Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
File: Q1w_GpeQPnlikqKsenjUGxwh24U.mft (raw, json)
Hash identifier: aqhMW6+rysszU6C6XelzTgmsrlUQ6Qru32XqE9BRn1A=
Subject key identifier: 7A:BF:C1:6E:38:03:75:48:A0:CA:06:33:0A:9A:16:FC:89:01:92:0B
Authority key identifier: 43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
Certificate issuer: /CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Certificate serial: 018F885AE3EF08F30D8D43F6E6B590F0312C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
Manifest number: 0AA0
Signing time: Fri 17 May 2024 21:00:08 +0000
Manifest this update: Fri 17 May 2024 21:00:08 +0000
Manifest next update: Sat 18 May 2024 21:00:08 +0000
Files and hashes: 1: IIP2V3nwlxk2cYt0y3T8AJVT3ec.roa (hash: fS9HRIpx83pacmSdg6yvDCEtpJ5F4QKZDDhnlVfX/Ac=)
2: Q1w_GpeQPnlikqKsenjUGxwh24U.crl (hash: QxMv1+OCroFyeCiscy9qsGTWGvnOPa1eLN5HqvseUYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5a:e3:ef:08:f3:0d:8d:43:f6:e6:b5:90:f0:31:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Validity
Not Before: May 17 21:00:08 2024 GMT
Not After : May 18 21:00:08 2024 GMT
Subject: CN=7abfc16e38037548a0ca06330a9a16fc8901920b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:28:12:74:5a:da:d4:77:b0:c2:c9:fa:6c:9d:
96:c3:d0:cf:39:31:86:a3:6b:f0:6e:d5:d7:d8:80:
4c:79:d9:ac:c4:01:ae:16:51:72:39:71:0b:77:fa:
4d:e4:88:9a:4f:97:a6:3b:18:91:07:78:ef:2b:99:
29:b6:55:e8:93:c2:f6:28:8f:eb:9c:23:0e:a7:a0:
a8:4a:1f:e2:80:2f:9e:73:fc:bb:af:c9:7c:71:00:
e1:20:8c:7c:db:3a:f5:ec:20:8c:07:cd:8e:ae:bb:
6e:9a:a5:d9:f4:cd:ee:62:7e:bd:b2:a6:6b:c7:75:
01:84:93:26:47:ae:df:85:9f:21:6f:c4:ab:7d:61:
ab:51:3d:77:ba:f5:e5:37:39:81:10:7e:e1:2c:1d:
0a:8b:35:8d:c5:d7:c0:09:c4:b2:f8:5d:ec:60:59:
90:c2:9e:35:56:e3:5e:a5:5b:fc:8f:7f:c1:16:f2:
b0:09:74:35:86:be:3a:b0:f8:71:2a:21:22:21:73:
ac:ee:45:43:42:bb:70:cd:23:82:4b:05:e1:cb:c8:
e4:f4:30:c5:98:b0:2e:b8:6b:62:6d:30:f6:2a:c0:
44:3a:a3:22:06:4f:e4:a8:b9:73:c1:9b:34:45:4d:
e4:b3:5f:33:e0:a8:09:a4:61:6b:a5:38:68:a0:13:
f3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BF:C1:6E:38:03:75:48:A0:CA:06:33:0A:9A:16:FC:89:01:92:0B
X509v3 Authority Key Identifier:
keyid:43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:6a:02:b3:7d:1c:28:7a:40:01:8c:29:95:75:46:3a:5b:34:
57:74:09:7d:16:98:88:16:70:bc:a6:8a:1e:7a:2a:9f:4d:ad:
be:1f:35:4c:1d:ac:6b:9c:e2:3c:55:dc:4c:34:50:6d:14:a5:
cd:68:3c:9a:b3:fc:0b:6d:94:ee:0b:41:e7:10:85:33:37:97:
dd:92:48:d8:c4:5c:9e:26:93:0e:a8:8f:5c:7a:bc:6c:bb:0f:
f4:7d:6d:c2:4d:48:57:e5:f8:66:76:a0:27:f1:d3:ed:84:15:
7a:dc:48:97:0b:31:42:fa:66:3e:28:1a:73:22:3f:6d:fc:ca:
30:7f:58:3f:4b:a7:e6:ef:a0:36:c1:3a:9a:0c:9d:96:1a:9c:
2d:26:a5:64:a4:d6:cd:33:59:84:75:b3:e8:3a:b1:27:ce:15:
b5:53:2a:06:77:5e:a3:a1:5b:00:4b:7f:64:79:56:9a:d8:48:
bb:4d:3c:8b:c9:93:b3:86:9d:a2:78:c7:b8:ce:54:c9:0f:03:
3c:e2:6b:7f:7b:f6:91:3f:fc:0f:12:34:12:fc:f2:4e:34:ca:
f5:c8:46:10:50:49:d6:22:6b:49:0e:53:48:75:d3:90:61:ef:
23:c3:d4:87:1e:21:5f:3e:e5:8a:63:81:29:73:f2:c8:a9:ef:
5d:72:37:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 02:07:48 2024 by rpki-client on console-ams.rpki-client.org