Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
File: QM_TpJvHHnSg0L9-NGyomylZehI.mft (raw, json)
Hash identifier: Gyq5y/qIz72hHjNRl3/zujVk3HYNE+xv3ez127H2FUQ=
Subject key identifier: 4B:2D:5F:35:CE:85:84:9F:28:70:BC:6E:EA:3E:B4:37:75:C3:F2:C5
Authority key identifier: 40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
Certificate issuer: /CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Certificate serial: 019352AD2986AEDD5E7DBC34886747CA8D01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
Manifest number: 136E
Signing time: Fri 22 Nov 2024 07:01:40 +0000
Manifest this update: Fri 22 Nov 2024 07:01:40 +0000
Manifest next update: Sat 23 Nov 2024 07:01:40 +0000
Files and hashes: 1: QM_TpJvHHnSg0L9-NGyomylZehI.crl (hash: jRfeL7l7+/9ZwGFA1uRATOpzNzwAL2GpoiMG33Kvj1g=)
2: jX_0rCcRlctQoFptcI2IX2O1soI.roa (hash: L1QZEQcuFKAweQMDgzWSzg/RU6+/Kyjh+upgzE28w9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ad:29:86:ae:dd:5e:7d:bc:34:88:67:47:ca:8d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Validity
Not Before: Nov 22 07:01:40 2024 GMT
Not After : Nov 23 07:01:40 2024 GMT
Subject: CN=4b2d5f35ce85849f2870bc6eea3eb43775c3f2c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:47:b2:0f:8a:33:99:ea:38:15:9a:ce:e9:e5:
44:3a:36:ef:49:63:03:b2:b2:f2:68:ff:b2:95:e6:
af:17:67:89:6a:a3:9e:b9:e7:5b:b2:8b:0d:c9:80:
0c:39:9d:fe:56:c0:c5:af:bb:3a:aa:45:07:8e:63:
1b:42:37:19:0e:3b:08:0c:41:58:cd:b8:0d:a7:14:
b6:2c:92:68:3b:8e:3f:a5:48:4c:0f:c1:a4:83:95:
e4:0c:15:29:72:de:29:07:6c:9e:03:63:cc:80:28:
cb:bd:73:b3:d1:01:a6:9a:49:49:7c:21:da:47:dd:
9f:9e:3e:31:e7:c9:e8:42:c5:2c:6c:e0:aa:3e:04:
0f:c0:e3:cf:0d:2c:52:01:69:45:67:00:b6:8e:92:
d6:e4:9a:4f:d0:ec:05:b5:ae:df:d0:36:17:89:ab:
dc:10:ea:0d:df:d1:3e:ae:c7:64:eb:40:16:bc:94:
b1:b9:22:38:72:c5:0a:36:2f:fe:a6:79:93:f1:4e:
c0:cb:d8:70:0a:47:2b:cb:a9:fb:55:5c:48:40:1f:
ad:f0:b7:d8:83:00:9f:fc:c7:d8:c0:d2:2c:79:c0:
3f:fc:70:f5:fc:d5:b0:85:b3:ab:67:54:d7:6b:22:
d2:b3:f5:b8:7b:30:c2:1c:91:c6:13:36:04:b7:02:
6a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:2D:5F:35:CE:85:84:9F:28:70:BC:6E:EA:3E:B4:37:75:C3:F2:C5
X509v3 Authority Key Identifier:
keyid:40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:2e:8b:e4:2b:e9:0a:89:c8:b9:19:f9:29:d3:35:88:2d:56:
b9:e1:a1:b9:44:80:2d:8a:70:d3:25:74:8d:9b:0b:ae:bc:c7:
f0:b6:1e:48:58:2b:53:58:68:93:69:3a:27:5e:43:25:6b:a0:
6c:71:94:68:fb:44:4a:46:c4:58:72:86:9a:55:e2:4b:00:dc:
24:a5:65:0d:6d:b8:6e:d6:c9:67:0b:e7:3f:92:86:d5:80:1a:
9a:f9:64:7a:4e:6c:4d:8e:88:79:6e:d7:20:a2:6b:aa:92:83:
f3:84:ab:cd:4f:a4:ca:d8:38:ee:f8:10:2b:b8:55:69:ba:ef:
8b:f8:d5:62:ae:f6:b9:fb:26:59:81:93:b7:e4:6d:36:34:ac:
22:d5:a6:b6:59:e3:eb:f5:6e:e6:57:16:40:c2:b7:9d:83:a7:
0e:c9:c1:a9:fb:ec:c1:45:83:69:86:6f:14:f0:c5:c5:4d:3f:
10:aa:c1:29:1d:0d:d0:9e:5a:d2:ee:c2:69:0f:a6:7a:22:1d:
be:cc:67:50:54:fb:f2:b9:22:19:d0:a1:3b:b0:59:70:c7:a7:
98:34:26:e7:df:e3:1d:12:ca:2d:41:13:f1:5e:d9:8a:99:43:
3c:03:f3:96:d4:db:92:a4:87:3c:06:ef:85:e7:f7:ed:49:b9:
5e:61:a0:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNSrSmGrt1efbw0iGdHyo0BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwY2ZkM2E0OWJjNzFlNzRhMGQwYmY3ZTM0NmNhODliMjk1
OTdhMTIwHhcNMjQxMTIyMDcwMTQwWhcNMjQxMTIzMDcwMTQwWjAzMTEwLwYDVQQD
Eyg0YjJkNWYzNWNlODU4NDlmMjg3MGJjNmVlYTNlYjQzNzc1YzNmMmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0eyD4ozmeo4FZrO6eVEOjbvSWMD
srLyaP+yleavF2eJaqOeuedbsosNyYAMOZ3+VsDFr7s6qkUHjmMbQjcZDjsIDEFY
zbgNpxS2LJJoO44/pUhMD8Gkg5XkDBUpct4pB2yeA2PMgCjLvXOz0QGmmklJfCHa
R92fnj4x58noQsUsbOCqPgQPwOPPDSxSAWlFZwC2jpLW5JpP0OwFta7f0DYXiavc
EOoN39E+rsdk60AWvJSxuSI4csUKNi/+pnmT8U7Ay9hwCkcry6n7VVxIQB+t8LfY
gwCf/MfYwNIsecA//HD1/NWwhbOrZ1TXayLSs/W4ezDCHJHGEzYEtwJq1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEstXzXOhYSfKHC8buo+tDd1w/LFMB8GA1UdIwQY
MBaAFEDP06Sbxx50oNC/fjRsqJspWXoSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wYjlmMDctZjE2Ni00Njc1LWIxODUt
NjBiNmViYmI3ZTZmLzEvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wYjlmMDctZjE2Ni00Njc1LWIxODUtNjBiNmViYmI3ZTZm
LzEvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyy6L5Cvp
ConIuRn5KdM1iC1WueGhuUSALYpw0yV0jZsLrrzH8LYeSFgrU1hok2k6J15DJWug
bHGUaPtESkbEWHKGmlXiSwDcJKVlDW24btbJZwvnP5KG1YAamvlkek5sTY6IeW7X
IKJrqpKD84SrzU+kytg47vgQK7hVabrvi/jVYq72ufsmWYGTt+RtNjSsItWmtlnj
6/Vu5lcWQMK3nYOnDsnBqfvswUWDaYZvFPDFxU0/EKrBKR0N0J5a0u7CaQ+meiId
vsxnUFT78rkiGdChO7BZcMenmDQm59/jHRLKLUET8V7ZiplDPAPzltTbkqSHPAbv
hef37Um5XmGgoA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 15:01:00 2024 by rpki-client on console-ams.rpki-client.org