Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: QPeRkZKncWAXnfki73TJemQlnjb7jjPcIreUvXbP0Dk=
Subject key identifier: 2D:E9:84:88:B0:43:56:91:70:D3:86:33:AB:02:74:5E:88:4D:44:14
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 019353BF185F988CA6FD193BED3407078359
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 098B
Signing time: Fri 22 Nov 2024 12:00:52 +0000
Manifest this update: Fri 22 Nov 2024 12:00:52 +0000
Manifest next update: Sat 23 Nov 2024 12:00:52 +0000
Files and hashes: 1: kMq9diBowv6nCvabulowQTpN1L8.roa (hash: uU1YDBJdxC8e3v7LbcibWSN88T8Vo0X1lN/gu8i/NO4=)
2: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: xyNkF3olQbpFPILgTAJ0qg9fqNbJqKKJaultoJHHcDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:bf:18:5f:98:8c:a6:fd:19:3b:ed:34:07:07:83:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Nov 22 12:00:52 2024 GMT
Not After : Nov 23 12:00:52 2024 GMT
Subject: CN=2de98488b043569170d38633ab02745e884d4414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:50:42:f2:f4:dc:7e:0d:8f:52:22:1d:58:c8:
5b:1e:61:57:b0:08:66:a6:46:bd:8e:b8:91:6a:a2:
8e:cf:38:ef:1a:b1:d9:f5:86:e4:19:db:7e:d1:66:
ab:39:40:a1:67:be:da:27:6b:58:fa:4a:18:e8:10:
f3:07:9d:bb:17:33:31:66:e2:4f:fb:52:d2:65:cb:
14:ba:c5:a2:c4:9d:6e:1b:50:0c:fd:cf:ec:c6:d5:
fd:8c:26:63:4d:bf:df:fc:a7:7f:8e:2c:44:69:84:
a2:ab:84:00:c3:97:91:3d:b1:c5:f9:68:42:65:41:
7c:12:9e:df:f9:a6:5e:22:fb:bb:62:52:92:bc:15:
b5:72:49:f0:28:1b:37:26:12:32:dc:f7:02:80:b2:
4c:0a:ac:d7:61:60:65:b6:f6:0b:12:93:be:27:04:
af:57:5e:7b:d7:56:7f:c9:c2:bd:c9:3b:7f:9c:87:
43:c8:b5:fd:2f:ef:6b:97:8a:12:a4:c6:b1:5b:e4:
8b:9d:0f:2c:20:0e:05:8c:93:51:3a:a5:64:82:7c:
6b:a9:4e:98:c7:9a:bf:ab:ca:5c:3b:54:bb:d4:7a:
72:32:08:31:95:45:12:be:f9:ec:29:9a:f8:4d:b9:
17:ae:e0:91:47:7e:7d:90:d7:63:e3:59:7f:e0:4e:
24:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E9:84:88:B0:43:56:91:70:D3:86:33:AB:02:74:5E:88:4D:44:14
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:b7:40:cb:39:14:28:6a:8e:7c:2d:5a:ad:a4:7a:c4:da:ba:
93:55:1c:aa:34:8a:75:f6:1e:d6:fe:c8:73:d6:92:4c:69:6f:
8b:29:56:8f:88:f4:a7:31:5a:5a:c7:f0:a7:91:97:41:ca:da:
73:bf:ab:3a:40:5e:d1:3a:f6:57:41:35:07:49:54:59:d9:93:
ac:85:87:98:95:c6:6c:f4:16:79:e3:bf:58:a1:92:ad:41:2d:
5f:93:19:d4:d5:ae:4b:2f:c6:ea:63:17:b8:4d:47:0a:77:15:
15:75:ba:1d:e3:01:fb:d7:1a:85:fb:ec:d5:80:7d:8f:b3:c0:
eb:cf:56:78:fb:45:77:72:92:c9:56:e8:bb:d3:2d:5e:9e:29:
ab:68:5e:0c:0a:47:65:62:30:ed:26:69:36:47:86:ec:f3:52:
81:06:b3:1f:59:5d:15:06:af:09:e1:29:10:a7:be:36:e7:f9:
2d:42:82:84:81:70:07:8b:6d:d8:ff:20:28:91:74:b2:6d:e5:
5d:90:e3:53:d3:fc:8b:b8:e5:20:fa:61:72:c1:92:57:aa:be:
44:8a:de:a1:74:56:2f:e9:21:f2:3d:e0:87:f2:58:a4:18:1e:
38:5d:35:86:1e:0a:c1:62:07:66:b4:77:44:ed:ea:98:82:e1:
66:62:45:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:21:45 2024 by rpki-client on console-fra.rpki-client.org