Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
File: bQih9MOF86e2KYTVPoFmWplUEPM.mft (raw, json)
Hash identifier: uGrvLidao6OMC3JvL/ImqqRIyeWxIKoCawQmjyTZKlM=
Subject key identifier: AC:EC:88:5D:16:1C:B7:EA:EC:48:CA:8A:95:34:DF:6A:02:DC:CC:12
Authority key identifier: 6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
Certificate issuer: /CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Certificate serial: 019048680985EBD08CC8D09D62E7065EAE11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
Manifest number: 05D9
Signing time: Mon 24 Jun 2024 04:01:35 +0000
Manifest this update: Mon 24 Jun 2024 04:01:35 +0000
Manifest next update: Tue 25 Jun 2024 04:01:35 +0000
Files and hashes: 1: ULGMI-RM3DR4z11z6YdLJKGKjZo.roa (hash: rd9bFxelX7/mKC8/P7cntaf2OS2WtZu6nmgQPtBEdeI=)
2: bQih9MOF86e2KYTVPoFmWplUEPM.crl (hash: N+cqYIK9VAp79wWziuQojI8Ia0jc05jBTmbQU6/IFCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 04:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:48:68:09:85:eb:d0:8c:c8:d0:9d:62:e7:06:5e:ae:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Validity
Not Before: Jun 24 04:01:35 2024 GMT
Not After : Jun 25 04:01:35 2024 GMT
Subject: CN=acec885d161cb7eaec48ca8a9534df6a02dccc12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b4:e7:d6:7c:ce:dc:d7:2f:e6:3c:e0:70:3b:
ce:65:76:73:b1:6a:16:0a:a7:ee:7a:af:95:22:83:
42:ea:b8:4e:10:60:22:d7:56:61:bb:d8:12:c6:4a:
00:99:f4:3a:65:4c:26:5e:71:93:b0:b7:ee:6d:7d:
8d:b2:4d:18:3d:4b:5b:c6:20:2c:a5:7e:84:1d:45:
38:a7:a4:0f:48:1b:ec:d6:b6:29:1a:a3:78:c9:23:
d4:63:64:11:a7:4d:9b:9e:63:db:53:19:d5:75:c1:
84:0f:38:67:3b:8c:99:da:84:0b:0a:e1:00:74:18:
60:ed:84:c4:c9:09:b1:1e:8d:ab:13:ad:30:48:d9:
bf:a4:c3:09:df:16:a4:3b:20:60:ae:0a:86:3b:9d:
07:96:f1:9e:0e:34:af:bf:e5:97:6e:c0:d1:f0:eb:
26:80:d4:6f:18:27:96:58:b2:09:d9:ee:f7:b1:12:
9d:97:42:a6:a9:b5:76:ce:f4:2e:b0:15:77:a0:ba:
64:78:e2:e8:1d:81:6c:11:a8:6e:36:4b:fa:ad:7f:
29:5e:8a:a0:12:ff:8b:a7:78:76:89:b5:33:6c:46:
15:0d:bb:a4:f0:02:c5:8e:9c:64:e7:e3:92:57:0b:
e7:d9:0d:5a:e2:59:8b:d9:fa:b9:76:8c:c3:c8:82:
f2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EC:88:5D:16:1C:B7:EA:EC:48:CA:8A:95:34:DF:6A:02:DC:CC:12
X509v3 Authority Key Identifier:
keyid:6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:59:d2:62:0e:59:bb:3d:0f:bd:1d:aa:ec:37:cf:4e:a9:0e:
10:7f:f3:48:4a:92:6a:1a:42:ce:26:25:06:06:8b:3b:20:aa:
90:d7:70:70:c3:9a:2c:40:8b:67:1d:c0:b8:f9:9b:84:13:01:
e9:95:9f:39:51:d4:18:39:5b:db:a5:37:56:ea:42:5e:70:6a:
5e:98:66:c7:df:b7:79:33:f4:a7:57:f0:8c:6f:bd:c6:44:d4:
4d:65:1c:7a:11:ec:11:d5:2f:3d:1d:c3:cd:45:6b:d7:91:8b:
59:c4:94:71:a7:20:1c:ce:de:2b:12:8d:20:1b:cf:61:bd:92:
83:50:e9:b0:76:9b:18:8e:c1:c1:ab:d6:67:93:7a:a3:f3:7d:
81:38:2c:b5:c1:cd:1b:00:b0:27:01:ca:13:ea:ee:9e:f5:76:
c0:25:7d:d0:23:6e:a9:c8:3a:4a:71:e5:d3:db:fe:59:6e:29:
8c:8e:c6:61:f7:03:cb:4b:2a:bc:f8:6b:87:ef:c1:19:3b:f3:
3b:f0:7d:bf:73:a7:2e:29:ef:28:77:50:11:18:5e:18:e5:21:
53:98:d7:c4:a8:42:c6:14:46:eb:7b:1d:d7:5d:2f:13:fb:b7:
3b:a1:f3:de:0b:72:fa:72:4b:53:7e:b2:ce:ae:ad:df:d9:8f:
1b:45:44:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:44:09 2024 by rpki-client on console-fra.rpki-client.org