Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
File: 1-qWsXSKtkHinLhNplihyR-nx4TE.mft (raw, json)
Hash identifier: KjoVwcH6gMbUypXl/XdPoJ0+c/bk8WYjRz5wR8zRK/8=
Subject key identifier: 32:DB:2C:FD:52:AD:7E:BB:0D:DB:5D:0B:5A:0A:63:89:D9:49:74:1A
Authority key identifier: FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
Certificate issuer: /CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Certificate serial: 018F21CA5BA6E143CF705063D0B1268978B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
Manifest number: 0C70
Signing time: Sat 27 Apr 2024 23:01:00 +0000
Manifest this update: Sat 27 Apr 2024 23:01:00 +0000
Manifest next update: Sun 28 Apr 2024 23:01:00 +0000
Files and hashes: 1: 1-qWsXSKtkHinLhNplihyR-nx4TE.crl (hash: WIrvFqqo3CkvwRW1uFkWlaC7z4ybL/i37QWzF72UJsg=)
2: BQa_O0Gc-kFRg1jUoBOb1RI3veI.roa (hash: YaJeJnOqZSYFg4ZRTaYeLpjFHV9t0MLyCdAs3gOZOS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:21:ca:5b:a6:e1:43:cf:70:50:63:d0:b1:26:89:78:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Validity
Not Before: Apr 27 23:01:00 2024 GMT
Not After : Apr 28 23:01:00 2024 GMT
Subject: CN=32db2cfd52ad7ebb0ddb5d0b5a0a6389d949741a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:47:93:f4:61:1c:14:7a:b2:34:62:1f:4c:
5a:f4:c3:f7:a2:d4:bd:d7:03:42:e6:7b:15:98:ea:
54:97:6f:e1:78:69:de:bf:1f:da:3e:c5:25:6e:53:
14:a3:38:36:45:d8:09:1a:43:62:3e:04:2b:51:59:
38:83:62:9b:e5:93:c0:d9:5d:e2:05:8c:7a:cb:13:
88:67:71:71:94:20:53:e3:4d:6d:0e:08:db:0a:f0:
a3:9b:ae:9c:46:2e:60:94:81:11:e6:6c:33:e1:e5:
9b:8d:7a:ba:37:ed:b4:fe:c1:5b:86:c7:34:24:3e:
d0:45:f1:97:46:90:46:f5:24:ba:ff:b8:10:ab:72:
34:dc:61:bb:3c:6d:e5:be:4b:4e:ff:1d:9e:b9:b9:
da:92:e6:7c:dc:de:c1:11:36:55:af:56:c6:ca:70:
2d:e7:be:f4:4f:c7:5d:04:16:5c:1f:56:b0:ed:e8:
cb:c4:b6:72:5e:75:da:bd:86:09:91:94:be:93:c9:
46:e9:54:e6:eb:ca:94:2e:cb:c9:f7:a2:df:39:03:
01:6c:e9:f9:73:f3:61:5a:97:68:32:42:f6:b0:6c:
cc:c3:fd:f7:e3:09:d6:f4:c6:b6:a1:b0:d6:04:09:
3b:10:36:71:73:79:cc:f6:bb:83:ac:a7:15:99:aa:
0a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DB:2C:FD:52:AD:7E:BB:0D:DB:5D:0B:5A:0A:63:89:D9:49:74:1A
X509v3 Authority Key Identifier:
keyid:FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:a7:ff:80:c0:90:fa:75:03:fb:71:1b:a0:e3:b3:bf:7e:98:
a1:25:d7:07:99:a4:d5:4c:cd:39:59:43:e0:4b:5c:4c:63:8d:
b6:4d:a5:d3:a9:33:59:8e:12:57:ea:50:d9:3f:61:ab:77:ee:
4e:6b:b7:85:c3:31:a4:92:b5:f0:06:24:87:f4:d1:10:52:9f:
08:cb:02:9d:ce:63:33:b0:f2:a3:06:39:80:0f:18:ca:91:be:
7a:79:e8:ab:16:12:64:b8:9f:74:5e:7b:9d:15:b7:f2:25:3c:
7b:f4:e5:09:26:2e:2b:67:06:43:83:3f:ba:98:fe:cc:ef:60:
14:52:5e:ef:a3:27:d2:ef:ce:69:07:89:13:b1:f6:5e:93:1a:
d0:d6:ec:54:d2:ac:4c:56:a8:d8:8f:48:ce:41:b3:63:4e:0a:
58:2f:2e:e3:24:5d:f5:66:e8:4a:b4:5c:8e:5e:e9:8d:44:d5:
13:f0:62:c4:c0:19:b9:1d:6e:7c:04:3f:19:93:35:d8:0a:78:
0e:af:33:91:61:8b:85:8c:c6:c0:2f:46:1a:03:c6:35:7a:f7:
db:67:4e:b0:2c:d7:4d:d9:e0:45:6a:30:48:83:cf:b1:70:43:
b9:6a:69:5d:11:70:71:4c:c2:dc:b6:3f:21:d9:24:f4:43:cd:
fd:d8:1c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 02:10:41 2024 by rpki-client on console-ams.rpki-client.org