Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
File: qwJca7PczxsWUUnChzwEsabH2no.mft (raw, json)
Hash identifier: l1BlE5gcD62ElMcp1f/GSJLjzYy6rPQTvpmYCZJ4mmM=
Subject key identifier: E7:FB:F3:81:33:23:BA:08:5E:CF:E9:B6:04:5E:C2:16:D5:42:EC:8A
Authority key identifier: AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
Certificate issuer: /CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Certificate serial: 01935688B2E54DBEBD330916557378F18812
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
Manifest number: 082D
Signing time: Sat 23 Nov 2024 01:00:19 +0000
Manifest this update: Sat 23 Nov 2024 01:00:19 +0000
Manifest next update: Sun 24 Nov 2024 01:00:19 +0000
Files and hashes: 1: qwJca7PczxsWUUnChzwEsabH2no.crl (hash: dW3dWSAZ79GO9u4YDTdLE1RBTew7wPd8a/2s1/QiHik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:b2:e5:4d:be:bd:33:09:16:55:73:78:f1:88:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Validity
Not Before: Nov 23 01:00:19 2024 GMT
Not After : Nov 24 01:00:19 2024 GMT
Subject: CN=e7fbf3813323ba085ecfe9b6045ec216d542ec8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:22:fa:99:49:0b:d1:2c:a4:55:ae:57:e9:ce:
ef:47:a5:f5:25:f0:80:2c:f3:45:44:26:72:f6:9b:
d4:b2:1a:e6:30:b7:ba:ed:67:28:dc:15:96:a3:5d:
74:c3:a4:39:e5:82:62:80:d0:77:51:d1:e0:a4:ed:
09:5a:59:b7:c9:57:27:5c:30:3a:14:d8:9e:22:3e:
fd:7a:46:a3:3c:37:a6:e0:ca:06:bd:02:a6:5c:4d:
6c:01:4c:e9:e0:28:51:6b:e6:b9:df:88:69:b7:b1:
6c:79:a3:98:74:e3:07:22:6d:be:20:37:59:e8:78:
80:15:ce:ea:ac:b8:2d:5b:4b:2e:93:0a:e8:1f:ef:
76:72:42:f8:58:5d:37:34:63:e9:e3:56:2d:d1:f8:
c2:4b:c6:62:05:aa:0c:cf:99:ac:88:3a:3b:03:39:
60:c3:38:6f:85:b0:53:bc:3d:fd:12:c9:28:d3:b9:
a3:11:30:9f:ac:99:f8:dc:88:6d:25:79:d9:99:3b:
ae:f9:e9:76:81:47:d7:6a:09:2e:b3:de:a2:cf:06:
0b:95:43:2b:f1:ba:a6:24:82:79:0f:70:39:7a:13:
0c:9c:ed:88:3b:5e:5e:f9:9c:ee:01:95:d7:26:28:
2e:d3:b4:f2:19:31:75:e5:31:d1:4e:0f:6f:6a:eb:
76:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FB:F3:81:33:23:BA:08:5E:CF:E9:B6:04:5E:C2:16:D5:42:EC:8A
X509v3 Authority Key Identifier:
keyid:AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:58:f8:95:8f:eb:5c:d6:60:07:fb:17:9b:16:15:70:56:f8:
e6:53:ed:5a:31:0a:f1:39:a8:df:b8:9a:1e:6b:b2:4f:ba:93:
49:96:c4:8f:69:59:62:ad:c1:95:03:fb:26:78:cd:46:46:d5:
e1:ac:5d:20:45:40:30:1f:d7:19:e2:5c:9f:08:c5:0c:c8:57:
6c:f5:09:21:a8:2b:af:50:3c:74:f4:9f:8c:fc:1d:49:46:6f:
b9:92:1f:56:4e:b8:d4:eb:67:54:bd:f9:4f:77:ea:20:b7:ca:
96:e3:42:df:c7:9b:9f:ea:d6:aa:18:61:1e:61:5b:58:5e:2f:
12:f1:45:94:42:97:82:b2:4a:a1:a9:ff:cf:2b:42:62:0a:dc:
2c:1a:8a:ed:55:b1:69:d3:5c:ba:c0:16:a5:58:4b:7e:27:18:
fe:ee:36:9c:b3:4b:c0:91:6c:4b:23:6d:e9:98:24:1a:08:06:
6c:d2:1e:c2:9b:c8:7b:de:0d:ff:49:8d:cb:ba:a0:90:52:8f:
01:2e:aa:45:8c:ff:48:1c:91:00:c0:3f:b2:ca:de:28:aa:e6:
e1:4a:7a:25:5a:55:b0:10:33:af:97:82:c3:97:05:7d:7f:c3:
99:7e:00:70:7e:66:dd:dc:28:b7:64:e4:4e:63:96:27:3b:3d:
ab:69:b7:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiLLlTb69MwkWVXN48YgSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDI1YzZiYjNkY2NmMWIxNjUxNDljMjg3M2MwNGIxYTZj
N2RhN2EwHhcNMjQxMTIzMDEwMDE5WhcNMjQxMTI0MDEwMDE5WjAzMTEwLwYDVQQD
EyhlN2ZiZjM4MTMzMjNiYTA4NWVjZmU5YjYwNDVlYzIxNmQ1NDJlYzhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSL6mUkL0SykVa5X6c7vR6X1JfCA
LPNFRCZy9pvUshrmMLe67Wco3BWWo110w6Q55YJigNB3UdHgpO0JWlm3yVcnXDA6
FNieIj79ekajPDem4MoGvQKmXE1sAUzp4ChRa+a534hpt7FseaOYdOMHIm2+IDdZ
6HiAFc7qrLgtW0sukwroH+92ckL4WF03NGPp41Yt0fjCS8ZiBaoMz5msiDo7Azlg
wzhvhbBTvD39Esko07mjETCfrJn43IhtJXnZmTuu+el2gUfXagkus96izwYLlUMr
8bqmJIJ5D3A5ehMMnO2IO15e+ZzuAZXXJigu07TyGTF15THRTg9vaut2twIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOf784EzI7oIXs/ptgRewhbVQuyKMB8GA1UdIwQY
MBaAFKsCXGuz3M8bFlFJwoc8BLGmx9p6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdKY2E3UGN6eHNXVVVuQ2h6d0VzYWJIMm5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8wNWIxZTMtMjRjMC00NjY4LTlmNDAt
ZmU3NzQ3M2UzZGNmLzEvcXdKY2E3UGN6eHNXVVVuQ2h6d0VzYWJIMm5vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8wNWIxZTMtMjRjMC00NjY4LTlmNDAtZmU3NzQ3M2UzZGNm
LzEvcXdKY2E3UGN6eHNXVVVuQ2h6d0VzYWJIMm5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM1j4lY/r
XNZgB/sXmxYVcFb45lPtWjEK8Tmo37iaHmuyT7qTSZbEj2lZYq3BlQP7JnjNRkbV
4axdIEVAMB/XGeJcnwjFDMhXbPUJIagrr1A8dPSfjPwdSUZvuZIfVk641OtnVL35
T3fqILfKluNC38ebn+rWqhhhHmFbWF4vEvFFlEKXgrJKoan/zytCYgrcLBqK7VWx
adNcusAWpVhLficY/u42nLNLwJFsSyNt6ZgkGggGbNIewpvIe94N/0mNy7qgkFKP
AS6qRYz/SByRAMA/ssreKKrm4Up6JVpVsBAzr5eCw5cFfX/DmX4AcH5m3dwot2Tk
TmOWJzs9q2m3aw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:52:56 2024 by rpki-client on console-ams.rpki-client.org