Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
File: 1-qWsXSKtkHinLhNplihyR-nx4TE.mft (raw, json)
Hash identifier: juAqz4tqL0wF23XPvrspsCx7wYTES2YeniXFJjjMFLU=
Subject key identifier: 23:A5:19:D6:B4:72:EB:C5:80:BD:3B:65:03:B9:D6:36:53:25:21:E5
Authority key identifier: FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
Certificate issuer: /CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Certificate serial: 01940721A60D203AF8AE56EFC2FCFAB8B830
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
Manifest number: 0EF9
Signing time: Fri 27 Dec 2024 08:00:33 +0000
Manifest this update: Fri 27 Dec 2024 08:00:33 +0000
Manifest next update: Sat 28 Dec 2024 08:00:33 +0000
Files and hashes: 1: 1-qWsXSKtkHinLhNplihyR-nx4TE.crl (hash: qYrL+MnbZaU3g0nLY/+PC1Tk/jMFKcq+HIPeaXztXm8=)
2: BQa_O0Gc-kFRg1jUoBOb1RI3veI.roa (hash: YaJeJnOqZSYFg4ZRTaYeLpjFHV9t0MLyCdAs3gOZOS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 08:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:07:21:a6:0d:20:3a:f8:ae:56:ef:c2:fc:fa:b8:b8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Validity
Not Before: Dec 27 08:00:33 2024 GMT
Not After : Dec 28 08:00:33 2024 GMT
Subject: CN=23a519d6b472ebc580bd3b6503b9d636532521e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:03:f7:75:94:56:42:cd:2b:e2:c0:23:c5:e8:
f0:98:ca:06:77:6f:68:46:11:6c:d1:4a:b7:f0:24:
20:d3:40:4b:8f:a5:69:e8:0a:f0:14:7a:6b:61:58:
86:37:b3:c2:2d:a2:3d:45:96:b0:3b:0b:2d:69:cb:
34:da:8f:d1:47:16:dc:26:01:4b:44:fb:94:e9:bf:
e3:6b:59:e9:bd:19:f8:7a:e0:be:5f:49:4f:8d:87:
cf:92:ba:9e:a3:4e:65:c8:72:1b:5c:8e:c9:dd:4f:
e1:1b:82:b1:bb:05:aa:18:c6:91:9c:9b:9e:5c:d9:
f3:7a:88:29:d0:b4:d2:6d:3f:15:87:9a:1c:61:c0:
ec:48:bc:23:41:1e:d6:3c:52:42:1e:9d:45:20:9d:
08:74:77:73:27:b2:87:52:0b:13:91:95:1d:1c:7e:
99:ff:67:79:03:c9:c0:89:49:50:6d:c9:35:86:83:
33:17:a1:ab:0d:56:58:64:3b:d7:50:c5:60:93:15:
29:79:3a:49:b2:fc:34:5c:7c:94:c8:fb:66:64:6e:
ce:32:ba:03:b5:b2:d6:7d:71:c3:f3:4a:67:bd:b2:
1d:75:db:8a:b6:1b:79:29:cd:1f:d1:e4:ad:0d:28:
56:7e:9c:b5:14:21:4b:5d:d9:6b:1c:d9:ca:c1:75:
68:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:A5:19:D6:B4:72:EB:C5:80:BD:3B:65:03:B9:D6:36:53:25:21:E5
X509v3 Authority Key Identifier:
keyid:FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:07:ec:2b:17:52:8b:50:d1:15:c4:6c:53:19:a0:18:a3:0f:
09:00:ef:b3:b9:5c:c9:e9:18:b3:ea:2d:c0:a7:7e:09:f5:82:
92:cc:6f:7b:8e:5f:ae:4f:7c:7b:70:45:11:cf:f0:1e:fd:68:
d6:5d:ea:71:a3:65:c9:30:79:23:fe:50:8d:62:f2:41:dc:0c:
b3:0f:f4:b5:6b:54:0f:cb:aa:9c:54:3b:54:f8:84:c3:30:82:
95:4f:2d:7d:f0:ea:17:b9:fe:fe:aa:78:be:21:5f:65:ff:34:
8e:9a:0f:ee:86:9c:15:e2:63:1c:4c:23:67:81:c2:81:48:3b:
76:75:f4:d2:f6:aa:38:88:df:6e:4c:8e:d8:31:9d:c9:d6:07:
d3:45:e3:ba:c2:59:00:75:76:d6:a3:ac:11:4d:5a:a3:83:44:
ae:86:e9:bf:67:2f:9c:3f:87:a5:54:9a:66:9f:e4:c3:45:b6:
54:b3:6a:e8:2c:3a:ad:f3:61:71:c4:f2:f9:a1:02:51:6b:6a:
ba:dd:96:66:c7:64:f0:49:c6:30:67:ad:b9:12:a5:e3:26:a6:
26:6b:fb:a5:d6:83:95:22:cc:fb:de:b0:3b:ba:be:5a:d7:f7:
24:ad:93:99:24:3d:55:d9:6e:7e:de:0b:d0:61:73:89:34:24:
2e:2a:0b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 11:14:04 2024 by rpki-client on console-fra.rpki-client.org