Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
File: QlbgyzjNYSXO4U5Jcii4SQodQOk.mft (raw, json)
Hash identifier: K334FFejppt/Be5reE9ZrY7bJogofqTwFe3R+S0Mpco=
Subject key identifier: 35:37:0D:37:1D:9D:FE:3A:59:78:A0:7E:A5:CE:FC:AE:3D:88:DC:B5
Authority key identifier: 42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
Certificate issuer: /CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Certificate serial: 018F877F2D6F02886AE5B7B998086FDA6F09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
Manifest number: D3
Signing time: Fri 17 May 2024 17:00:09 +0000
Manifest this update: Fri 17 May 2024 17:00:09 +0000
Manifest next update: Sat 18 May 2024 17:00:09 +0000
Files and hashes: 1: 7mqJACvRo8GB9ppp6gMUWsLV9Hk.roa (hash: QWABn/rdzRPIQ4bSGnlcg3vSiXVHM9FSvr2GPwAtWI8=)
2: QlbgyzjNYSXO4U5Jcii4SQodQOk.crl (hash: Z6y2RPpLEnM+ThwlHYFhl/ZjW5eZuIrYp4nY0r3sLA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:7f:2d:6f:02:88:6a:e5:b7:b9:98:08:6f:da:6f:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Validity
Not Before: May 17 17:00:09 2024 GMT
Not After : May 18 17:00:09 2024 GMT
Subject: CN=35370d371d9dfe3a5978a07ea5cefcae3d88dcb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c4:38:de:ad:8a:0f:96:d5:35:06:4d:bf:38:
72:2e:11:bf:ab:ec:e6:5a:3d:22:a4:8c:38:45:a0:
de:e8:96:e3:a4:08:52:cc:94:91:9c:0d:24:35:9c:
4b:46:c3:bb:28:c4:ba:c7:02:73:87:3f:c2:d7:fb:
18:ce:86:28:ed:65:68:a0:12:6a:09:2a:ae:03:d4:
59:b4:03:cc:dd:d2:ec:b4:ef:2e:c4:4a:9a:c6:d9:
e4:dd:61:52:62:50:f9:b0:ba:aa:f1:f5:b4:96:32:
7b:82:3e:1a:72:d8:f6:1b:36:00:70:eb:3b:56:c3:
67:0b:9a:44:86:ad:c9:93:8e:63:d4:b8:13:5f:68:
e6:d7:1d:d3:37:67:19:e3:30:8a:fa:e1:ad:04:bf:
e8:11:ad:07:71:c2:ed:e7:00:31:59:51:33:05:3d:
58:ce:8b:f2:e7:22:0c:96:17:fb:d4:fe:53:42:f7:
f2:a8:32:02:d1:49:ed:a6:82:68:4c:03:11:2f:0c:
0f:b9:3f:42:2e:b1:b8:93:00:06:d7:91:91:26:09:
53:f1:00:5b:a6:89:3d:be:98:3e:ff:8e:84:36:eb:
cb:b4:f2:90:20:11:94:6a:13:e6:df:f5:47:b8:55:
94:9e:16:6a:ad:6e:08:72:d7:9f:e4:a5:dd:32:28:
b2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:37:0D:37:1D:9D:FE:3A:59:78:A0:7E:A5:CE:FC:AE:3D:88:DC:B5
X509v3 Authority Key Identifier:
keyid:42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:2c:fc:2c:ff:c9:f0:a8:fe:14:d5:fe:24:ee:09:d8:64:72:
91:dd:bf:bb:47:a0:8f:a2:c1:23:3e:e7:9f:16:19:c5:9d:1c:
2d:77:7d:8d:93:c6:ed:c3:55:a3:1c:ca:e6:8a:3d:8a:b6:4a:
a8:fd:6b:fd:44:2e:e2:0e:c8:5e:e8:c9:4b:f9:10:dc:68:c8:
c6:69:a1:4d:3c:43:b6:27:85:71:b6:a3:c6:3a:66:09:20:71:
fd:e8:a8:ef:ca:7d:9a:5e:2f:43:aa:e5:a5:49:54:5e:f7:98:
48:38:34:30:71:ac:c7:15:86:9c:33:99:b0:04:19:91:71:af:
fe:51:04:57:12:3c:b7:c6:be:f9:7f:d0:c6:b1:40:b6:8d:8e:
5c:d1:e7:c7:2d:0c:f4:1f:06:5b:be:55:f1:f0:a5:ff:c1:d7:
2d:b0:d8:f7:43:36:48:22:ea:b7:e3:92:e7:d3:0a:76:41:89:
92:2c:9e:46:c5:b6:28:4c:a6:49:dd:3d:d3:18:d5:0b:29:74:
40:31:ae:ba:36:e3:6c:87:0e:de:06:9c:52:c6:e5:9f:ab:f4:
50:34:85:e1:06:fd:5f:d0:55:2e:66:1b:ec:2c:dc:c7:5b:7b:
7a:1f:15:a6:a9:97:c3:e6:61:0f:01:97:dd:19:24:e3:63:e3:
ec:c4:00:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:59:49 2024 by rpki-client on console-fra.rpki-client.org