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKAwgWhk43YO+EMllisPnXUWOSFF
I0KI9+sX8+vKT/Gvqgn36lbCnn0WkL3/UmCPg1HMIKfPLROmQqIAygB0zocx8EKn
y7KZgd0KVBAbOKeQFuGXwZZfpTz+tlV0nFPcmKKuTSStCyPIiqFjJhf4fhLZ1kXR
AcxlxODVyMMhGCkO1XuRUOp4Leu62sLqYAKPZcxQmfi4WoS/M6Sd9qO2SQhWEQts
tbZ88OUamSIumKvjRkFzigEF0mmqre9sBrvX7l2H+QTbSCmoUv7vxHTLAxCUwYGo
5v/bvDWKuErf0Z6KnVI6JG2KQ4/FRXEtz1yipOs/mfsZyQC2Ekmt+baGqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIRMk0ZKF4mmPhJ5t5DOQ1toqnI4MB8GA1UdIwQY
MBaAFKpJQxg7YRvjoHdTglCUkASLCtc4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS83YmIwMzgtMDFiYy00ZDg1LTlmMDQt
ZDIyMjc0YmJhNzEzLzEvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS83YmIwMzgtMDFiYy00ZDg1LTlmMDQtZDIyMjc0YmJhNzEz
LzEvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGLF9IsCY
X1jitgnJ3MeFy/r1JiLAod95BQmhZFDXbUlbG9DIG7BWQdp5/e4XpePCxoZO11ku
39qM5NJTK46RieMLLpU1LgEm0tqMPbhr68V6WUyNIjkdeeEM9vRfGKBX01+j6GMB
CVgKqM4Gmrbwk86NLn2N9ulbpRyl/yFZcv5fF7qtmKsyavN9MsN/yLkT1G04+5Xo
ziOM/V5gngYo/7N+mmMc6+L5d5z5Qwu72MV4BP0Bo18GGN9/xY15aRGDuabu4h5f
JmAXOtLnK2ZwiGAh0uofC7yzX4TrbhpzyrgZ6aXDXwLzmnxKGtkbDhz7qLAGpt1q
xwhesi3i4h7OwQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:59:58 2024 by rpki-client on console-fra.rpki-client.org