Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json)
Hash identifier: yUuolYQESLFpmnp8Yw7ct+XbTqOcOCFOMdz0Vybd/hs=
Subject key identifier: 50:78:A3:83:21:5A:AF:0A:D6:F3:27:87:E3:BA:06:75:0D:F1:F9:DE
Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Certificate serial: 0193572DE1C59EDF03D21DD270B9DCC62BFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
Manifest number: 1375
Signing time: Sat 23 Nov 2024 04:00:44 +0000
Manifest this update: Sat 23 Nov 2024 04:00:44 +0000
Manifest next update: Sun 24 Nov 2024 04:00:44 +0000
Files and hashes: 1: Im9XUlP9g4m4-KIs05ONK-ercS8.roa (hash: HzsC17A7ZLX3q7qGezfD83Z97Pca5MGN+MCLP4nEcVk=)
2: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: ztt4F8p2KjSQBa9/h6lR1TVWQLJNvEggXovhrHOfKwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:e1:c5:9e:df:03:d2:1d:d2:70:b9:dc:c6:2b:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Validity
Not Before: Nov 23 04:00:44 2024 GMT
Not After : Nov 24 04:00:44 2024 GMT
Subject: CN=5078a383215aaf0ad6f32787e3ba06750df1f9de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c2:f0:26:bb:84:2b:06:f4:f9:76:ee:80:f7:
62:da:1f:81:e0:fd:66:65:2e:e8:8a:47:40:c7:5d:
34:01:09:40:a0:34:cd:fc:b7:44:e4:fb:34:51:f5:
86:36:95:e7:95:69:67:72:70:52:11:84:cf:07:27:
29:32:0f:1b:2f:b5:a1:8e:58:c3:73:af:92:a7:0e:
d5:b4:3e:5f:79:6b:02:bc:95:f1:f6:26:3e:16:61:
84:c0:4e:42:5c:15:82:3f:b3:30:bc:0f:15:9d:a4:
46:5a:9a:5a:e5:12:a6:1e:81:11:31:26:1d:65:fd:
ee:aa:86:bd:2a:57:1a:79:40:f1:6b:49:30:29:06:
f7:2a:3b:22:7a:5c:d0:54:a9:e3:24:32:02:ae:de:
63:14:fa:35:a0:0d:4c:54:cf:bf:72:3d:24:33:f0:
0f:06:21:2a:b1:c0:c7:49:6f:9f:98:be:da:1c:72:
38:ad:c9:d4:16:d2:ec:1c:59:63:34:30:7b:00:30:
b0:ae:fe:27:dc:6f:df:ce:b5:6d:e0:88:eb:1b:c5:
dc:1a:20:2d:38:10:39:6b:93:80:47:2d:09:d6:36:
26:d1:a6:78:d3:bc:d4:94:f1:ad:f6:af:d4:ee:56:
7a:78:5c:71:18:1e:26:59:17:07:cb:4c:74:90:61:
7b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:78:A3:83:21:5A:AF:0A:D6:F3:27:87:E3:BA:06:75:0D:F1:F9:DE
X509v3 Authority Key Identifier:
keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:6a:26:e3:07:3c:16:5c:1c:81:7e:43:a8:38:2d:86:b6:bf:
ce:dc:07:ef:51:5a:b4:6d:1f:c5:c9:a2:26:22:ae:22:4e:bb:
c9:88:5a:af:19:b4:5b:0c:3e:64:85:8d:47:14:85:69:32:69:
bc:4d:a8:e8:11:e7:32:8d:ef:9e:01:78:20:c4:b9:06:ee:9c:
64:d1:d0:14:0e:ea:dc:c6:5b:e6:a5:41:84:e1:16:51:53:21:
18:5b:77:e4:43:e7:8a:4c:42:d6:bd:76:2d:99:10:49:ab:4a:
1e:a7:1f:ba:aa:3f:95:54:36:00:4a:78:49:55:01:15:0f:c3:
cb:45:e1:a8:c4:c3:c3:fc:44:52:fe:76:2c:8b:ba:c8:7a:17:
d8:af:35:47:d9:1f:d5:0c:51:c2:c2:26:7d:2b:d7:ec:4a:23:
ae:9f:63:b5:11:37:b3:12:56:b1:d5:34:2a:0d:52:48:50:f4:
6b:fa:bc:7d:d7:84:7b:bb:7f:70:14:84:21:c2:7d:06:bb:1f:
91:57:a8:e9:1d:3c:20:49:03:38:ca:61:5a:8f:6c:22:05:f4:
6a:82:78:95:74:75:69:79:37:16:70:db:9a:7e:d1:b2:ee:9b:
be:b9:df:20:2b:01:8d:2a:46:ce:aa:28:dc:c1:82:d7:e9:0d:
f3:af:81:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:43:36 2024 by rpki-client on console-ams.rpki-client.org