Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: dt7EyCgM/FSBrP2UoN3loYM1agdnR6x1JULwmIJ1MAg=
Subject key identifier: 42:A7:72:B2:1A:D9:41:21:25:1E:99:B0:17:8B:02:47:A7:F1:6F:1E
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 01940645FE9B09852886C2FEDA97AE997CFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 06E8
Signing time: Fri 27 Dec 2024 04:00:37 +0000
Manifest this update: Fri 27 Dec 2024 04:00:37 +0000
Manifest next update: Sat 28 Dec 2024 04:00:37 +0000
Files and hashes: 1: A0NpMoISF_n0UVpJOdVeia3E6lI.roa (hash: gpMm4hnzFJWfivaV1ostwv6VvAS/Z1nFuWkRniwe3p8=)
2: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: 2zVj21pUbcW0ZK4Z90VsvBh3nnSXMy60iSI79ifc1lY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:45:fe:9b:09:85:28:86:c2:fe:da:97:ae:99:7c:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Dec 27 04:00:37 2024 GMT
Not After : Dec 28 04:00:37 2024 GMT
Subject: CN=42a772b21ad94121251e99b0178b0247a7f16f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:94:a8:a1:f9:04:3d:30:c5:97:55:2f:89:0a:
2f:20:de:f8:72:eb:dd:03:3d:05:44:64:87:8d:e4:
42:d1:fd:6b:ba:ea:46:3b:d8:cc:58:bf:25:45:63:
dd:f2:49:10:7d:bc:c8:bb:25:71:6c:33:7c:b0:55:
5b:53:7a:cf:fa:99:d4:82:e6:dc:0b:ac:ef:8e:61:
d1:cc:d4:49:e3:0c:1b:dd:74:31:c9:7b:bd:c0:5f:
2e:74:f7:26:ca:12:d9:f0:51:0e:c5:64:8e:23:a3:
a2:ff:51:28:76:c1:47:ce:b8:9a:5e:01:eb:83:ff:
d4:13:e4:98:5b:1b:04:d7:51:dc:e5:35:a7:f9:e3:
f6:b8:08:82:c8:a4:da:7e:58:86:f6:e4:0c:c1:dd:
b7:36:00:ac:a8:49:c6:6c:e9:01:40:af:c2:57:2b:
d4:d2:c0:1e:4b:69:75:ad:e7:1d:bb:24:7d:0f:ee:
5e:51:35:bb:82:3d:fe:c9:51:d2:36:e0:a1:d8:7a:
d6:76:78:26:69:19:f6:57:28:db:75:07:93:59:13:
b3:0d:eb:86:6e:98:c7:13:ed:e4:9b:f6:bb:62:bb:
ae:79:27:e1:aa:4b:e0:90:e0:50:2d:0f:61:a1:5c:
d5:44:5b:32:9b:62:04:65:e1:e0:15:e0:8b:ae:fe:
f9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A7:72:B2:1A:D9:41:21:25:1E:99:B0:17:8B:02:47:A7:F1:6F:1E
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:7a:6f:19:81:ca:c6:66:5e:e8:86:25:d0:61:7d:01:b1:d1:
aa:79:92:ae:e6:59:fa:ff:88:7a:ed:e0:c3:d7:ac:75:14:df:
6c:34:52:e0:d6:e7:50:bd:cc:bf:c9:68:f3:59:b0:f2:67:e1:
c8:af:6f:9b:0c:1c:65:49:d9:fb:ae:a7:8f:26:2e:b6:ff:91:
c8:fc:bc:89:8d:46:8d:fa:a4:18:35:28:73:eb:43:2a:64:5b:
0b:ab:e2:ec:7a:8a:9d:11:b5:31:ca:ba:da:85:e9:64:d2:23:
96:bf:22:05:44:c4:81:14:c2:14:aa:50:b3:e5:4c:23:0a:ee:
38:77:89:9d:05:fd:8d:cd:f1:23:02:b6:42:fa:bb:49:d3:4f:
b0:81:a9:ed:be:17:7d:d3:e0:79:c9:54:35:34:de:ee:cf:87:
e5:c3:0d:4e:c2:3c:ae:b5:19:99:51:27:19:8b:2f:a6:da:32:
b1:10:33:c9:fc:80:05:6b:0f:b3:d5:01:e8:4b:8a:ba:42:3e:
e9:20:f7:53:3a:da:68:7e:a5:ac:27:86:60:2f:c7:7b:ca:f1:
62:cd:03:68:64:55:62:66:5f:18:1f:cf:4c:a6:c3:89:f2:88:
77:58:80:78:2e:47:77:87:2e:0f:39:a3:12:cf:c9:10:db:3f:
90:9d:dc:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 11:07:53 2024 by rpki-client on console-fra.rpki-client.org