Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
File: Q57sdw36ZitOpkoCLus46D2q4ig.mft (raw, json)
Hash identifier: xJCPnvOJVvgl15W88F/Yh4SAvDYR1qINiAvhNMe88GQ=
Subject key identifier: 52:2A:CE:31:B6:AF:F8:85:D5:B0:C9:2D:11:1A:2C:F6:86:28:B3:54
Authority key identifier: 43:9E:EC:77:0D:FA:66:2B:4E:A6:4A:02:2E:EB:38:E8:3D:AA:E2:28
Certificate issuer: /CN=439eec770dfa662b4ea64a022eeb38e83daae228
Certificate serial: 01901DEAC4A64FF1C7067D94926B5D518858
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
Manifest number: 035B
Signing time: Sat 15 Jun 2024 22:00:43 +0000
Manifest this update: Sat 15 Jun 2024 22:00:43 +0000
Manifest next update: Sun 16 Jun 2024 22:00:43 +0000
Files and hashes: 1: Q57sdw36ZitOpkoCLus46D2q4ig.crl (hash: TMSh4Fcuem509rOi7aBPzXJNa+8ogN84irPhPHWTCeQ=)
2: vLWu8WB4Y1V2VHFufbsG9r-rAKs.roa (hash: mMzI3PTp4tWt4jxz/CvcAI7hwyPcP/8l6OAjplICGuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 22:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:ea:c4:a6:4f:f1:c7:06:7d:94:92:6b:5d:51:88:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439eec770dfa662b4ea64a022eeb38e83daae228
Validity
Not Before: Jun 15 22:00:43 2024 GMT
Not After : Jun 16 22:00:43 2024 GMT
Subject: CN=522ace31b6aff885d5b0c92d111a2cf68628b354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:1d:e3:d2:92:37:fe:43:66:38:eb:27:3e:b9:
a0:8b:5d:4b:bd:44:dd:32:43:46:3d:57:10:a2:85:
17:70:5d:8f:f5:ae:49:40:7e:1e:8b:bd:23:ef:00:
f6:5a:b1:d7:0f:37:a6:66:e6:f2:ef:64:fa:36:9f:
ce:d7:68:ca:cf:e0:76:3c:f7:f0:27:4a:f1:47:fe:
59:9c:2c:a0:e1:07:ec:2a:f6:1d:57:d3:0c:b6:6b:
f5:af:25:89:a8:6b:3a:e9:fd:7e:52:68:fb:8a:85:
da:a9:16:fd:e9:7d:2c:ad:a4:79:a3:6e:34:ca:c8:
b8:4d:e5:4f:1b:5b:08:54:2f:8b:ff:dd:4c:61:c2:
33:08:67:e1:41:b2:a3:17:c5:88:ee:b8:c2:b9:9a:
ba:24:51:d5:20:07:21:7a:ef:46:12:5f:8c:a7:a0:
81:a2:8f:76:06:fe:6f:66:8c:24:5e:ca:0d:c2:66:
60:80:78:23:7d:30:27:90:23:9c:31:1f:ee:6b:6c:
37:11:77:67:7a:a4:44:70:0f:76:99:ca:46:2e:8f:
6e:38:aa:c0:81:12:f8:34:30:74:92:89:e4:2f:80:
e9:e6:59:79:39:2e:41:fb:86:b0:3d:dd:50:52:b4:
3b:2e:41:7e:07:46:ae:19:a3:b3:36:b2:ba:40:7c:
63:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2A:CE:31:B6:AF:F8:85:D5:B0:C9:2D:11:1A:2C:F6:86:28:B3:54
X509v3 Authority Key Identifier:
keyid:43:9E:EC:77:0D:FA:66:2B:4E:A6:4A:02:2E:EB:38:E8:3D:AA:E2:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:75:d1:23:b3:44:b0:8a:0e:cf:9b:18:89:50:7d:55:63:b1:
c1:83:ea:23:8c:73:97:db:cd:e3:15:c5:50:78:e5:a6:b3:f8:
2e:a6:64:c6:b9:97:7e:a9:31:d2:d2:33:b6:54:45:e7:76:15:
88:f4:6b:f1:7c:73:e1:ba:e8:62:4d:51:3b:3f:3f:ba:20:16:
d9:da:b4:1f:3d:5e:5a:26:29:36:34:34:68:be:32:25:24:62:
74:8d:2a:45:dd:d1:ac:d2:1b:44:38:9b:82:36:6b:95:30:d6:
e4:f5:f2:67:63:22:da:13:09:2c:94:ad:94:08:d3:25:d5:8b:
f6:c5:39:bf:e1:f8:59:ff:5b:94:c3:c7:c7:39:6d:a7:77:dd:
18:c9:8c:e3:59:be:df:45:69:8c:aa:b3:4b:58:d9:7c:57:8f:
fb:f1:a3:27:4b:fa:d2:37:0d:41:5c:c1:6e:3a:c1:13:63:8d:
b3:c5:dd:c2:1e:b0:40:d1:f9:09:57:2b:f6:51:52:70:3a:84:
dd:0f:b7:39:93:cb:60:ba:5e:9b:3e:dd:c6:ad:31:09:b8:42:
0e:f6:a5:66:c5:8b:9c:30:1a:f9:e2:dd:0a:6e:5a:03:2a:8a:
74:fc:22:b9:8a:0f:33:0a:0b:59:9f:be:a6:52:02:1e:62:7e:
bb:ec:4a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:53:03 2024 by rpki-client on console-ams.rpki-client.org