Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
File: KQzE0K1dr8J6pONC-oDjSBToRcM.mft (raw, json)
Hash identifier: RKt0Oq8gX6uu00lMbvQw0HDuuEcv9YZWfwHkxsarQUk=
Subject key identifier: 52:1E:7A:3C:72:F6:02:53:6A:CA:DC:BF:C6:7D:12:28:69:4F:C7:15
Authority key identifier: 29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
Certificate issuer: /CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Certificate serial: 0193579BAAD8A39A6786C8EBCD74EFDE9B4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
Manifest number: 03AE
Signing time: Sat 23 Nov 2024 06:00:39 +0000
Manifest this update: Sat 23 Nov 2024 06:00:39 +0000
Manifest next update: Sun 24 Nov 2024 06:00:39 +0000
Files and hashes: 1: KQzE0K1dr8J6pONC-oDjSBToRcM.crl (hash: fR2Zg14KRGdIcj+UeS8/Ys/sLq/aGPglkyv7YXGlVMU=)
2: _8DtE132Q7qweOyIVGjuEpTGEl4.roa (hash: VuZcRvteetfHnI73jS/EOBtXzuxH9ZHmpBXT9aXPoXw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:aa:d8:a3:9a:67:86:c8:eb:cd:74:ef:de:9b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Validity
Not Before: Nov 23 06:00:39 2024 GMT
Not After : Nov 24 06:00:39 2024 GMT
Subject: CN=521e7a3c72f602536acadcbfc67d1228694fc715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:66:8c:f8:9e:98:7b:17:62:91:7c:92:12:6b:
62:9f:5b:14:7f:38:0b:22:2a:73:13:da:1f:7e:67:
04:54:99:06:88:6f:e1:0d:66:00:97:51:a0:85:18:
b5:98:1d:a8:8f:49:de:4a:9f:70:74:7d:e9:d8:65:
47:3f:9f:75:2e:0b:c2:76:fd:6e:86:11:23:02:34:
be:0e:cf:65:d0:91:75:5b:e1:f4:50:ec:ea:96:12:
41:1e:f3:a9:fa:bd:63:82:b4:af:5d:b2:ff:fc:ae:
7e:8b:64:52:46:23:3a:55:fb:3a:3f:b2:21:6c:fb:
d6:bd:9f:a8:98:4e:08:13:91:73:99:fe:05:f9:c7:
a0:b1:3e:12:b6:eb:64:cb:a7:8e:b1:5e:bd:fa:6c:
5d:78:e3:c8:43:b6:9e:67:0f:62:22:50:b6:80:d2:
50:9d:0c:ad:f0:77:91:13:1e:a4:15:93:d5:08:a1:
e4:a3:9d:3a:25:30:f4:c4:75:60:0b:25:29:36:52:
4b:a4:08:2c:13:0a:0d:d8:eb:e3:79:49:f2:64:dd:
e0:f2:13:16:6b:eb:8c:fa:3c:b0:a5:16:b3:59:c2:
bd:dd:7f:a5:6c:05:3d:c9:eb:99:ba:10:c9:1f:1c:
cc:cc:28:89:5f:a7:98:99:0b:9a:8b:51:59:2e:e7:
99:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1E:7A:3C:72:F6:02:53:6A:CA:DC:BF:C6:7D:12:28:69:4F:C7:15
X509v3 Authority Key Identifier:
keyid:29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:9f:71:56:6b:1d:62:96:4c:5b:b5:fe:82:55:f1:fd:97:3b:
4d:8f:2e:15:2a:b7:21:3f:0f:a3:54:6d:b1:40:1a:83:89:be:
15:20:f9:64:5b:8d:b7:7d:ea:59:58:0a:52:fd:77:0f:dc:3a:
57:40:42:3f:26:bd:f4:d8:92:88:a6:ce:0f:2e:30:84:60:c3:
8c:20:a7:ee:6c:68:79:d5:a6:4a:e5:01:f6:69:9b:16:a8:6d:
60:8a:67:dd:3e:db:48:34:30:b1:80:01:e3:1a:f2:61:9d:a7:
24:ff:cf:1d:91:96:d8:5c:d3:68:43:32:6c:d7:ca:e5:1c:0d:
dc:aa:3e:58:96:a0:aa:73:65:e5:67:da:4a:20:e0:0d:e2:de:
cb:bb:82:ee:51:d2:11:b4:d7:9c:c0:ea:e1:33:e5:19:62:6c:
3b:c8:03:52:41:6a:03:dd:3a:7c:4d:b1:3b:ed:16:c7:5a:09:
6b:81:b4:e1:99:89:97:0b:88:e0:12:18:59:e8:03:49:f5:a6:
5b:81:a6:4a:31:9b:c8:82:4e:b2:b9:fa:e9:4c:c1:e4:a7:a6:
1d:b4:d1:66:2b:fc:82:7d:1f:c0:5c:1c:9a:d9:af:cc:bb:06:
3b:ce:dc:b8:64:c3:f4:40:33:c6:66:cd:67:bc:c0:70:50:1b:
5a:ed:54:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:04:28 2024 by rpki-client on console-fra.rpki-client.org