Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
File: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft (raw, json)
Hash identifier: FWP/50LBVUgzbEdIALAPOJJSpFacyRpUdSwJkJYCFNQ=
Subject key identifier: F7:0F:3E:B6:A7:51:28:04:39:04:FB:9D:88:5A:C2:5B:00:49:ED:EC
Authority key identifier: 42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
Certificate issuer: /CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Certificate serial: 018F87496DAFFB291E5AD3D9A1FE6D9D6122
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
Manifest number: 1178
Signing time: Fri 17 May 2024 16:01:27 +0000
Manifest this update: Fri 17 May 2024 16:01:27 +0000
Manifest next update: Sat 18 May 2024 16:01:27 +0000
Files and hashes: 1: Mqd3HFO18ohH8UNILvLRExE4Klg.roa (hash: LOKAGwAFo9y698gXEHE84dmTbpZPONJJI/Ps7w7q08I=)
2: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl (hash: OdBw9Ze7209TlPW+or7wvcJxl5b2BQEY7G/grQr4fcA=)
3: wtD3A5nqgPuINcHPwfBUsSrTs40.roa (hash: ZyK161H/BvxjlJx/6MNIPo9aU4W0KXn3HckeyTr+Dbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:6d:af:fb:29:1e:5a:d3:d9:a1:fe:6d:9d:61:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Validity
Not Before: May 17 16:01:27 2024 GMT
Not After : May 18 16:01:27 2024 GMT
Subject: CN=f70f3eb6a75128043904fb9d885ac25b0049edec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e7:a0:21:c2:34:35:5e:46:72:1f:a5:bc:53:
ca:00:8d:cc:07:4d:73:8a:ee:03:db:70:63:8a:5c:
cc:05:d2:d1:31:1e:0d:e8:bf:be:a5:08:c1:f6:c8:
35:e7:53:1f:d8:c7:d8:db:0b:e0:51:5d:45:22:52:
ca:59:48:32:3c:b2:c6:4c:53:72:cd:a1:ad:3d:51:
9d:75:f3:0a:b0:1a:8c:84:2d:2f:25:6f:b7:c2:65:
96:0f:38:40:f5:82:47:66:ab:90:a7:c4:ba:71:f3:
de:67:72:61:47:fe:02:65:70:3d:21:db:5b:4c:1e:
5e:bc:5f:78:21:55:68:5d:ce:d9:3c:0b:69:f1:e9:
b1:7d:fa:cc:ad:ef:e9:a7:8e:4f:c6:30:37:a0:08:
4c:37:aa:68:35:b9:08:fd:d1:7c:50:95:fe:83:17:
00:1b:a6:00:b1:78:14:fd:ab:04:a6:58:e8:89:59:
dc:c2:91:1d:27:f9:9e:b0:21:13:fa:72:f0:3c:cc:
1c:f2:c7:3e:e5:c7:89:b8:c4:ea:8f:14:bc:13:64:
34:84:e5:89:94:2f:2e:0a:f6:4a:03:2f:42:4f:cc:
0b:82:83:65:25:ba:ad:91:33:05:fb:07:b1:26:f8:
04:51:83:1f:2e:33:08:ad:53:63:db:be:5c:f6:83:
ae:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0F:3E:B6:A7:51:28:04:39:04:FB:9D:88:5A:C2:5B:00:49:ED:EC
X509v3 Authority Key Identifier:
keyid:42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:5e:34:92:75:77:f2:7d:50:93:2b:23:67:73:01:10:02:bf:
14:fc:a6:40:d5:b3:0e:da:d4:0b:c5:4f:9e:88:a4:c2:56:74:
10:fa:8f:8c:d8:b1:43:65:08:55:47:9b:9d:5c:e0:75:20:68:
16:7f:d1:e8:23:24:07:b5:21:0e:97:cb:6b:54:52:e2:42:db:
f7:55:31:2c:e2:9b:de:5a:31:71:d2:ee:9c:da:8a:f0:b3:9f:
d3:3d:06:99:2b:10:db:77:3d:e3:14:03:1e:4a:84:96:cd:0c:
50:76:3b:b6:01:80:c5:c1:8e:2c:a3:d5:7b:da:ba:02:8a:ed:
ad:bc:41:fe:30:21:1d:5e:c9:1a:a4:8c:78:5b:8b:ec:d6:ae:
ff:8d:d8:df:ca:f5:9f:c2:b6:a7:e0:54:b4:83:ce:da:d9:ac:
5c:2e:90:d0:2a:86:08:79:96:18:4b:3d:67:d5:40:38:48:2b:
72:42:7e:1b:03:50:b2:5e:0e:bf:05:53:38:7d:55:a9:7a:6a:
1e:19:b5:78:0f:f8:e8:55:a6:82:69:50:d9:4b:f4:59:e9:31:
bd:1e:46:e3:c3:e0:cc:21:db:94:34:a4:4a:b1:8a:e5:3b:14:
2c:17:48:55:03:bc:5d:b9:4d:d7:62:8e:b6:ff:d2:1d:a8:b9:
4a:1d:20:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:34:11 2024 by rpki-client on console-fra.rpki-client.org