Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: G4kce4WabDmO2lwipHwBLZjUZPT4jhqab4rbcGvz5bM=
Subject key identifier: C8:DE:8A:59:0E:AE:10:19:F2:4A:11:C7:70:6F:16:C0:82:97:4C:E9
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 0193598A034AAFEB0AD9664A8011F99E1432
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 1374
Signing time: Sat 23 Nov 2024 15:00:37 +0000
Manifest this update: Sat 23 Nov 2024 15:00:37 +0000
Manifest next update: Sun 24 Nov 2024 15:00:37 +0000
Files and hashes: 1: 9p6dEhsYUCHd-0VPKwhG7sdIUug.roa (hash: gx8CLpmL/UCLP5OwCdFzLvAGtZVjN8PsAcUHBh/HLrY=)
2: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: CdCC4uDpHZOtwasziPeL0c1EJ1WC/GODHl/+Bb6Kxlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:8a:03:4a:af:eb:0a:d9:66:4a:80:11:f9:9e:14:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Nov 23 15:00:37 2024 GMT
Not After : Nov 24 15:00:37 2024 GMT
Subject: CN=c8de8a590eae1019f24a11c7706f16c082974ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1e:4f:62:ea:46:3a:50:b7:0c:70:7a:9c:0c:
4f:3b:47:ec:4b:d6:7a:b5:b1:e2:92:6e:00:36:41:
9a:46:45:bf:1a:91:3f:e2:30:64:1c:a4:07:2a:da:
a6:48:aa:05:66:d7:07:6b:ab:51:4c:c0:5b:a0:2b:
12:71:e7:b9:1a:31:32:84:53:49:c3:1f:eb:53:1c:
ea:44:9e:f6:12:b6:30:61:5c:3a:94:d7:e6:9c:a0:
5e:a6:98:1f:9e:4c:8d:2e:31:57:ed:1b:29:46:7b:
ec:f5:c1:99:3d:4c:7b:11:98:b0:62:ed:1f:05:b6:
1b:d6:62:47:d6:7b:7c:55:bf:c6:71:ca:b7:ce:a6:
89:52:f7:57:44:3e:2f:de:f2:73:95:24:cf:2c:e5:
9a:91:5a:81:06:e8:b5:90:08:68:24:57:9c:81:5a:
2f:00:de:77:18:45:ac:d8:90:8b:c2:c9:25:15:0a:
c4:1e:77:22:af:c5:50:18:da:8a:f4:23:de:3a:fa:
f4:06:ed:ff:21:7a:1a:34:d9:c2:bb:8d:e6:c7:59:
1b:46:a1:a5:de:ce:ce:e8:6f:ce:aa:83:7e:7b:e5:
14:aa:18:b5:1b:3b:70:47:6c:18:42:62:c3:1c:b1:
1b:bd:e9:53:c6:55:c7:c9:71:9b:e8:74:f5:01:44:
88:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DE:8A:59:0E:AE:10:19:F2:4A:11:C7:70:6F:16:C0:82:97:4C:E9
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:5f:67:11:b7:3d:fb:67:05:bb:86:70:0f:9e:46:1a:94:57:
5c:04:02:9c:4c:06:7b:5f:7b:b8:6b:0a:7a:02:b6:41:e7:41:
a6:5a:20:2b:65:22:c8:40:f2:c1:d1:73:ac:e3:54:2c:59:02:
7b:e1:1e:fa:9f:0f:8f:5d:4f:29:28:b5:66:9d:ae:a5:73:f5:
68:3c:52:74:1b:cf:7e:66:72:19:c6:34:14:18:c1:9d:46:31:
14:cb:5c:69:6d:2c:d9:44:ab:21:14:e9:2f:37:df:02:db:e2:
a0:8c:01:b2:db:66:a3:3a:c5:ed:30:e6:ae:73:b3:5a:c7:53:
a7:75:98:bc:92:7f:64:4a:eb:88:1f:b9:a3:2b:91:7a:fb:11:
c1:2b:04:5f:0a:c6:98:a5:4a:77:29:dc:dc:b8:6c:42:89:a0:
4b:6c:af:92:d3:3a:f4:95:6c:8d:e9:cc:39:95:ad:ca:3f:b2:
bf:f2:de:39:16:d8:ca:f9:74:1f:c8:6b:8e:cb:22:cf:de:43:
f6:ba:79:54:8c:13:d8:26:16:58:9d:9b:31:cc:79:db:eb:aa:
52:58:e7:2b:93:f3:b4:3c:19:c9:00:0e:e9:4c:1d:ce:f3:60:
eb:b1:03:88:6d:29:1f:92:87:dd:64:6a:47:2f:60:51:89:d2:
6d:f9:ba:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 17:14:00 2024 by rpki-client on console-ams.rpki-client.org