Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
File: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft (raw, json)
Hash identifier: AuL5ECuAei/iCs052IUsU6AmAX6LJS+03Tg50hPIb5E=
Subject key identifier: FF:40:CD:5F:4E:27:98:EA:B8:91:A9:94:56:A3:A3:38:AF:F7:2B:07
Authority key identifier: 40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
Certificate issuer: /CN=4092c47db8a21931154605d576c3b7341d06b4b4
Certificate serial: 019352ADB06643C8B091E7B3913F70371D26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
Manifest number: 10F7
Signing time: Fri 22 Nov 2024 07:02:14 +0000
Manifest this update: Fri 22 Nov 2024 07:02:14 +0000
Manifest next update: Sat 23 Nov 2024 07:02:14 +0000
Files and hashes: 1: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl (hash: xvKNND9eL3z4u9gNJk6G0z9dJH1aeOQWUh09xD0nbYQ=)
2: W3Uer_GZpL9fZZp-b4VtT12e5Ug.roa (hash: pFQsSffsqjaJmwtDo2yh2gDf3vdDMbCRSJOXnq9/XdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:ad:b0:66:43:c8:b0:91:e7:b3:91:3f:70:37:1d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4092c47db8a21931154605d576c3b7341d06b4b4
Validity
Not Before: Nov 22 07:02:14 2024 GMT
Not After : Nov 23 07:02:14 2024 GMT
Subject: CN=ff40cd5f4e2798eab891a99456a3a338aff72b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a1:41:22:43:49:76:6c:07:48:55:cb:df:1a:
08:cd:80:87:5c:8e:4e:06:c2:ec:08:51:62:0e:27:
72:eb:77:40:81:a7:02:ab:dc:a0:69:aa:73:86:93:
ae:20:38:a7:23:12:92:7b:d5:1b:ca:3f:43:90:6e:
20:b9:6a:3f:33:76:e0:67:13:04:14:0d:70:44:fb:
7b:cb:b5:3d:c4:aa:4e:a9:91:80:a2:3f:cd:28:5f:
3d:c7:5b:a2:90:70:4a:11:c9:3e:13:06:e0:8b:c2:
c5:d1:db:ab:ce:74:18:62:64:ab:03:94:13:40:e9:
ed:a3:82:44:19:47:87:e8:6a:b6:2d:6e:d0:58:5f:
b7:98:55:48:8e:4c:d5:6c:b6:58:21:7c:90:4c:b0:
3c:22:0f:8d:08:6b:45:22:fd:70:07:78:a3:fe:53:
5e:45:cd:2f:aa:aa:b9:fe:60:32:1a:78:e2:51:f5:
9b:0b:ff:d8:60:c3:cb:9d:62:4a:eb:5d:cd:15:d3:
88:40:e6:8e:4e:dc:08:28:ad:45:25:7f:70:fe:59:
01:d6:1e:62:9d:59:ba:d6:73:a1:86:8a:12:27:49:
ff:f2:29:21:c5:62:a7:a3:11:bb:19:1c:68:1c:e4:
b8:31:77:19:07:c9:d3:f9:90:43:e3:e9:07:5c:87:
17:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:40:CD:5F:4E:27:98:EA:B8:91:A9:94:56:A3:A3:38:AF:F7:2B:07
X509v3 Authority Key Identifier:
keyid:40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:46:a4:ec:a4:bf:74:fd:6b:22:b9:b8:a4:b2:07:6e:cf:b4:
f2:da:e1:98:a9:b7:d0:b8:34:8f:65:50:cd:f7:dc:52:9c:65:
4e:ed:50:cd:68:65:57:ed:1f:d6:08:be:f5:21:6d:04:a5:47:
d6:25:e5:ca:6c:61:11:67:58:4d:e8:76:12:a2:d3:cc:01:b6:
70:8f:d2:dd:f0:27:25:35:a0:e2:88:e2:62:a6:f2:c3:23:fa:
23:ba:fe:1e:26:e0:88:d4:83:45:e7:98:41:4e:24:0a:61:f7:
9d:b2:94:f6:1d:5a:d6:b3:9f:9e:19:4b:9f:eb:17:f2:f1:64:
55:00:90:08:16:d5:0f:41:b4:33:13:ac:4b:e5:c1:9e:6c:3a:
23:fd:00:8c:10:00:70:c5:75:6a:2c:2e:75:f1:59:4b:7a:b2:
61:b3:5c:51:72:58:09:14:e2:38:50:b7:c2:2c:eb:b0:de:c3:
47:63:02:84:eb:d6:5e:f0:e3:8e:24:ff:6b:87:00:f2:f2:e7:
d7:34:bd:55:71:79:13:bd:18:3f:d4:08:fc:03:36:46:f7:d1:
87:c9:31:52:a9:4c:dc:55:0b:98:fb:99:3f:01:83:be:df:b0:
79:37:60:18:8f:9f:a0:37:d2:aa:55:70:ab:57:e3:fb:64:c7:
49:d4:e8:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:01:39 2024 by rpki-client on console-fra.rpki-client.org