Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json)
Hash identifier: YHoll/4diZgd4N5CBaD9TeoOlywdkjAJiuQkYXq/BaI=
Subject key identifier: FD:F5:22:38:C6:9D:30:13:1C:F9:3D:8B:D1:C9:1F:0E:EE:A9:87:71
Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Certificate serial: 018F87ED4AE50ED0EFF8F6DACA7B8DA56AEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
Manifest number: 117C
Signing time: Fri 17 May 2024 19:00:26 +0000
Manifest this update: Fri 17 May 2024 19:00:26 +0000
Manifest next update: Sat 18 May 2024 19:00:26 +0000
Files and hashes: 1: Im9XUlP9g4m4-KIs05ONK-ercS8.roa (hash: HzsC17A7ZLX3q7qGezfD83Z97Pca5MGN+MCLP4nEcVk=)
2: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: jBMq6Stp0Oaxl7zjsLxixbw3VM1Lp/BlS6lZY0LZmfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:4a:e5:0e:d0:ef:f8:f6:da:ca:7b:8d:a5:6a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Validity
Not Before: May 17 19:00:26 2024 GMT
Not After : May 18 19:00:26 2024 GMT
Subject: CN=fdf52238c69d30131cf93d8bd1c91f0eeea98771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5a:48:31:ab:46:b0:6f:be:1a:25:60:79:1f:
cd:d9:92:cc:6e:11:f6:cd:b1:e0:ed:bf:9d:12:42:
78:4a:a5:a1:f8:8c:c1:4e:4d:dc:f1:8b:b8:0b:01:
fc:ed:e9:95:90:4a:7c:2f:10:a4:a1:98:f9:09:27:
60:4a:6a:d7:99:aa:95:6f:22:52:c1:60:e4:b5:4b:
6d:a9:e7:2b:06:ae:0f:54:ad:6c:97:6b:3a:4b:ff:
e9:f0:4d:2c:a1:2b:1b:44:2e:2c:d8:fc:40:be:02:
6c:95:c1:27:3a:99:3b:80:7e:2c:5a:38:fe:ce:1b:
13:f7:66:cc:5c:75:21:17:f2:30:ee:f3:10:8b:4f:
bd:c7:8b:0e:1c:48:ee:27:b1:b0:b6:7e:69:cd:67:
73:02:42:41:63:74:ee:84:b1:49:e4:fc:04:8e:0c:
ce:9c:5f:91:fa:91:db:35:90:f4:04:7e:17:1e:03:
84:fb:97:78:62:6d:87:28:b9:2a:ee:d9:89:0a:55:
03:c9:0d:04:85:a0:6d:d1:fb:cf:8d:cd:7f:d6:e3:
15:b2:45:e2:6c:1e:0e:ce:1f:8f:ad:ef:68:f8:3b:
eb:fa:5d:6d:ab:fb:51:73:db:e1:f6:c1:7a:2a:b7:
cb:cb:19:2b:a5:35:46:97:aa:01:8f:76:b0:73:00:
2b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F5:22:38:C6:9D:30:13:1C:F9:3D:8B:D1:C9:1F:0E:EE:A9:87:71
X509v3 Authority Key Identifier:
keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:97:77:d3:50:36:24:db:82:25:18:79:c4:33:49:30:85:4f:
a6:ec:cc:17:82:6d:49:85:bd:8e:6e:36:2a:dd:cd:15:88:57:
4d:0b:13:c9:7c:1e:15:d4:9c:25:be:66:d4:19:76:d8:06:08:
a2:28:a4:71:73:d5:c0:06:d4:d1:32:b5:1b:f7:99:d0:08:26:
bf:b4:d4:02:3f:07:b0:33:a0:14:b6:20:82:da:90:e3:ea:4b:
53:a0:61:d8:7e:c8:ba:b9:8d:ee:72:69:5d:93:68:60:4e:b9:
f0:51:bb:4e:b3:a9:fc:db:0f:ed:67:3c:9b:ac:ab:b1:4d:5b:
c1:e0:00:64:4b:81:a5:e1:ca:8d:af:22:98:e1:47:01:74:d1:
ba:9e:04:cf:85:68:dc:9f:13:5e:7d:61:5f:f9:8f:92:6a:88:
5e:eb:1e:2e:e3:2e:ad:18:39:df:d4:2a:ba:a9:6b:bb:d3:d4:
0c:8d:79:b9:c4:d3:b8:28:9b:b0:80:4d:f9:e1:ff:80:ef:f6:
34:6d:cd:cf:cf:61:84:12:b3:32:57:c0:e8:f8:ca:af:76:09:
94:49:93:40:31:f5:36:ae:b8:8d:c4:8f:d4:7e:15:a4:54:26:
30:49:f4:c7:ae:cc:4e:03:d4:54:13:9d:0f:90:96:ac:e0:b5:
bf:53:54:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:04:47 2024 by rpki-client on console-ams.rpki-client.org