Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json)
Hash identifier: JXaIpi0+Slmn6BGsFRO+2jwyHyDRypKKYRupUAGk9to=
Subject key identifier: 64:7A:C5:B7:A9:11:91:0E:D5:45:FA:D9:B8:FB:80:5A:23:55:33:ED
Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Certificate serial: 018F87ED3E163480BD95A5E0068B2EA30482
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
Manifest number: 1175
Signing time: Fri 17 May 2024 19:00:23 +0000
Manifest this update: Fri 17 May 2024 19:00:23 +0000
Manifest next update: Sat 18 May 2024 19:00:23 +0000
Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: gkDApuZmBh8aZEQM04FW8fHEj6Z4+z+wxk1kHCPSp+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:3e:16:34:80:bd:95:a5:e0:06:8b:2e:a3:04:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Validity
Not Before: May 17 19:00:23 2024 GMT
Not After : May 18 19:00:23 2024 GMT
Subject: CN=647ac5b7a911910ed545fad9b8fb805a235533ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d5:ab:45:e0:10:b7:f3:56:3d:25:c9:0d:11:
e4:34:f2:26:0d:48:42:97:94:93:b6:00:08:65:e9:
f0:0e:6b:a7:9f:cd:66:8a:bf:a1:a2:6b:e8:08:b6:
4d:a0:b0:9f:46:92:c4:68:15:77:f0:2e:d1:54:39:
ab:6f:5e:24:a3:c8:10:3b:2d:d4:b9:30:f3:70:57:
04:07:ec:ec:e7:59:d5:c7:4d:75:be:14:38:61:90:
b9:07:af:24:b4:2c:72:77:d0:94:61:0c:78:0d:0d:
fa:11:b0:7d:12:3f:8c:44:63:9c:ba:79:0c:dc:66:
43:61:55:e1:fe:70:83:c9:87:57:20:9d:1b:c0:12:
d6:2e:65:78:6b:d6:03:c3:f8:83:40:04:01:84:f7:
58:c1:ea:56:83:df:5c:86:1c:9f:15:a2:00:65:64:
91:7e:89:0d:aa:fe:cf:a3:00:3d:d6:99:4d:62:74:
27:8e:e4:13:48:9d:1b:53:25:20:28:b1:04:28:ee:
57:52:dc:0c:db:6d:33:a3:19:27:ad:cd:71:e1:7f:
a0:ee:d3:c2:f9:2f:8a:ac:08:34:47:c3:d8:99:2f:
b7:c2:fa:70:7a:a8:3b:c6:e0:76:cc:93:ab:c0:51:
02:77:5f:a2:6f:66:22:20:7c:25:03:ad:05:c1:1e:
3d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7A:C5:B7:A9:11:91:0E:D5:45:FA:D9:B8:FB:80:5A:23:55:33:ED
X509v3 Authority Key Identifier:
keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:99:07:31:da:c9:d3:94:82:ea:c6:02:13:26:fd:e9:92:d9:
8e:62:c6:39:87:38:b2:d8:34:b8:50:55:64:49:fe:fd:55:cb:
70:7d:f6:41:18:85:d4:83:86:1a:a5:77:fe:48:ce:7b:d8:ab:
03:9d:28:7a:18:7c:df:90:ef:2e:a0:ed:67:a1:3d:a5:69:84:
80:83:6e:1f:57:c6:91:5d:68:4c:e4:81:80:a0:93:d7:dd:3f:
cf:8b:e9:5b:be:df:76:65:3c:d9:35:a1:3c:88:51:4c:77:39:
0c:e1:45:30:a8:14:a1:d5:2a:69:a8:cc:eb:0d:34:04:51:e5:
9d:b7:ee:a8:fe:7a:92:8b:73:b3:79:0e:74:d7:99:0f:93:e0:
f1:d0:ff:0e:3f:fd:ef:b3:43:cd:24:79:a7:52:da:84:a4:54:
82:54:b3:27:ca:1e:54:f2:ee:83:2a:f3:7d:55:78:db:11:71:
1a:62:bd:15:84:4a:eb:a6:88:db:00:0a:a3:e9:ae:d2:86:95:
85:8a:45:aa:27:c6:1f:a9:28:11:ff:76:5b:1f:f1:e5:2e:39:
a0:85:10:a3:56:82:82:45:eb:a0:b8:84:b7:21:50:4c:0f:58:
1b:11:e6:6b:0c:61:4e:19:2a:8d:de:2d:c3:4b:3b:8a:51:64:
ac:c0:61:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:41:03 2024 by rpki-client on console-ams.rpki-client.org