Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
File: WqKpJUebz8vBloipUqJDAfTnaDk.mft (raw, json)
Hash identifier: y9bnhl2lI4KpvmiDch+JR9qwO6YujJdIf/s58+F6Ozo=
Subject key identifier: E5:C8:EE:E2:44:A8:41:86:C5:BD:6C:C8:C5:2E:A3:6F:DC:B6:0E:35
Authority key identifier: 5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
Certificate issuer: /CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Certificate serial: 01936A46BA42B6A13A57CAB49D04F017ACB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
Manifest number: 04D2
Signing time: Tue 26 Nov 2024 21:00:40 +0000
Manifest this update: Tue 26 Nov 2024 21:00:40 +0000
Manifest next update: Wed 27 Nov 2024 21:00:40 +0000
Files and hashes: 1: 3tcEWJLNR5YppEf-NC1t0Lwazco.roa (hash: 0HPTjkF9b4kad5XiMa6wR9oJsy0isI71bmEWe19u3sw=)
2: WqKpJUebz8vBloipUqJDAfTnaDk.crl (hash: 97CYZK9a6ZOrBtYAvB9FfpxXzo0DCKfNLqqYyr/zDtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:46:ba:42:b6:a1:3a:57:ca:b4:9d:04:f0:17:ac:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Validity
Not Before: Nov 26 21:00:40 2024 GMT
Not After : Nov 27 21:00:40 2024 GMT
Subject: CN=e5c8eee244a84186c5bd6cc8c52ea36fdcb60e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9d:29:4a:81:68:7c:97:c3:ae:b6:3c:85:12:
9a:d8:44:c8:9e:b4:1a:94:9a:b5:b3:77:03:fa:28:
66:81:03:be:74:03:02:53:e6:20:27:6f:53:47:fd:
55:7f:f6:c0:54:10:6c:b9:bf:c4:64:4f:85:64:63:
11:53:ca:d4:55:f8:3a:3a:8e:e0:fc:19:02:31:a0:
25:b2:0a:91:38:b0:fa:2e:60:32:90:4a:5f:96:dd:
19:b6:dd:dc:df:76:df:28:72:f4:47:6d:15:64:c6:
0a:65:b0:51:f0:bd:77:af:53:2a:02:38:9a:77:26:
dc:4b:9d:fd:8e:dc:df:28:47:7a:19:49:a9:01:c5:
c3:45:74:ca:db:f7:ca:ac:7f:9b:29:41:49:56:6c:
b8:ee:42:84:d2:aa:56:80:9c:dc:81:9d:79:59:1d:
5a:e9:3a:86:fe:d4:5e:ea:3d:1c:49:ff:40:23:2b:
1d:18:db:fe:e6:c7:e0:51:54:af:44:e6:1d:ed:bc:
ae:7e:e3:70:67:0f:2c:c8:12:5a:ad:7a:e3:d9:69:
c3:92:2e:12:62:e5:70:6c:46:ba:b4:54:d5:4f:85:
ff:42:a2:9e:ee:51:f6:1a:c7:a6:36:67:40:c1:3f:
cf:71:bf:8c:a6:d5:9b:5e:dc:a5:b2:da:db:5f:f4:
b7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C8:EE:E2:44:A8:41:86:C5:BD:6C:C8:C5:2E:A3:6F:DC:B6:0E:35
X509v3 Authority Key Identifier:
keyid:5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:3e:c4:af:91:c3:c2:b4:c3:88:39:91:47:47:47:d2:bc:77:
68:9f:17:52:d1:fe:61:3a:f2:6e:4b:b0:2a:ac:1f:03:de:52:
c6:02:a3:09:ec:32:ac:bf:6b:74:09:fc:2f:bb:55:8a:87:29:
46:a9:e8:16:f2:be:2f:48:d5:0e:46:3e:dd:57:8c:cb:ee:eb:
ec:97:02:6d:89:ef:50:4a:b8:37:ac:1f:8c:21:6d:83:93:bd:
55:d1:4b:6e:0c:9d:0b:55:c5:a4:52:04:10:ae:c0:9a:6d:51:
43:36:e8:ed:2c:b6:13:90:e9:39:bd:3e:22:fd:bf:1b:30:b4:
07:d6:bc:f2:70:4c:ae:4d:2b:db:81:71:78:70:06:7a:58:74:
f2:e7:1d:eb:93:6d:eb:37:2e:a0:d3:11:60:e8:12:36:25:4a:
82:e1:02:8b:43:96:6a:30:e9:96:d8:38:0b:dc:e8:f8:09:f6:
f4:d1:36:91:ce:b8:a6:e4:b4:a3:be:51:ac:3c:83:aa:9a:c5:
b0:bb:29:36:35:6a:9d:12:fb:be:b6:04:e6:7d:46:6d:0a:42:
b9:75:49:6f:ee:9b:b3:76:8d:ff:29:5e:c8:a9:8e:d2:71:88:
6c:6c:26:85:84:53:87:52:65:be:a9:7a:44:c4:13:64:12:df:
c0:57:f9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:32:05 2024 by rpki-client on console-ams.rpki-client.org