Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
File: KqFL_4NIDRDND767gLLLUJH8-C8.mft (raw, json)
Hash identifier: DSW3KcWrMPyhz1y+808dFRY+Db8cNq1sODOTtMrYgww=
Subject key identifier: B7:EA:15:4B:38:0B:3D:A0:61:B8:BD:D1:F5:EC:A7:FB:03:FD:89:8F
Authority key identifier: 2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F
Certificate issuer: /CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f
Certificate serial: 018F87489BE959841BF3EBFF7E1E8D54F18D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
Manifest number: 1176
Signing time: Fri 17 May 2024 16:00:33 +0000
Manifest this update: Fri 17 May 2024 16:00:33 +0000
Manifest next update: Sat 18 May 2024 16:00:33 +0000
Files and hashes: 1: KqFL_4NIDRDND767gLLLUJH8-C8.crl (hash: BqNZYeunVhpO9vrVa63NuG7EL5RWSSgPDSD1KEG+XNs=)
2: Y6Q4ViAGnsJmkB-fN2LN191Pw7c.roa (hash: jSK8tsHSQfmTslpTUmntlY8Nw0zk2XwQ2aQWTYIPv0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:9b:e9:59:84:1b:f3:eb:ff:7e:1e:8d:54:f1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f
Validity
Not Before: May 17 16:00:33 2024 GMT
Not After : May 18 16:00:33 2024 GMT
Subject: CN=b7ea154b380b3da061b8bdd1f5eca7fb03fd898f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:86:17:91:ef:ab:28:1b:8f:98:9e:a1:b1:98:
aa:ad:95:11:dd:90:9b:98:d1:b4:fd:2b:4f:0f:19:
79:66:8f:63:aa:47:06:04:ac:ee:f7:4b:94:52:18:
e2:73:a8:db:e3:d0:94:40:9a:b5:9d:a6:f0:5c:7d:
c4:5b:5d:fe:44:e1:4a:11:a7:9b:9b:52:2c:18:8f:
61:a1:6c:c4:e3:fe:bb:39:ac:52:f8:f3:a7:83:43:
d4:4a:61:49:a8:c3:8d:d1:9e:35:4d:c4:d6:2f:27:
71:2e:f9:36:7b:a8:b2:93:7c:5b:88:5d:25:a7:f1:
14:55:c8:b2:d1:e2:06:97:9f:08:6d:66:dd:27:52:
2c:61:01:33:69:2d:1c:df:68:86:b1:fc:ca:8c:c6:
98:10:17:c1:2c:01:83:cd:00:ae:56:82:37:8b:1e:
d0:82:97:fd:a9:a9:44:83:ec:96:2e:8f:c9:21:ba:
24:67:23:56:d9:d2:03:80:1d:a4:b8:5e:8b:df:2f:
fc:1f:4d:b9:b7:5b:9b:f1:f3:18:bc:f7:03:19:92:
56:04:25:d4:9f:29:12:cd:bf:21:d1:9e:92:65:14:
2f:81:3a:45:b4:87:cd:a8:df:f0:db:d2:05:ca:c3:
d1:1a:c6:bd:fc:20:7b:8d:fc:3c:67:ea:ec:3b:b1:
6c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:EA:15:4B:38:0B:3D:A0:61:B8:BD:D1:F5:EC:A7:FB:03:FD:89:8F
X509v3 Authority Key Identifier:
keyid:2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:38:42:4c:25:05:10:1e:16:a1:c0:15:fc:df:2f:ae:0a:d7:
4f:65:7a:26:21:44:ee:80:39:d8:78:91:a5:3d:ab:0e:e6:4a:
b7:b6:bf:87:56:cf:da:ed:22:ba:82:bd:01:31:27:b6:ed:6c:
f2:b3:82:93:30:09:81:b0:4c:c8:0b:9a:fb:0b:b7:3d:15:b6:
98:f6:d4:29:04:6e:3b:ba:41:d3:62:4f:f8:89:f9:43:92:56:
0b:d4:8d:43:df:1f:af:79:d8:4f:0c:9d:79:83:b2:fa:47:3b:
43:2b:03:d0:e3:99:a6:13:ea:00:95:7b:9f:39:84:d3:36:00:
f8:31:1e:0b:4b:db:2e:e8:91:b3:87:7b:81:40:ed:0d:52:76:
c7:f0:b2:0a:d4:65:01:6a:ce:4d:76:94:1b:7f:fe:e0:d8:14:
55:f3:f4:f1:88:7e:98:50:5e:5d:d0:47:58:96:9a:f3:24:87:
e3:88:cc:11:99:85:a2:1a:ff:1d:a9:e3:3e:ac:7b:9e:f3:5e:
a7:99:1b:4c:2b:ed:f1:ac:5f:cd:a1:c1:51:42:69:e3:d9:ab:
28:31:47:6b:5e:1a:b6:47:56:a0:bd:6e:dd:c4:e2:34:c2:03:
77:d7:ef:87:fb:41:c1:a0:89:0f:0d:98:32:fa:c9:35:c5:39:
01:0f:30:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:23:23 2024 by rpki-client on console-fra.rpki-client.org