Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
File: QHShwDg61esPBYjkwzlLo0AQpiE.mft (raw, json)
Hash identifier: Rng8jYMDqZ9WUQUEMMJhK2ax/oawHScrP6tg/tWW0t4=
Subject key identifier: B6:78:14:B5:91:8F:9B:06:3C:15:D9:F2:FB:35:C9:F6:2F:01:E9:7B
Authority key identifier: 40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
Certificate issuer: /CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Certificate serial: 019366A0AC8304AA1D42F549A13F54EBABA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 04:00:25 +0000
Manifest this update: Tue 26 Nov 2024 04:00:25 +0000
Manifest next update: Wed 27 Nov 2024 04:00:25 +0000
Files and hashes: 1: 33s_uv21fbn3KgymRpmVK5zSyyE.roa (hash: r3bx7BEmNfJ6uRTqwMdUUBuljm4MXnYGp22ssEsndmc=)
2: I1O9JkhXZZ72sO6O0lisS2YFrTs.roa (hash: /uUuuMlJS2Y/kvVK9vOpvhPhr4kBD4uq3/WXldf+LbE=)
3: QHShwDg61esPBYjkwzlLo0AQpiE.crl (hash: 2TbcE4VBwGJPNL8XhDXy1a5/zzB9Rp+3cYGelalcH+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:66:a0:ac:83:04:aa:1d:42:f5:49:a1:3f:54:eb:ab:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Validity
Not Before: Nov 26 04:00:25 2024 GMT
Not After : Nov 27 04:00:25 2024 GMT
Subject: CN=b67814b5918f9b063c15d9f2fb35c9f62f01e97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4b:e7:c4:94:7b:1d:9a:36:63:d0:b6:29:be:
0a:a1:40:e7:e1:c5:e5:05:c6:42:6e:67:e7:3b:ab:
32:74:46:ed:c6:ac:4e:65:f2:bf:3a:e9:41:97:c0:
c1:79:d3:11:57:73:80:88:75:1b:d6:ac:b6:bd:73:
22:17:a9:cf:81:d9:c7:f1:b0:2a:05:98:38:0a:24:
5b:58:a2:50:2a:67:e0:2a:7a:93:70:62:fc:ce:e2:
94:27:28:08:2a:23:6e:1d:8e:50:ec:c3:9a:72:4d:
4c:47:da:4f:88:fd:bb:1b:fe:76:cb:57:19:1c:10:
ca:e8:12:36:46:06:2e:b2:a4:ef:ab:5b:67:9a:0a:
21:f5:ea:ec:96:65:a0:57:e3:ce:2d:46:49:52:64:
67:5b:fe:20:bc:c7:12:77:6b:1d:70:a6:e8:5d:72:
5d:27:6e:45:84:e1:6d:cc:e7:0f:c4:14:30:f8:e2:
c5:b5:2d:93:09:ff:08:26:2b:d0:fe:0a:73:4d:94:
96:58:85:7d:dc:e2:61:f4:d6:dd:c0:3d:8a:5c:9a:
1a:d0:e8:ce:09:1e:6f:3f:37:d5:cf:c7:56:58:fb:
1d:e0:37:00:ab:05:7f:e5:5e:56:56:d5:52:75:08:
69:76:7d:b8:fb:09:1a:69:62:f0:52:0b:f6:e0:8f:
a3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:78:14:B5:91:8F:9B:06:3C:15:D9:F2:FB:35:C9:F6:2F:01:E9:7B
X509v3 Authority Key Identifier:
keyid:40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:c0:a5:79:c0:4f:58:61:80:2b:07:b6:35:73:16:db:80:34:
aa:2d:21:17:a8:48:12:33:e4:c0:08:65:f3:c9:9c:36:3e:55:
a7:21:21:d7:10:26:a7:5c:b6:fe:64:7f:66:c9:ed:a4:87:1a:
39:13:cd:73:8e:57:25:4c:53:fb:09:dc:68:1d:5f:ed:0b:7d:
48:61:83:d1:14:c5:fb:7b:8f:29:32:37:fd:c4:e5:c4:63:35:
1b:98:59:c8:4f:57:f3:65:f6:7a:64:9c:8a:c2:05:3d:d9:89:
1a:4e:f4:f3:19:63:6c:7e:66:5d:7f:43:72:aa:6c:8e:ec:86:
39:e7:b6:5e:35:ee:48:c3:b2:90:dc:7d:a4:5b:9e:e6:e6:db:
d4:6f:63:1d:50:81:d0:49:01:17:28:d2:09:48:ba:bd:a0:4a:
6d:a5:af:f2:f9:a5:5d:05:42:7e:91:88:af:29:73:34:d0:94:
77:37:c8:4b:83:31:0a:c9:9d:ac:fa:50:d7:00:1b:83:ec:27:
cf:49:6a:23:20:fc:36:33:cb:ee:7c:e8:8c:22:52:4d:dc:b1:
81:a5:4a:d3:1c:df:f0:50:08:61:43:cd:57:1e:6c:1c:22:10:
52:c4:c7:f0:58:4b:85:cd:f3:c2:be:1f:63:98:13:b9:11:aa:
dd:f0:1e:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 05:36:17 2024 by rpki-client on console-ams.rpki-client.org