Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
File: bqGhD32UTazB3sBBqqVZ1SK_uus.mft (raw, json)
Hash identifier: CBq4iScHJTol4oQkTQn4dpBbDwKMjySarHL3Isaj7dw=
Subject key identifier: FA:A2:35:94:94:64:16:B4:4A:CD:83:98:DD:61:50:A9:C7:F3:22:69
Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Certificate serial: 01935877C03A763000F5BEA9285BDEE50412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
Manifest number: 10E7
Signing time: Sat 23 Nov 2024 10:01:03 +0000
Manifest this update: Sat 23 Nov 2024 10:01:03 +0000
Manifest next update: Sun 24 Nov 2024 10:01:03 +0000
Files and hashes: 1: YeM-g03gjzKuo7FlaV-SdRxQcLE.roa (hash: UMoTq9cUgHH5R1lHAXDNFuKITlMZFccUiiq2UTRmdvc=)
2: bqGhD32UTazB3sBBqqVZ1SK_uus.crl (hash: DGQSlgBblMoXu3Ec1ChJHkjZ3a7XHRq7NInxkr4TarE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:c0:3a:76:30:00:f5:be:a9:28:5b:de:e5:04:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Validity
Not Before: Nov 23 10:01:03 2024 GMT
Not After : Nov 24 10:01:03 2024 GMT
Subject: CN=faa23594946416b44acd8398dd6150a9c7f32269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6a:cf:3b:7f:6c:c5:96:b7:d0:2d:f9:cb:83:
47:10:45:58:dc:65:05:70:34:ee:b6:71:8b:a7:f1:
6f:a4:c3:29:0c:38:e6:f4:77:fd:ea:e1:8d:8d:80:
9b:df:44:e3:52:bf:3d:39:fc:f4:ca:d1:85:63:88:
d6:e6:67:3a:4d:a4:ee:44:05:e5:ae:56:11:b0:cc:
87:84:37:f8:31:47:0a:d7:76:b6:4c:85:e6:f3:28:
bf:b3:85:49:2a:8b:db:12:55:dc:a1:4e:fc:67:07:
17:41:a3:d8:bb:58:44:fc:9d:11:ec:56:e5:b0:43:
84:c2:e1:34:e3:6c:83:42:88:b0:aa:b1:a4:8b:2d:
b3:4c:33:aa:0c:ad:25:47:e8:49:52:bf:5b:a2:65:
b1:26:df:a3:5b:8f:0a:89:3b:ad:ef:44:e2:c4:5f:
11:3f:c0:8b:51:4d:fd:6b:33:d4:9f:8b:a3:19:5c:
ae:10:3c:15:6b:7c:fb:62:5f:80:0f:81:de:79:de:
21:9b:5c:84:34:a5:2d:fa:be:e7:fe:c2:a6:83:2e:
64:48:0c:90:2d:57:74:62:7a:29:85:0d:13:b9:40:
b8:67:dd:4f:94:41:f8:09:8e:c3:9f:fa:a7:5a:88:
9c:0e:6b:12:91:c8:72:63:c6:32:a7:c5:29:df:67:
4d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A2:35:94:94:64:16:B4:4A:CD:83:98:DD:61:50:A9:C7:F3:22:69
X509v3 Authority Key Identifier:
keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d9:fc:91:71:9d:c8:03:93:f7:74:25:6f:82:87:c6:d3:39:
a1:4b:f0:ba:5c:3e:36:d1:b1:d1:f9:7c:46:e5:cf:d1:f1:76:
ff:da:db:d5:4f:75:08:03:52:e7:bd:7f:22:92:bd:66:d5:78:
23:57:f5:c8:2f:cf:bc:8f:64:af:90:dc:78:7a:e9:48:05:80:
01:b3:7a:4d:d6:53:f6:e8:4f:52:14:ae:19:04:c8:5e:71:ae:
b5:03:6f:b9:b2:75:e6:c8:d5:29:8c:c8:0d:ef:d8:63:d1:04:
e2:ea:cb:65:9a:c2:13:dc:a0:c0:b2:2c:24:7b:42:15:9a:1b:
f4:24:df:7b:c4:07:e8:6f:cb:b0:a9:d1:c3:79:a2:fa:8a:d5:
26:0e:f1:53:7d:89:56:62:ea:ab:8f:2d:b0:5e:2d:60:ac:9f:
84:19:bc:1a:27:5e:3b:f1:cc:e2:7d:ee:c9:d5:63:cd:4b:70:
60:ba:2a:a7:07:d0:0e:7b:14:69:5e:c7:5e:ca:8b:4d:58:2e:
44:ee:b6:41:1e:2d:c1:ef:45:fd:be:03:c5:9c:09:48:e7:3b:
50:0a:7f:b2:34:64:94:2b:31:8a:f7:c0:91:c5:ba:4a:dd:61:
7b:ae:b4:58:9b:89:7d:55:22:cd:01:fc:f7:99:e3:fa:e7:88:
6d:4b:11:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:02:47 2024 by rpki-client on console-fra.rpki-client.org