Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
File: fQtE5JJUnht9pTLIDDSIUMWkToA.mft (raw, json)
Hash identifier: HD2Y3vEhHfKD8n5o9Y+AmHaYVajHIKA1+mxj8wMRYR4=
Subject key identifier: 3A:AF:DC:21:E0:02:00:FD:C6:E8:11:71:C5:BB:75:80:50:0A:D9:A7
Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Certificate serial: 0193579B814C51D55C96A8EBD9983FDD080D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 06:00:29 +0000
Manifest this update: Sat 23 Nov 2024 06:00:29 +0000
Manifest next update: Sun 24 Nov 2024 06:00:29 +0000
Files and hashes: 1: QwwAb2l90khno-2jaMfBRPoeDZ0.roa (hash: NNnV0yC+kIsIZpnHWbTx6ioy1Ma9jO4uPAirfZcYGUU=)
2: fQtE5JJUnht9pTLIDDSIUMWkToA.crl (hash: ztVkvWDquQZNwafTjuQ8c9zYY+Zy73yMNdaV1Ab6xO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:81:4c:51:d5:5c:96:a8:eb:d9:98:3f:dd:08:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Validity
Not Before: Nov 23 06:00:29 2024 GMT
Not After : Nov 24 06:00:29 2024 GMT
Subject: CN=3aafdc21e00200fdc6e81171c5bb7580500ad9a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a6:34:86:8d:17:63:0c:60:5e:25:47:fb:8e:
d8:2e:5e:f7:9c:a1:36:b0:d9:a3:76:27:19:98:18:
fd:1e:53:72:d1:3b:f2:1a:e8:fa:c1:b1:a8:91:06:
d0:f9:2b:3d:7b:0d:3d:87:73:fc:83:ff:d5:9a:d9:
30:7f:f7:4b:98:1d:f5:d5:52:72:c9:8a:ec:71:1c:
38:c4:c2:1e:a4:d6:74:f5:71:c5:55:c9:92:a7:47:
38:9b:e7:5e:15:97:96:02:85:26:3c:df:c0:1b:97:
c5:03:49:93:6c:18:38:43:87:fe:bd:0b:47:76:f9:
5e:ad:01:ca:66:b6:d3:2b:e8:8c:55:0e:82:e1:fa:
e4:3b:1b:8e:af:b0:d2:83:f3:f0:90:b8:a1:20:d5:
b5:79:e6:c7:36:bf:8b:6e:80:a8:be:7b:24:c1:58:
39:ff:be:c7:7c:ad:5a:a5:27:d9:ec:43:12:42:b2:
57:22:c8:c0:39:3a:2d:53:0e:84:67:07:d7:cf:81:
c6:2a:48:5d:8d:d7:ee:22:f7:d5:f4:61:e0:50:e6:
47:a7:e1:6d:82:0b:b0:25:08:0b:9c:8b:12:8b:71:
82:46:d6:5c:5e:63:60:58:82:27:29:a3:4f:29:58:
ba:5f:6c:b6:f0:c0:0e:93:e9:00:ad:56:1b:fe:7b:
fb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:AF:DC:21:E0:02:00:FD:C6:E8:11:71:C5:BB:75:80:50:0A:D9:A7
X509v3 Authority Key Identifier:
keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:d6:09:7a:60:fb:85:cd:9d:52:08:bb:8b:96:e1:ce:83:49:
28:d0:1f:30:ce:99:8a:37:ff:0b:d9:9d:d7:7d:c1:bf:ad:e4:
f5:90:aa:7b:ec:93:e8:f7:db:5f:10:76:03:14:20:68:49:0c:
59:95:db:b2:f3:8e:2a:fc:2b:51:46:99:22:8f:8f:85:3c:cc:
88:ef:86:19:43:32:07:ca:e7:a9:bb:c0:1c:bd:3e:30:d0:0c:
40:50:3e:01:88:82:84:4f:e4:00:89:dd:98:48:d1:d5:66:1d:
bb:37:f5:78:20:98:7e:c1:6a:b8:f1:4f:24:8b:06:97:e5:50:
ea:e8:e2:10:2d:0e:f1:5d:94:c5:9c:90:24:75:72:d9:fe:20:
34:ba:c6:78:a4:80:9e:4d:5c:f3:92:06:3a:88:1d:1f:84:42:
0f:1f:61:f9:ea:34:80:37:3c:13:6e:f8:ed:fa:2b:49:27:27:
43:1d:fe:07:5d:38:f9:d4:4b:0f:1f:a4:85:b8:fa:4b:41:41:
a2:ad:25:bb:36:67:84:37:51:2d:b1:f7:06:fb:d4:46:d9:e8:
3b:be:86:73:38:a7:4e:ec:a8:bb:1d:f4:7f:7f:e3:56:56:3c:
09:cd:a6:ba:27:3b:85:f1:5d:89:77:d4:18:ef:7d:1f:45:f3:
9b:f3:d1:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:39 2024 by rpki-client on console-fra.rpki-client.org