Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
File: KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft (raw, json)
Hash identifier: FBTcOpx146hD188tOLfYYqJ+IS9bqPb3OFp4q5lauG4=
Subject key identifier: B7:D9:E0:46:65:D4:62:AD:8F:6D:3F:3F:21:20:64:4C:B6:7F:2B:F4
Authority key identifier: 29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
Certificate issuer: /CN=2901d76431c6e873d3c44730571e1e50d602057c
Certificate serial: 018F866C704A8EB9D4AA5E3FFDB95B2B7369
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
Manifest number: 0D86
Signing time: Fri 17 May 2024 12:00:04 +0000
Manifest this update: Fri 17 May 2024 12:00:04 +0000
Manifest next update: Sat 18 May 2024 12:00:04 +0000
Files and hashes: 1: 3T1kdSeg_ipNm5u4VIHzSocNnfU.roa (hash: eT4WXBuNkqu6d9DuTqqk7ojaABROU5weaLiah+s7i5M=)
2: KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl (hash: O53ZCcP7MR1jt7r2C0ZOOV5UjHn5j43FJJ8tkwhDuT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 12:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:6c:70:4a:8e:b9:d4:aa:5e:3f:fd:b9:5b:2b:73:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901d76431c6e873d3c44730571e1e50d602057c
Validity
Not Before: May 17 12:00:04 2024 GMT
Not After : May 18 12:00:04 2024 GMT
Subject: CN=b7d9e04665d462ad8f6d3f3f2120644cb67f2bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e4:2d:fa:61:0e:01:d3:e1:4a:75:4a:df:1c:
45:8c:a8:d8:06:2d:02:31:0b:14:12:5b:7a:ab:d8:
b3:9b:80:24:76:77:68:87:3d:46:33:5a:6e:cc:31:
cf:8d:fd:34:b6:0b:21:27:a9:84:de:9e:35:ef:f8:
36:80:ab:1e:07:73:c1:c6:0c:d7:ad:d5:7f:4c:db:
62:e0:b6:ec:79:73:6e:3f:05:bb:85:4b:7e:70:93:
0a:68:82:d2:84:bd:8a:68:32:1b:52:74:3f:65:7e:
d9:98:a2:3c:8c:15:f4:b1:6a:84:64:a0:d2:45:64:
6d:21:a4:6a:a7:03:2e:90:40:c2:04:5d:c3:b4:65:
e5:bc:1c:eb:5e:91:d0:40:1e:d9:8f:72:93:02:1b:
4c:71:39:1e:84:be:33:22:2c:15:42:be:5c:00:a7:
b8:e1:18:fc:e6:5d:36:42:fd:11:e7:08:16:e3:09:
db:fe:07:06:e0:66:ca:7b:02:ad:75:c3:bf:c6:b6:
f1:a6:36:2e:5a:e5:ff:13:52:af:bf:e7:8d:cd:3b:
74:c7:ac:e7:fe:09:d0:78:d5:91:74:24:bb:bc:9a:
76:09:00:4f:b3:73:67:8a:71:72:06:39:f7:b4:3a:
3a:7c:e4:91:4f:97:fd:d5:5a:f3:f6:35:40:04:6a:
66:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D9:E0:46:65:D4:62:AD:8F:6D:3F:3F:21:20:64:4C:B6:7F:2B:F4
X509v3 Authority Key Identifier:
keyid:29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:84:fd:8e:2e:5a:1d:c4:d0:d9:46:76:c0:8a:71:48:77:41:
ee:af:0e:86:cc:b1:76:25:0f:66:ad:46:39:3e:09:b8:35:8f:
f2:8b:ef:36:f6:83:c4:66:37:9d:bf:0e:9c:4e:8a:38:d3:ab:
3c:1e:1e:70:83:f8:13:cd:a0:2f:4c:38:fc:fe:09:bf:59:8f:
50:57:5c:c6:86:c7:f8:30:34:e2:21:8d:3c:c0:57:bb:0a:44:
67:48:69:80:63:d0:8a:55:94:db:b4:40:2b:ae:db:da:99:96:
2b:35:f1:08:04:ed:e2:52:eb:e4:9d:73:7e:5c:5c:0b:6e:73:
a1:51:d7:95:b0:93:12:12:b9:d6:88:ca:a9:24:69:89:7d:d7:
2d:99:19:04:43:4d:09:4f:a9:80:1e:60:41:ad:42:5f:fd:92:
e8:b5:a7:be:cb:e1:f1:00:89:df:52:01:44:5a:d1:e3:ce:08:
76:49:7e:f0:8f:e5:fb:20:21:98:b2:d9:7d:02:d1:a7:7a:d3:
06:bc:62:3c:02:df:56:ca:20:8c:17:c6:82:d5:4c:bc:5b:c3:
3c:93:c6:ae:71:78:96:71:05:e9:db:6a:23:dd:29:3b:f1:63:
c0:55:a3:c6:f5:0c:d8:44:1f:5f:53:11:aa:35:bf:8a:40:5b:
4d:37:1a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:36:47 2024 by rpki-client on console-fra.rpki-client.org