Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
File: 1QibzgjFXapXtPOjyQcPs5GFPM8.mft (raw, json)
Hash identifier: 8IhMamWPv0lys0h4squaU5zUvZ1YO1veR9PkSgrBdK4=
Subject key identifier: 50:14:1B:D4:FA:AE:9C:EE:7A:E1:2E:27:BD:85:92:C0:FC:37:BD:94
Authority key identifier: D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
Certificate issuer: /CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Certificate serial: 019356BFC3478897453129ECD0D5B3364232
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
Manifest number: 0844
Signing time: Sat 23 Nov 2024 02:00:27 +0000
Manifest this update: Sat 23 Nov 2024 02:00:27 +0000
Manifest next update: Sun 24 Nov 2024 02:00:27 +0000
Files and hashes: 1: 1QibzgjFXapXtPOjyQcPs5GFPM8.crl (hash: Ggb/VrweMLqwQiusUtNDTbPRtcS62V1EqaUJrSuuUm4=)
2: Hk8XpTmh5JAxcOPxWA0BNww-HiY.roa (hash: 53mPaoMvf+Ky8W9T7oEqF1qPddb1lcszNaHnkS2beVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:bf:c3:47:88:97:45:31:29:ec:d0:d5:b3:36:42:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Validity
Not Before: Nov 23 02:00:27 2024 GMT
Not After : Nov 24 02:00:27 2024 GMT
Subject: CN=50141bd4faae9cee7ae12e27bd8592c0fc37bd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0e:6b:28:bc:c9:de:7a:68:24:fe:69:05:b2:
8f:6a:5c:86:6f:52:0c:68:37:c8:42:73:77:eb:fd:
e9:46:30:bb:53:f0:42:42:d8:16:8f:bb:39:d5:58:
46:65:d3:40:84:77:c6:6f:f1:23:6b:a0:e8:a5:7c:
a9:90:55:73:c6:85:eb:f3:75:d7:b5:a6:80:c9:cb:
e0:27:79:c1:ad:ab:ae:83:ca:df:c2:2f:57:f0:fa:
81:97:0f:b8:9e:32:b7:ca:fc:f8:bf:ec:3e:58:af:
1b:ec:df:e7:62:0e:54:d9:71:ed:43:0f:0a:05:d4:
4d:97:cb:69:86:e5:f5:c9:ce:40:cf:bc:b8:52:88:
b4:ba:d4:69:71:d7:a9:61:f6:2e:33:2c:7b:a7:f7:
30:87:4d:53:6c:6e:5b:ba:96:4e:9a:ad:0d:7c:79:
94:56:69:46:d2:fc:2e:c0:a5:32:02:8c:10:1d:ac:
6e:0e:d8:6b:35:49:dc:db:b2:fc:59:93:92:64:d9:
aa:10:8b:54:14:16:7e:31:02:d5:07:66:33:cd:f0:
d7:d8:b7:91:c8:06:a8:fc:6a:9a:d3:ab:ad:3d:f3:
c3:ac:57:8c:d6:1d:a5:97:f0:76:00:17:11:db:54:
e5:02:c3:3c:df:0c:fd:06:64:4c:19:0d:88:b2:6a:
94:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:14:1B:D4:FA:AE:9C:EE:7A:E1:2E:27:BD:85:92:C0:FC:37:BD:94
X509v3 Authority Key Identifier:
keyid:D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:29:8e:f3:00:90:66:9a:e6:d7:65:17:5d:a7:ae:fb:3d:97:
85:31:7a:61:c9:84:54:25:39:81:26:e1:90:5c:05:14:c4:a5:
11:81:02:0f:1d:5f:69:f9:f0:8e:a1:e4:b0:4d:90:9c:a3:9a:
49:3e:dc:8e:b8:06:8d:50:0f:ad:44:6a:7b:9d:22:b5:2a:1b:
88:25:af:dc:fc:cf:8c:26:23:4b:1e:a8:c9:63:d0:fe:06:88:
72:5e:f2:b0:8b:f2:0a:ea:c2:86:49:4c:5b:ba:5c:0b:94:77:
b5:98:d7:1a:74:48:8d:97:3d:0f:54:23:1d:5b:2d:34:b8:54:
8a:88:bc:a4:90:5d:3c:88:fc:4d:67:4c:c1:7a:3c:97:2e:8c:
0a:4d:b9:88:1b:3b:2e:2c:ef:f3:cb:a3:49:8c:a5:49:55:2e:
80:8c:c4:1b:08:43:dd:be:fe:b5:44:17:28:42:1c:a3:8f:58:
6d:b0:1c:9b:34:f2:ae:a8:e8:a5:35:da:9f:02:dc:a7:65:15:
d1:1b:73:8e:fc:e3:9e:d2:6f:2f:34:1b:48:60:ba:11:2b:83:
5c:98:26:94:40:07:73:8b:a3:cd:0e:1a:aa:9f:d3:59:ef:0a:
75:eb:8a:76:43:0f:e7:66:a6:ed:2f:2e:40:eb:57:2a:8e:45:
11:2b:0f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:14:30 2024 by rpki-client on console-fra.rpki-client.org