Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: 23I5FtSbtgm4tJLPTxXnfX/WVxQKJK3dza7iDuB4Muk=
Subject key identifier: 95:1A:92:DB:7A:3E:45:E8:B3:53:3D:2F:0E:63:46:27:87:CC:1C:2D
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 01935688ED3E9D3771AC744908DC307DB588
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 0FD5
Signing time: Sat 23 Nov 2024 01:00:34 +0000
Manifest this update: Sat 23 Nov 2024 01:00:34 +0000
Manifest next update: Sun 24 Nov 2024 01:00:34 +0000
Files and hashes: 1: GZTpWqHvdUggYV9uuQTeHMnscuA.roa (hash: QB8KsqPtiEsZrFiuuIn+Qc9pQZe6n5ugC3gsYDlDgNE=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: hAOyic+T/zm3VZekqvi49u0e9MtKTHbo22qIFS5ohUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:ed:3e:9d:37:71:ac:74:49:08:dc:30:7d:b5:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: Nov 23 01:00:34 2024 GMT
Not After : Nov 24 01:00:34 2024 GMT
Subject: CN=951a92db7a3e45e8b3533d2f0e63462787cc1c2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6e:be:e0:4b:0b:b4:d0:77:6d:2a:28:9b:39:
c0:dd:6a:ee:02:3c:cc:58:f1:35:ed:1f:cf:24:4f:
39:8d:36:fd:c3:7c:40:e9:0a:6e:90:e5:bb:9f:47:
5b:68:eb:44:39:5d:fb:db:26:33:54:90:6f:78:14:
3b:32:ab:13:4b:54:a5:76:8e:03:45:5d:f9:79:aa:
96:b9:fb:3c:0b:30:3a:1b:2b:8f:b7:a4:26:0c:1a:
70:87:a6:75:4a:ac:ca:17:cf:61:e9:3e:09:67:e9:
79:40:07:d3:76:09:79:78:1a:58:ab:7f:5b:11:5b:
25:be:af:1b:df:0b:70:08:b3:ee:82:c5:45:97:bc:
74:3b:4d:44:74:d8:9e:45:45:52:f2:66:4b:65:ce:
e1:92:8f:4e:95:a3:53:48:66:a2:06:88:67:21:d5:
fd:e9:20:67:b8:49:98:5c:29:16:2e:55:1d:f9:85:
2e:68:81:f4:7c:f3:af:e0:7a:1f:fb:86:ec:c5:13:
00:12:81:ca:a6:52:47:ba:46:08:de:d0:38:e1:b5:
38:85:51:6a:96:8e:65:e1:de:a6:99:d6:8b:79:a2:
68:39:f1:ad:68:ec:dd:a0:8d:d5:0c:ae:51:9d:87:
d6:df:c4:33:ae:85:06:1d:0c:a1:91:e1:4d:6b:5f:
6f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1A:92:DB:7A:3E:45:E8:B3:53:3D:2F:0E:63:46:27:87:CC:1C:2D
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:3a:b2:87:03:35:96:75:c4:7c:a2:c5:27:54:93:b6:c5:21:
c4:97:2a:a0:bd:d6:15:09:01:30:75:40:c4:d7:e3:28:88:3c:
ca:79:52:02:a6:6f:69:84:ad:65:8c:97:03:90:26:51:1d:d2:
47:a1:35:34:64:de:0e:c8:e0:a4:42:aa:ec:3a:e1:31:ae:56:
0e:03:39:49:ad:05:81:b2:f1:3c:4a:62:71:43:49:f2:85:e1:
4e:b6:96:04:83:5d:73:5e:c9:f7:fd:33:b3:44:e3:47:91:6b:
c7:b5:71:87:ad:aa:67:fb:e9:74:b7:a5:d0:8d:bc:9d:b6:33:
d3:08:4f:e1:b1:01:b5:b3:06:ae:02:cb:d2:c2:9e:ec:ee:36:
4d:e8:43:fc:1b:5d:c9:4c:a7:1a:80:33:35:cc:81:f6:f6:77:
2e:09:99:ed:0f:37:78:f8:70:6d:1b:51:08:a8:54:1c:6a:c0:
bf:4f:82:af:d2:2b:cd:c9:96:d2:45:e9:4b:56:29:43:56:4c:
6a:ba:67:4d:3c:93:85:ac:7b:e6:bc:d9:4f:99:be:60:90:ec:
9b:e0:22:f6:67:31:8a:a2:d9:b7:c0:07:85:4d:97:20:14:7b:
37:a8:f5:80:7c:ea:04:21:0e:44:f6:bf:1b:46:58:5a:6b:fe:
93:01:91:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:42:22 2024 by rpki-client on console-ams.rpki-client.org