Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: SulvUkBlbUsqWPwy1Qua5gF2FcoojBPXRN9SB4Jb0n0=
Subject key identifier: 03:AA:EA:F3:62:B1:08:5F:C3:50:75:22:F6:11:D5:1A:3E:A6:A7:FC
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 0193579BEF0BD7110ED0E4D6EBC7D811D233
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 06:00:56 +0000
Manifest this update: Sat 23 Nov 2024 06:00:56 +0000
Manifest next update: Sun 24 Nov 2024 06:00:56 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: rDDLQu2rtAqnAL4M460X2cLJ+fdeCCr/KgzYkyfPmr0=)
2: vH670xrkwvVR2VssahTVwwmvkRk.roa (hash: 5BmtrUEcCIJ5XLm5vkceoHd9TwhztDPwd9yN95dlnmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:ef:0b:d7:11:0e:d0:e4:d6:eb:c7:d8:11:d2:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Nov 23 06:00:56 2024 GMT
Not After : Nov 24 06:00:56 2024 GMT
Subject: CN=03aaeaf362b1085fc3507522f611d51a3ea6a7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:71:44:8c:93:b9:f4:f1:e7:70:4f:d3:3c:74:
35:05:ce:87:24:c5:22:ac:99:14:8b:94:7a:5a:5b:
35:99:4d:79:6c:99:65:26:2e:f8:86:b6:5e:1f:bf:
24:98:61:6a:3e:3f:d6:d6:37:5c:dc:3e:ff:4b:ae:
27:d5:ae:3f:75:f8:6d:50:a1:a5:bd:aa:ce:37:47:
65:8a:e7:61:c9:f7:40:4b:18:6f:bc:7c:50:b2:66:
b2:81:f8:53:8b:f6:f7:ef:f7:10:67:d7:7e:55:f2:
bf:e7:ab:01:f7:ab:04:a7:ba:20:55:cb:b6:99:3d:
13:ea:95:a7:9e:24:ac:44:84:3b:10:7f:0f:29:e7:
be:d4:9f:49:4c:92:0e:21:1a:11:26:3c:c7:7a:ec:
18:73:5f:ed:56:0a:69:ff:2e:50:c3:4b:6a:0c:d0:
eb:66:ea:6c:b4:39:af:3b:65:16:ae:3f:92:a1:4b:
99:86:ff:49:99:6a:e6:d9:08:03:2b:88:51:74:ee:
4f:51:90:7f:5c:16:5a:7b:e2:4e:f4:ae:42:bf:9e:
13:0b:63:e7:97:d8:4a:3d:61:dd:62:08:eb:41:cd:
a1:d3:40:0a:15:f4:a9:9c:50:c7:67:46:36:41:85:
c2:a2:b5:a9:22:fe:79:2d:bf:12:bd:c4:87:62:1f:
2c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:AA:EA:F3:62:B1:08:5F:C3:50:75:22:F6:11:D5:1A:3E:A6:A7:FC
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:20:dd:97:9d:5b:03:b8:e0:1a:91:57:7b:c4:3b:d9:8b:8d:
4d:57:41:b5:5f:95:b2:88:7a:69:85:ba:ce:3a:11:a7:60:78:
a0:1a:12:b7:36:18:1d:2e:44:ee:2c:8a:d2:ba:c6:5a:8f:41:
5b:2f:8c:17:27:d7:22:0b:4c:ab:85:75:b5:bc:d6:01:91:bd:
5f:9a:22:bd:86:cd:80:3a:6e:04:bc:4e:39:6c:c5:aa:70:bf:
d8:d1:83:1b:95:d7:d7:d2:11:7b:7d:43:9c:ee:51:f5:48:2c:
57:39:6c:5b:c1:a7:f6:be:ca:d9:fd:0b:e0:84:38:03:33:71:
b3:b6:fd:af:de:85:5d:cc:1e:56:01:ca:bc:1d:ca:26:a8:56:
0e:78:7f:ad:5f:ef:b7:96:3f:52:51:68:a1:c9:47:58:ae:1e:
68:8b:46:c3:2c:d3:2a:5a:ca:af:fb:73:b1:be:c3:89:7b:c4:
3a:83:c9:30:b9:66:bf:ca:6e:bf:c0:8d:f6:22:d0:67:f0:75:
61:b0:61:69:5c:6c:86:52:19:2d:84:63:2d:42:74:6f:4f:ec:
10:c9:80:7e:e3:70:8e:84:8d:16:20:77:b6:bc:f3:40:36:c7:
25:65:e7:dd:0c:98:69:a4:fe:53:5d:0f:29:cb:76:7e:b8:6e:
14:fa:d0:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:53:38 2024 by rpki-client on console-ams.rpki-client.org