Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
File: qajkTlc8U8cZIxL8xyFQ0t43fW0.mft (raw, json)
Hash identifier: IXcbbgl6AL4lOCUolYlQoD09TNiYgrEDzu0Z0n51usk=
Subject key identifier: 4A:0E:D9:3B:1A:1A:BC:31:CB:D1:1D:53:39:2E:B8:AE:E4:E0:88:54
Authority key identifier: A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
Certificate issuer: /CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Certificate serial: 019353F5CBF3BE0A8DD5F006D7532758EC40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
Manifest number: 1374
Signing time: Fri 22 Nov 2024 13:00:37 +0000
Manifest this update: Fri 22 Nov 2024 13:00:37 +0000
Manifest next update: Sat 23 Nov 2024 13:00:37 +0000
Files and hashes: 1: fsyQjDItmtr19cCv3V2ncpd9EYU.roa (hash: gJzMYfw/+n6OPkAUjpAzUvdrq6IEvDAJIE+85z5O9e8=)
2: qajkTlc8U8cZIxL8xyFQ0t43fW0.crl (hash: R2GYDTdsDUOKReQAR87homL8bBBH/WWOfM/XI5Iyvkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:f5:cb:f3:be:0a:8d:d5:f0:06:d7:53:27:58:ec:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Validity
Not Before: Nov 22 13:00:37 2024 GMT
Not After : Nov 23 13:00:37 2024 GMT
Subject: CN=4a0ed93b1a1abc31cbd11d53392eb8aee4e08854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a9:bf:c6:70:9d:18:a8:14:f8:f0:a6:20:c9:
19:48:6a:25:c5:89:3d:94:ce:6a:2e:8a:4b:9b:84:
53:f9:43:db:c8:cd:15:18:49:f9:67:e2:ef:bd:0f:
e1:b7:99:20:df:ee:e6:ef:ed:c1:91:1e:fc:71:f4:
c9:b1:fc:1e:6a:56:2e:e3:e6:4d:11:36:e4:97:4f:
d0:2c:7c:45:a0:8c:c5:f9:4f:8b:cc:8f:1a:89:f8:
9f:32:31:53:bd:27:d4:53:f2:3a:7d:6d:01:67:a8:
50:d1:cd:44:b2:4c:87:47:a7:8d:39:c2:a6:2c:54:
44:12:53:82:34:4e:91:c3:36:6e:fd:cc:67:70:ad:
2a:b9:ab:da:9b:f3:af:c8:f8:a2:7b:9f:21:bc:ef:
7f:33:91:66:95:07:cb:d7:19:ea:a0:f9:e7:93:36:
c3:87:95:a8:67:de:f4:0b:63:d2:24:5a:ce:42:2e:
91:73:f2:15:24:bf:e7:d6:e7:f5:0b:b5:e5:fc:08:
dc:bc:c4:11:b4:36:68:9e:58:9d:24:e6:40:15:5d:
49:cf:d1:ec:1f:f6:ed:6b:61:7d:ff:e8:29:21:4c:
a9:e7:89:9d:9d:0d:f9:b5:3f:0a:a0:50:b4:1e:b1:
ad:50:27:23:61:3d:63:af:cd:b6:d2:3b:25:1a:9e:
e7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0E:D9:3B:1A:1A:BC:31:CB:D1:1D:53:39:2E:B8:AE:E4:E0:88:54
X509v3 Authority Key Identifier:
keyid:A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:47:c1:b5:dd:ff:4d:a0:39:52:0a:fc:e6:b0:1c:cb:ac:40:
97:ba:83:4f:db:81:d2:dc:15:a5:17:10:d5:ee:99:98:dd:21:
ed:17:b4:65:bb:a6:9c:e8:68:17:b1:45:22:a9:5f:d6:fd:38:
53:25:bf:82:1b:a7:01:47:68:8c:fd:42:75:bf:c7:96:8d:85:
b5:1d:0c:44:af:6e:42:17:d3:f3:69:de:e3:f2:3d:a4:fc:c5:
36:ff:b7:1d:5d:ce:23:37:2e:d4:07:55:04:fb:25:9c:00:0c:
d5:3f:8d:74:5d:fc:56:fc:49:a2:e0:ed:e5:92:64:ee:91:fe:
ee:72:6e:29:41:e2:1b:8a:a6:08:b9:1b:0c:00:79:97:8c:1e:
90:13:a0:aa:b0:20:a8:08:2c:4a:17:12:f8:ce:26:1f:74:cd:
4d:fd:50:f3:b0:c5:92:3b:57:0b:15:eb:59:cd:41:31:c4:0a:
81:c0:4e:1b:86:4c:9e:64:7b:e5:99:4d:cb:11:3c:55:ce:6e:
29:a5:ad:93:84:1f:15:00:8a:84:fe:80:9a:d9:d4:68:a7:3e:
1a:e5:0f:17:c3:ca:a3:4a:47:ca:3e:2a:3b:e6:d5:76:78:c2:
90:c6:58:74:45:e9:27:f2:a9:fc:4e:a5:46:c3:52:af:60:48:
93:0f:a5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:25:45 2024 by rpki-client on console-fra.rpki-client.org