Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: EtB85IDVa2ctVMGoeKQnjVPFTzYxNs2HlF9fOW6q6OA=
Subject key identifier: 66:D7:18:50:F1:73:4F:68:E0:82:E8:8F:91:FC:22:5F:66:DE:7E:13
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 018F8891ED271F81E33C6D3E1DE5BB9196F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 1179
Signing time: Fri 17 May 2024 22:00:15 +0000
Manifest this update: Fri 17 May 2024 22:00:15 +0000
Manifest next update: Sat 18 May 2024 22:00:15 +0000
Files and hashes: 1: 5WkcvJ_-DOE5imjuWi3lMOoWZb4.roa (hash: W4IACYuExyp7VUjRCa9FZL8WiV35Eyr6tnSFmYqtRVo=)
2: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: U9hZHMRqZpcI7uP5V9ifPJLkKpdKFjZKl5FWxmZYM8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:91:ed:27:1f:81:e3:3c:6d:3e:1d:e5:bb:91:96:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: May 17 22:00:15 2024 GMT
Not After : May 18 22:00:15 2024 GMT
Subject: CN=66d71850f1734f68e082e88f91fc225f66de7e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ea:d4:a0:43:0e:b3:f0:f1:36:4f:07:95:ca:
63:0d:f9:37:62:62:68:a3:27:18:92:48:3b:f1:56:
5b:de:13:bf:a7:1c:e0:9c:96:76:a6:57:db:00:cb:
64:5b:61:29:8b:16:d5:54:81:44:d4:da:45:0f:d2:
fe:9e:41:52:1f:e1:4d:cd:ff:4c:0f:4e:f6:cc:68:
88:05:b1:6e:7a:41:5f:9d:d3:68:a6:65:d7:f2:57:
48:95:d5:2d:03:d2:6d:64:68:03:43:be:6d:78:84:
a3:66:b3:dd:f7:5c:6e:73:f6:fa:6c:9a:1b:61:61:
99:79:d8:7d:4f:b4:7e:d3:41:f0:c2:cd:95:2a:27:
61:72:07:c2:0d:c3:5d:65:c6:8d:3d:89:6a:e6:66:
f5:13:2d:ec:e4:a0:7e:9d:42:b8:c2:9b:ad:cb:09:
14:b1:93:63:76:bc:2f:dc:3f:6a:78:95:cd:26:ca:
88:ee:93:96:5e:60:cf:9b:63:9a:fe:bd:be:18:ad:
52:72:36:c8:c7:de:60:08:3c:87:9e:d7:76:4e:fb:
2d:78:e6:60:6f:16:19:16:5d:71:a3:6c:a7:44:c1:
fa:de:31:f8:e9:5d:83:d0:45:3e:e0:c1:55:f0:6b:
2d:c0:05:35:74:c0:f5:c8:c4:e0:cd:5b:2d:eb:24:
58:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D7:18:50:F1:73:4F:68:E0:82:E8:8F:91:FC:22:5F:66:DE:7E:13
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:70:85:56:22:4c:50:90:46:55:da:5e:91:64:04:81:72:1f:
91:a6:a6:18:22:cb:0c:67:fb:e8:9c:a3:06:fa:e5:7e:e8:20:
89:b2:92:c1:43:82:ee:6b:c6:58:d9:f9:3c:c2:5c:2c:82:87:
52:76:b3:1a:83:18:da:89:2a:61:9d:00:11:6c:99:e6:e4:c5:
5c:04:ef:45:77:14:cc:eb:6e:49:3e:f2:fe:8c:f1:5c:94:9b:
5c:06:9d:47:12:22:05:03:9f:58:66:be:f5:04:7e:a1:c2:15:
34:40:90:7c:de:30:2c:0f:75:e1:4a:ce:1f:14:00:00:0f:68:
bc:34:ac:40:a1:ca:fe:be:45:dc:fe:38:41:36:82:ef:5e:07:
7d:c5:c6:ad:e9:62:41:b1:14:9d:84:f0:80:f5:bb:fa:04:70:
ab:1c:fc:47:57:a3:52:12:49:a2:58:2c:89:9a:50:f3:cb:bc:
34:28:a6:b8:eb:e7:ad:bb:30:26:1a:4a:84:2b:8a:7c:0e:85:
64:39:b8:ae:cf:41:cc:e1:85:8e:86:43:ad:6d:b9:3c:00:e1:
67:ae:c6:e8:e2:b7:d5:d1:b6:e4:a5:55:33:6b:9e:54:53:13:
f7:00:85:d9:d9:88:a4:fd:4b:c3:9f:23:8e:8a:a5:19:18:b1:
e2:1a:f2:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:41:57 2024 by rpki-client on console-fra.rpki-client.org