Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: 8qUSYDvR3zR9PIu6pqwZ0Lufn8yacfFLpsnbEKEi6oo=
Subject key identifier: B7:15:46:0D:58:3E:B9:A1:AF:24:A5:F9:F0:9A:2C:B8:96:73:74:74
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 0194BB96D7E57971D22D09C4BD8C6C99E985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 108E
Signing time: Fri 31 Jan 2025 09:00:12 +0000
Manifest this update: Fri 31 Jan 2025 09:00:12 +0000
Manifest next update: Sat 01 Feb 2025 09:00:12 +0000
Files and hashes: 1: CRyZWe4rqJ2qdiNWuAP-OJQeZow.roa (hash: g+uZ3IirtTKelPa51RylP3yoQBkp1cF9hHY0LUNHp8g=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: yD0dghaGbqZnYRWNs6V7FiW4BNQNLGea9yEl1LuZmNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:96:d7:e5:79:71:d2:2d:09:c4:bd:8c:6c:99:e9:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: Jan 31 09:00:12 2025 GMT
Not After : Feb 1 09:00:12 2025 GMT
Subject: CN=b715460d583eb9a1af24a5f9f09a2cb896737474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1e:97:f5:4f:37:cc:cf:25:0c:cc:83:c7:82:
92:4c:c1:bc:4c:1d:39:7d:2e:80:90:5a:ab:17:06:
ed:c4:7a:10:93:e7:1c:ed:5c:fc:6a:f7:0f:53:0c:
de:c3:d0:d7:68:1f:f0:4e:ed:05:ca:bd:82:be:63:
a4:17:b6:94:91:7e:8f:12:f1:77:68:80:ad:57:96:
80:45:7b:5b:51:3c:47:fb:bc:e8:75:9b:07:11:89:
16:f2:07:c1:e6:5b:de:8a:58:8d:5d:21:64:75:d4:
f5:53:6b:4c:88:12:f3:72:24:6a:ae:43:1e:8b:12:
e9:0e:63:2c:3a:49:91:55:3c:8e:34:74:5e:5a:b1:
60:b9:12:9e:f0:c7:5d:b5:30:f0:19:0e:08:5e:25:
5b:3c:59:4e:b4:4c:04:40:fd:c9:0b:25:f9:4d:6e:
40:29:fc:03:8f:9d:b3:23:53:11:9b:cc:99:f3:65:
41:7d:aa:ae:7e:e3:ff:ec:a8:f1:87:c5:3d:41:07:
61:97:63:7a:b6:72:dd:d1:00:93:8b:80:1f:e8:96:
f5:5a:a4:6c:8b:33:de:77:e4:d3:ae:dc:f4:64:45:
86:8c:9d:fb:60:33:7a:b5:35:8f:26:3c:a5:f6:4e:
19:ad:3f:2d:c2:06:d0:4c:ef:1d:ab:92:f7:fd:f7:
c2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:15:46:0D:58:3E:B9:A1:AF:24:A5:F9:F0:9A:2C:B8:96:73:74:74
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:1d:d8:2d:6b:42:81:1b:9e:f1:c6:09:80:b8:6b:62:fd:4c:
63:dd:10:97:73:ba:a5:c5:49:af:7f:31:fd:60:07:b5:2f:ad:
89:4f:b3:29:30:ce:b3:99:f2:1b:c3:d7:dc:64:71:af:57:a6:
d0:a9:42:ae:a7:a0:b1:df:cc:31:24:1d:59:da:49:35:00:1d:
76:58:1d:99:1b:db:81:49:88:a0:5c:11:3a:e8:5d:cd:58:85:
14:38:0d:54:94:54:24:3f:da:fd:0f:77:2c:05:b1:7b:09:f1:
7a:78:3f:e9:9b:e7:b3:6b:76:7b:32:af:d2:20:3e:c4:15:72:
d3:02:26:f6:06:bc:47:27:fb:af:0c:4d:45:b8:52:0c:d1:63:
a4:2c:34:d7:16:67:f2:44:b7:ea:12:97:c8:33:cd:8c:0c:24:
ff:c3:80:08:a8:52:85:9b:4f:68:94:78:bd:76:f3:af:5d:b7:
e8:f8:e2:85:06:12:59:dc:2d:90:67:94:38:89:89:8c:58:de:
ff:0c:9c:5a:3e:a2:f4:bb:c0:61:43:44:a5:da:44:31:b5:92:
52:7a:43:b1:5b:c7:2b:4a:c9:bd:14:eb:f1:a2:03:69:c4:91:
d2:e9:7a:e0:53:48:b5:19:07:ad:58:ab:9c:e8:95:63:8e:1d:
e2:2d:3d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:27:54 2025 by rpki-client on console-fra.rpki-client.org