Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft
File: QO5hC9zSO60rEZK9RcqKl204Vdo.mft (raw, json)
Hash identifier: 3Gcq60GwCvgttTAlQUdSsGJKOpgSSMJr+HGOOctvvg8=
Subject key identifier: 71:A6:5B:D1:6D:54:AA:0D:EB:63:42:3B:B7:39:E0:A0:4F:02:A2:AD
Authority key identifier: 40:EE:61:0B:DC:D2:3B:AD:2B:11:92:BD:45:CA:8A:97:6D:38:55:DA
Certificate issuer: /CN=40ee610bdcd23bad2b1192bd45ca8a976d3855da
Certificate serial: 01935764C3BB2908591A4BC9FE88E63E72E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft
Manifest number: 120B
Signing time: Sat 23 Nov 2024 05:00:41 +0000
Manifest this update: Sat 23 Nov 2024 05:00:41 +0000
Manifest next update: Sun 24 Nov 2024 05:00:41 +0000
Files and hashes: 1: GUBBBIZzQRA8Rpx6D-DAmvZqRxI.roa (hash: 8w9Tzb8nkNmN5RxEfA3KAEABZ/o+zJ/ZAM04AV1B08g=)
2: QO5hC9zSO60rEZK9RcqKl204Vdo.crl (hash: AT/qiwZ5k1yUvdC+O99REMaa0mpVSTUh5n9O9x30ujg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:c3:bb:29:08:59:1a:4b:c9:fe:88:e6:3e:72:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ee610bdcd23bad2b1192bd45ca8a976d3855da
Validity
Not Before: Nov 23 05:00:41 2024 GMT
Not After : Nov 24 05:00:41 2024 GMT
Subject: CN=71a65bd16d54aa0deb63423bb739e0a04f02a2ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:37:a5:a1:76:79:85:9f:a9:72:c2:a7:ad:f2:
ef:68:c1:1a:c4:38:e5:63:21:96:7e:33:82:45:c7:
32:d5:94:2f:b8:7c:7b:a9:50:df:34:4a:a0:03:0c:
70:f2:7b:01:fb:2a:c0:f7:5b:96:ac:2f:98:d1:43:
ef:b6:e6:76:5e:d5:fd:d9:01:26:5b:5c:22:33:0f:
a0:5c:98:10:b7:11:79:0c:41:4b:ed:68:49:71:b4:
c3:57:9a:2c:97:e6:e9:87:0b:01:8a:e5:1a:6a:53:
45:d5:f6:d5:fc:33:2e:86:6a:0a:5a:0f:c3:4a:10:
30:fe:6e:53:2a:af:5b:a7:ad:34:1c:84:3e:2a:c0:
26:ee:92:4e:6a:9e:2a:44:a0:00:4e:4b:b8:e6:5c:
58:5c:18:9f:9b:57:fb:31:46:fe:d6:4e:cd:81:35:
bb:da:06:0b:47:2d:a4:25:08:8a:73:15:f8:bb:1d:
0e:2b:15:22:ae:5a:ac:a1:0f:a7:f9:b1:1b:81:6f:
53:54:c8:48:d9:57:82:8c:ab:54:09:dc:fb:1e:2e:
44:e1:94:f9:42:d2:fa:7e:d0:74:67:f0:3d:b6:92:
56:a2:dc:49:8c:67:34:de:43:c5:1d:ad:5a:ab:78:
05:5f:c3:73:27:3a:7f:a7:f6:34:a1:7b:c6:1b:92:
a3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A6:5B:D1:6D:54:AA:0D:EB:63:42:3B:B7:39:E0:A0:4F:02:A2:AD
X509v3 Authority Key Identifier:
keyid:40:EE:61:0B:DC:D2:3B:AD:2B:11:92:BD:45:CA:8A:97:6D:38:55:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QO5hC9zSO60rEZK9RcqKl204Vdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/5efae5-2c92-40d0-a3b6-a6c17ce82d77/1/QO5hC9zSO60rEZK9RcqKl204Vdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:5b:c2:c8:07:b6:7b:be:07:35:e9:79:e2:a1:00:d5:f7:92:
df:89:50:e0:0b:b8:1e:aa:3f:b4:61:ed:d3:73:9f:41:d3:12:
45:6c:d3:a3:6b:f0:1d:e7:43:63:48:db:2d:5c:0c:52:8a:e8:
8f:06:76:44:8e:1d:33:6a:30:d4:45:97:33:7a:5d:42:0a:f5:
3e:33:19:73:1e:26:3d:4c:d0:b7:62:1f:33:d4:52:ed:c8:cb:
2c:42:01:f4:2d:d5:c1:6e:e4:bf:7c:9a:84:50:21:f6:c1:cd:
bf:27:d5:4f:8b:86:fc:f3:a4:39:92:43:73:b1:74:60:6e:81:
8c:4f:fd:20:4b:c8:7d:67:e3:f9:61:fe:48:5e:f8:60:fc:5a:
42:9f:d2:11:bb:f7:22:46:3b:00:9a:0a:70:9c:67:6c:9c:4c:
b4:94:91:1c:f6:f3:be:4d:9d:ce:4d:53:89:7f:61:ef:3e:70:
9c:57:61:6d:e8:8a:54:d6:fe:07:ef:bf:df:cf:7a:ff:aa:b4:
f5:3a:dc:8c:6c:07:8e:ac:84:5d:d6:db:f1:80:5f:41:16:66:
b1:f8:10:1b:e8:24:0d:11:49:78:2e:4c:ea:b6:0a:eb:73:10:
73:98:7f:84:f1:f0:0d:fb:a9:ca:bb:79:59:4e:55:15:bf:28:
e9:54:f1:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:17:09 2024 by rpki-client on console-fra.rpki-client.org