Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
File: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft (raw, json)
Hash identifier: 6dxZf2axzWJDKjX7RlbzcySWJ145f4k8qF336tzKcYU=
Subject key identifier: F2:5C:B1:E4:F3:E4:D9:E7:9F:35:15:B6:57:3A:F8:12:9D:22:42:51
Authority key identifier: AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
Certificate issuer: /CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Certificate serial: 01935689DF21DF7C6C7F7476B9B2CFC43529
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
Manifest number: 0D6B
Signing time: Sat 23 Nov 2024 01:01:36 +0000
Manifest this update: Sat 23 Nov 2024 01:01:36 +0000
Manifest next update: Sun 24 Nov 2024 01:01:36 +0000
Files and hashes: 1: 68hMY9hh5lw56Kw_wL7oRNQT4Dc.roa (hash: kzXaF8FjIY6GUfbcvlIKWmr+kZWMSYWCUR1CBzVhKqQ=)
2: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl (hash: vpm+/w978x5mdAsWbbBfQIyoygTlLKFgMlphaUOdeHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:df:21:df:7c:6c:7f:74:76:b9:b2:cf:c4:35:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Validity
Not Before: Nov 23 01:01:36 2024 GMT
Not After : Nov 24 01:01:36 2024 GMT
Subject: CN=f25cb1e4f3e4d9e79f3515b6573af8129d224251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6b:df:5e:b4:78:7b:65:8e:ea:6a:fe:e0:52:
77:61:e2:9e:81:0c:6d:ea:e3:b4:36:23:ff:7a:93:
7e:3d:ad:6a:96:ca:33:1c:14:70:ca:e6:1b:b3:05:
fc:d7:91:df:c9:8a:4b:a2:37:f1:10:8c:f1:29:cc:
d1:eb:17:0a:a2:91:17:05:4e:93:95:4f:5a:c9:5d:
19:97:71:4c:52:cf:93:6a:f8:6d:15:8a:9c:a6:c4:
23:ac:05:dd:69:bd:ac:2d:f8:85:c2:d2:59:3f:66:
04:72:ae:ee:bb:68:c5:7c:42:a5:c7:1b:91:ef:5b:
50:31:aa:9b:9d:89:2f:c0:d9:8a:27:74:c8:c7:1f:
6c:b9:5b:55:be:90:ae:52:e9:90:7e:a7:f0:3e:16:
ae:50:49:c5:c6:0e:c2:12:54:93:c1:20:1d:97:43:
d9:a0:ab:90:87:21:92:3b:75:79:66:33:e4:f6:84:
0c:cd:43:3a:5c:44:17:5e:25:60:91:d6:4d:8c:b0:
0c:48:c6:f7:df:b0:6e:a2:0f:ea:bb:cf:d8:30:64:
cb:05:a7:49:db:2e:e1:78:ab:0c:40:98:ce:c3:c1:
20:f7:d1:e8:4e:c5:06:bb:f3:ce:3c:ae:fb:1f:56:
73:c0:49:f7:3e:b4:ca:d5:be:f4:22:5c:ae:d3:d9:
73:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:5C:B1:E4:F3:E4:D9:E7:9F:35:15:B6:57:3A:F8:12:9D:22:42:51
X509v3 Authority Key Identifier:
keyid:AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:5a:c1:4e:f7:b4:84:19:62:77:45:c6:69:88:98:39:91:3e:
d3:e1:0c:4f:06:23:ec:56:4e:6a:0e:e4:cb:86:8d:54:91:d4:
bd:af:f3:c0:2a:05:38:2d:3c:38:6d:e6:28:c6:07:74:9d:e4:
5a:af:0c:ce:22:a9:36:17:a4:31:46:4e:4b:13:43:f2:f2:24:
73:cb:b8:71:0a:6f:5d:3c:06:0c:9b:66:4c:1f:79:46:68:f1:
71:93:77:7c:22:6a:4f:b9:ea:f3:ab:4f:8e:84:38:08:a1:bc:
33:b4:94:90:3c:fb:2a:e4:75:df:16:70:11:a2:fe:37:dd:93:
63:cf:7c:76:45:ab:dd:34:d9:ae:68:c8:a9:2a:0b:43:42:6b:
58:7c:72:e7:2d:27:49:55:51:6e:d4:46:e5:f8:8f:15:95:53:
27:56:be:91:db:40:d7:a7:9f:64:eb:1b:b7:40:dc:dc:94:b6:
2d:79:3e:ab:83:42:fa:b7:89:55:12:95:bb:41:ae:c9:41:fd:
33:35:35:f9:df:67:a4:f5:d0:74:a5:95:60:1a:b0:1a:76:23:
ee:e1:11:91:10:fd:0f:e3:0b:29:18:bd:a6:ca:65:9b:5f:ff:
6c:fa:90:ca:30:3c:62:44:dd:68:4d:2a:70:1d:07:a4:98:40:
5f:f5:57:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:55:30 2024 by rpki-client on console-ams.rpki-client.org