Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
File: MQitUnxyDreXB7P7excsiLczsTM.mft (raw, json)
Hash identifier: 8gM7v5d/edoFdn9OWyzp4aQkA69W9upnE9aKNcww18Q=
Subject key identifier: 53:C6:09:43:BB:B0:88:1B:CD:BB:F7:6A:0F:9A:EE:88:87:9D:97:61
Authority key identifier: 31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
Certificate issuer: /CN=3108ad527c720eb79707b3fb7b172c88b733b133
Certificate serial: 01935F8BCAB5747B10F5D78338EE0143F8F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
Manifest number: 0BFA
Signing time: Sun 24 Nov 2024 19:00:17 +0000
Manifest this update: Sun 24 Nov 2024 19:00:17 +0000
Manifest next update: Mon 25 Nov 2024 19:00:17 +0000
Files and hashes: 1: AcgHrDL1Qf1i3_khrxLLit0GyfM.roa (hash: sxmYeaDOyuXFVuAq5UXP+xmWPLLdrmtmItLT/GK3PLA=)
2: MQitUnxyDreXB7P7excsiLczsTM.crl (hash: n1Ki4S8OYP0OfI45BXC+BeLODJtGvwirGqRdcbwFjRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5f:8b:ca:b5:74:7b:10:f5:d7:83:38:ee:01:43:f8:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3108ad527c720eb79707b3fb7b172c88b733b133
Validity
Not Before: Nov 24 19:00:17 2024 GMT
Not After : Nov 25 19:00:17 2024 GMT
Subject: CN=53c60943bbb0881bcdbbf76a0f9aee88879d9761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:07:a4:65:ab:64:53:bf:e3:e8:0a:14:ed:fa:
6d:bd:5b:2a:bd:0a:29:e8:4e:ae:51:67:27:93:c1:
f2:9a:64:e8:36:d4:13:db:2d:69:b5:24:1d:bf:7f:
8e:f9:60:b1:ea:f2:bb:3e:e6:c9:c4:db:6d:c5:77:
bb:b6:9e:e1:12:1d:5d:82:50:09:c9:42:ed:8a:15:
73:0f:92:36:39:0c:91:14:9a:9b:40:cc:5a:9e:4e:
60:a0:a8:8f:df:7d:19:c1:8b:33:2c:77:35:e0:63:
0a:4d:9a:62:49:5b:e9:bb:1e:22:92:8c:3b:06:50:
4e:b1:7d:82:bd:b4:c9:89:33:89:33:d4:1b:39:dd:
21:cb:fc:49:d5:7b:a0:e0:f8:aa:73:cf:08:6f:46:
c2:2a:6f:6a:48:64:47:77:b0:a6:ce:64:fc:f2:88:
b8:77:a7:ea:32:7c:40:53:b0:a8:77:e3:cb:9a:cb:
35:b9:6a:a9:3d:46:f6:be:f8:72:ba:b3:0c:9e:7c:
2a:70:84:42:38:cc:a6:d9:4b:5d:0e:2e:cb:e3:dc:
2a:10:62:46:44:99:f8:f8:e9:64:94:f5:3c:0b:68:
16:a6:80:c1:b6:af:bb:5d:63:9e:7e:c2:1e:d1:c7:
6d:1e:76:c1:77:43:e2:44:ba:2d:6c:c9:3e:fe:c2:
b2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C6:09:43:BB:B0:88:1B:CD:BB:F7:6A:0F:9A:EE:88:87:9D:97:61
X509v3 Authority Key Identifier:
keyid:31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:84:9a:80:a4:c4:56:e3:c3:9c:7e:91:dd:92:26:56:ae:b0:
11:b8:0d:06:a2:85:a3:7d:6d:7f:a9:2b:be:0e:e0:7f:2e:73:
b9:a0:73:75:4d:09:cb:a1:0a:fa:a1:bf:5c:48:f8:fd:04:ad:
a9:fd:b7:6c:76:41:1d:bc:ae:54:dd:3d:59:52:ed:1d:e7:c7:
6b:4b:94:2f:b4:25:18:ec:f5:4a:fb:45:d5:0a:40:b6:47:e2:
80:62:aa:07:61:e2:18:74:dc:a3:4b:e7:94:78:5d:10:69:a4:
b1:6c:bb:a8:02:70:bf:e4:9d:98:63:4c:32:b4:77:1e:1c:68:
e6:7a:3c:79:d3:1c:48:f1:58:b9:27:9d:28:32:30:71:f7:75:
39:3a:ec:6c:75:9e:92:54:05:c3:1b:db:35:90:8a:b9:c7:1f:
b4:03:61:ec:fa:54:18:35:77:5d:9c:93:9d:28:d2:3c:6b:b6:
6d:6b:44:48:ad:ec:52:6f:40:dc:c6:bf:e2:ce:a8:63:6a:c8:
f8:b2:45:45:b4:96:92:ee:47:cb:71:2d:f7:bc:5c:78:68:3d:
7e:47:b0:bc:44:c5:89:8b:8b:c3:bd:7a:45:81:db:fd:3d:4d:
34:b7:6a:55:c3:26:93:9e:8b:43:c1:ef:e9:63:5b:c7:da:ad:
3f:54:f7:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 22:27:58 2024 by rpki-client on console-fra.rpki-client.org