Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
File: QLt2qpbfjrfWd3s1clLhEVUjh4U.mft (raw, json)
Hash identifier: lHDJa+yLAIb2Ywl9lqvlgyOmdTAc2qwMGAZwkvzC5+c=
Subject key identifier: 96:6C:AE:70:F4:BB:EA:68:2A:D4:DF:E4:CA:CA:CA:B9:DC:78:E1:E5
Authority key identifier: 40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85
Certificate issuer: /CN=40bb76aa96df8eb7d6777b357252e11155238785
Certificate serial: 01936A7DF05FB0ED8EEE99F67D577E82CCD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
Manifest number: 10D3
Signing time: Tue 26 Nov 2024 22:00:58 +0000
Manifest this update: Tue 26 Nov 2024 22:00:58 +0000
Manifest next update: Wed 27 Nov 2024 22:00:58 +0000
Files and hashes: 1: DZzZzVD9TPzyFwpQpkMr-J22iUs.roa (hash: HXmxjT921Aub51FfBQya1oLDS59KWZTpbbMCFFRxtps=)
2: QLt2qpbfjrfWd3s1clLhEVUjh4U.crl (hash: YeGY+/5+eWeJFfmol0Zs3W0v2vi6UA5YzAtyIV7PCGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:7d:f0:5f:b0:ed:8e:ee:99:f6:7d:57:7e:82:cc:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bb76aa96df8eb7d6777b357252e11155238785
Validity
Not Before: Nov 26 22:00:58 2024 GMT
Not After : Nov 27 22:00:58 2024 GMT
Subject: CN=966cae70f4bbea682ad4dfe4cacacab9dc78e1e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0c:5b:db:3f:f1:a0:9f:d8:f7:13:4f:ac:4e:
7c:b7:72:f3:cc:b8:19:09:0b:24:96:00:cc:fc:1b:
18:08:0d:0c:28:f4:ac:c7:eb:50:a1:41:6e:66:2b:
44:8d:8c:56:69:28:3d:32:00:2b:73:e0:94:5c:82:
93:79:dd:39:12:ab:12:86:ab:91:4c:bd:27:b2:c6:
65:f4:38:e4:1f:06:e2:72:43:c0:29:63:b5:c4:5c:
73:e1:3e:a3:90:7a:c0:44:32:ab:fc:e0:57:8e:70:
2f:50:a5:69:5d:2c:a5:29:e4:39:a8:50:ad:8a:47:
b4:87:d9:2b:7e:c0:d2:79:95:7b:8b:66:73:44:fd:
4a:c5:2e:d4:52:7d:82:34:6f:9b:cb:77:a5:74:e5:
48:50:a1:2e:54:2a:21:6f:f9:6f:cb:66:46:f0:2e:
c0:a2:d4:6e:8b:97:fe:9c:d1:7f:57:66:83:dc:56:
ed:5b:61:10:0e:eb:bf:6d:3b:ed:8c:71:a5:b6:06:
1b:5f:f3:44:e4:29:97:28:8f:e0:fe:9d:95:60:0e:
72:3a:79:6c:b5:b3:60:df:9b:a7:58:75:f0:97:4e:
2a:d8:54:09:e4:91:de:55:3a:6d:94:3b:02:bd:0e:
2d:7f:46:11:89:a7:00:f1:78:b2:ed:a4:c0:d4:e3:
de:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:6C:AE:70:F4:BB:EA:68:2A:D4:DF:E4:CA:CA:CA:B9:DC:78:E1:E5
X509v3 Authority Key Identifier:
keyid:40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:92:f6:14:76:b7:3e:00:6a:90:2c:71:0d:ab:38:15:bd:f4:
30:6a:dc:d9:f3:b6:81:7d:16:3f:7e:fb:d2:a0:02:c6:91:b0:
a5:79:92:38:46:e7:7f:b6:d7:83:cb:60:0e:a4:80:3e:65:1e:
9c:31:eb:33:4b:c7:20:67:7a:40:ba:c4:5b:c8:56:78:52:48:
82:10:dd:5a:27:ab:99:d1:01:21:10:85:11:8c:28:eb:b4:da:
d0:e0:c2:85:d5:36:d9:5c:9d:04:2c:b5:93:7a:8a:07:4a:ad:
1b:dc:ff:cb:47:84:7b:a1:41:6b:81:6e:fb:24:45:b0:d1:39:
80:ec:1d:9a:0c:2e:0b:74:6b:dd:21:12:e5:98:1c:f8:59:3a:
c7:07:e1:06:95:53:b0:58:98:94:a2:92:14:f7:85:f2:84:25:
ee:f2:28:2a:6b:ee:f8:9b:93:e9:4c:58:04:59:43:78:95:10:
36:8f:4d:9d:c3:33:8d:97:2f:0d:59:49:ef:c8:03:f4:11:98:
49:de:02:55:1a:78:ef:97:0a:ad:66:80:36:31:a5:70:82:06:
b5:68:e2:bc:52:81:59:0d:fd:1a:2c:66:80:e5:f4:ae:19:53:
6c:b7:9c:7c:51:17:81:e6:c2:34:d3:e3:0f:0b:b4:fe:ff:a5:
c4:91:9a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:47:51 2024 by rpki-client on console-fra.rpki-client.org