Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: X4fcV2t+EdDGfu/1HnTA7737BcNuDqlrMsVAALJU3r4=
Subject key identifier: E7:63:D1:D5:BA:2B:88:77:B1:37:54:89:A4:58:50:1E:2A:63:1E:42
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 018F87B6BA178474CD842F88E1FCF8D2937C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 1176
Signing time: Fri 17 May 2024 18:00:50 +0000
Manifest this update: Fri 17 May 2024 18:00:50 +0000
Manifest next update: Sat 18 May 2024 18:00:50 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: nK9cQ4jI1YDyTozzCwA6y2BlsnDsdupwAF/n6Wf0RpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:ba:17:84:74:cd:84:2f:88:e1:fc:f8:d2:93:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: May 17 18:00:50 2024 GMT
Not After : May 18 18:00:50 2024 GMT
Subject: CN=e763d1d5ba2b8877b1375489a458501e2a631e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:00:b8:0b:b0:75:5c:57:66:5f:f2:e5:b6:25:
73:7a:d0:79:ce:58:1b:36:ff:84:1d:81:46:e5:0e:
28:67:13:d4:d1:7e:cf:0a:4f:1b:df:3f:74:fc:12:
34:e9:42:34:c6:ba:1b:d6:b4:63:dc:36:52:98:e7:
61:08:fe:fa:ba:34:c8:55:de:18:36:da:2e:30:ff:
66:58:e1:47:01:66:dc:92:ba:23:a5:e2:93:20:fc:
ce:05:d2:17:d9:4a:44:4f:86:d0:91:f9:9b:00:83:
09:19:9c:9e:fb:56:79:bd:70:18:5f:b8:67:78:45:
bc:01:1c:47:2f:91:01:3d:b0:e4:af:08:e8:b8:94:
2a:81:d2:24:cc:ad:30:cb:e9:46:1b:ec:c9:63:a3:
91:16:78:69:f2:35:fd:af:ef:c9:68:cd:85:ba:15:
20:12:bd:b8:ff:e8:10:ff:67:28:a4:86:1b:42:42:
60:22:03:9e:ed:a5:da:4a:3b:c4:e7:dd:b1:63:d0:
7e:65:3e:f7:a9:ac:cd:62:98:e2:a4:b1:eb:4d:ca:
df:48:7f:62:50:ab:d5:2a:48:24:a4:79:20:1c:d2:
6a:8c:df:f6:6a:89:43:ee:4b:cc:c8:7f:74:01:bb:
40:31:41:a6:8f:6d:41:ca:f2:71:48:26:2f:b0:db:
af:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:63:D1:D5:BA:2B:88:77:B1:37:54:89:A4:58:50:1E:2A:63:1E:42
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:5a:04:d8:5c:f1:34:44:b1:d7:e6:b0:65:d5:dd:5d:85:34:
64:e1:27:22:b9:3e:91:a8:70:a9:86:4b:f4:d5:f7:a4:38:15:
88:85:f0:75:07:49:69:87:20:c9:0c:79:29:d8:96:a5:eb:3c:
6f:75:b0:72:55:5c:b1:11:e7:1c:e8:2d:42:db:4b:78:61:13:
c4:d9:39:20:8c:81:48:23:84:c4:97:f4:c4:08:eb:66:15:4d:
e0:b5:c0:c7:4f:f5:ad:ec:db:38:66:fb:3b:d0:08:e2:02:65:
73:a9:c8:ce:5e:50:63:63:74:24:2a:ac:94:f7:1d:bf:c2:29:
41:a5:c5:2c:0e:24:a7:34:e0:41:d2:bd:13:ba:1e:99:1e:7e:
9e:22:00:48:6c:41:83:ff:a8:7a:5c:38:bb:d1:b1:1a:54:9d:
e5:8f:5a:18:8f:82:89:81:65:f6:17:f6:e4:2e:2e:5d:71:2c:
f7:87:fa:67:1d:4c:33:b1:da:61:b4:a0:4f:78:99:f6:b1:db:
ac:c8:02:70:3b:eb:51:11:9b:ad:94:54:ea:ec:f4:a2:ed:9c:
ef:12:36:de:f7:1b:f2:86:fa:30:ed:29:d4:1b:d3:b6:94:fe:
ac:28:7c:7f:67:5b:eb:dc:5d:b6:3f:f9:34:6c:7f:11:d7:7e:
0d:f1:d8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 20:15:19 2024 by rpki-client on console-fra.rpki-client.org