Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: H8iKfe58uRMB4omd9ot+J7AIqcDOPQas1PSPgIgrmD4=
Subject key identifier: E5:6A:A5:7F:87:99:E6:11:E3:72:E5:5C:87:8B:87:67:2A:A5:16:77
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 01901E58B660E2673F00CF6497EA8BB69712
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 11C6
Signing time: Sun 16 Jun 2024 00:00:48 +0000
Manifest this update: Sun 16 Jun 2024 00:00:48 +0000
Manifest next update: Mon 17 Jun 2024 00:00:48 +0000
Files and hashes: 1: JYGoUM22IwbvNZ46WJAN2YLnmkU.roa (hash: hUEg8zHcPQpXFVDOAymbGm1TKTdTyeo8kcuc9NRSzTY=)
2: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: 89Al7x5cgn7uFgqiNqgxz6ZOX62XrH/rvnNeDds1Bac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1e:58:b6:60:e2:67:3f:00:cf:64:97:ea:8b:b6:97:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Jun 16 00:00:48 2024 GMT
Not After : Jun 17 00:00:48 2024 GMT
Subject: CN=e56aa57f8799e611e372e55c878b87672aa51677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:34:07:e8:9d:19:0f:c4:b9:58:4f:09:1d:f5:
e0:30:15:4a:2f:97:67:bb:cf:47:37:ba:b4:a8:99:
e5:c7:fb:0b:2e:90:23:0f:c6:fd:97:da:2b:45:cc:
de:f7:78:b6:f4:e7:dd:e4:9f:2a:4d:01:4d:73:12:
eb:8d:2b:d2:1b:17:53:bd:22:54:e3:b3:04:27:c6:
93:5d:b1:f8:85:7e:f5:b1:b6:2a:67:07:e7:73:ea:
63:1e:d3:b5:30:de:b2:7c:8d:3c:55:14:6e:73:3c:
7e:77:4d:2c:d8:f0:fd:65:b2:9c:51:b2:2b:96:05:
e5:f6:da:42:96:f8:9b:a2:88:72:63:63:4c:6d:96:
da:12:dc:31:d1:10:09:2e:af:38:c2:fe:4a:6b:d0:
1f:05:e0:3b:9e:bd:94:f6:76:e2:48:78:f6:c3:f8:
12:4b:4b:44:d2:a1:21:64:0f:04:83:1e:18:b2:fe:
d7:1a:ac:61:0f:f6:2d:01:a7:7e:70:29:28:1c:d2:
3e:05:3b:bf:51:56:0e:9c:c0:18:72:1e:d0:c2:ba:
3f:61:f9:c6:9e:d1:51:48:d5:eb:0b:37:7e:45:d6:
34:bf:a2:90:de:42:5c:6f:2f:66:d8:21:33:f7:a8:
9e:10:54:1e:1c:e1:dd:d0:e8:30:36:07:b2:29:78:
f8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6A:A5:7F:87:99:E6:11:E3:72:E5:5C:87:8B:87:67:2A:A5:16:77
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:69:b7:5d:e5:3b:e1:d6:da:57:c6:5e:8a:f0:9d:96:b4:c3:
ce:ff:72:dd:c2:b8:6e:6b:89:dc:a1:7a:47:67:82:4c:d5:fa:
25:67:99:47:c1:20:9e:91:1d:e1:7a:38:77:66:87:55:29:9e:
f3:d7:7a:59:02:6e:12:39:df:e6:67:35:ac:2c:c0:69:8f:8c:
85:7f:1f:f0:0d:52:c0:8e:15:d5:44:0b:f0:43:7e:7a:4e:39:
2b:2e:54:cd:44:57:df:7c:b8:10:9c:88:47:08:08:1f:4f:d9:
0a:0a:22:a2:9e:84:83:90:20:6b:ac:89:53:48:ed:1e:fc:81:
f9:a9:d1:50:ad:ea:91:07:59:f0:5f:f9:81:4e:1a:a1:8b:25:
b0:6d:13:36:18:a6:88:f3:b5:06:40:3f:58:5f:18:2f:ff:60:
4b:28:85:a1:ca:a4:ea:b4:70:5e:fe:a5:95:bc:e9:4d:12:37:
dd:de:90:6e:41:f8:40:25:7a:09:a3:ff:b8:d2:52:51:c8:09:
bf:7b:2a:36:4a:21:7e:94:e4:f2:74:2d:3a:2f:22:60:60:52:
b9:b8:d3:85:ca:90:9f:89:c2:dc:de:b1:c6:16:7d:5a:ab:8d:
80:be:61:2c:9a:75:84:4d:01:6f:7c:1d:87:1a:ca:e8:9e:7c:
df:10:cb:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:05:31 2024 by rpki-client on console-ams.rpki-client.org