Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
File: MQitUnxyDreXB7P7excsiLczsTM.mft (raw, json)
Hash identifier: +jhrJtPalNvh6m8NAwDlwZJ3U9SfU10rVURrtzpL1Fs=
Subject key identifier: 24:6E:2C:7D:16:B1:F2:D0:CB:2E:F3:4C:A4:03:60:31:22:DF:42:E5
Authority key identifier: 31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
Certificate issuer: /CN=3108ad527c720eb79707b3fb7b172c88b733b133
Certificate serial: 018F86A3FD7F6AF31F4ADB0C3206F1642788
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
Manifest number: 09FC
Signing time: Fri 17 May 2024 13:00:45 +0000
Manifest this update: Fri 17 May 2024 13:00:45 +0000
Manifest next update: Sat 18 May 2024 13:00:45 +0000
Files and hashes: 1: AcgHrDL1Qf1i3_khrxLLit0GyfM.roa (hash: sxmYeaDOyuXFVuAq5UXP+xmWPLLdrmtmItLT/GK3PLA=)
2: MQitUnxyDreXB7P7excsiLczsTM.crl (hash: TVRcKvFi3DUZb4cIF0DCu5tHVnniT0oSi9k6vmZJ6mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:fd:7f:6a:f3:1f:4a:db:0c:32:06:f1:64:27:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3108ad527c720eb79707b3fb7b172c88b733b133
Validity
Not Before: May 17 13:00:45 2024 GMT
Not After : May 18 13:00:45 2024 GMT
Subject: CN=246e2c7d16b1f2d0cb2ef34ca403603122df42e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:64:e6:8f:ae:50:9f:cf:1f:ac:70:4f:e7:4c:
1d:e2:a9:a7:ab:24:1d:aa:99:39:ca:bf:10:93:2c:
4e:e2:60:10:63:99:e8:29:9b:db:76:9e:35:ae:40:
6f:56:0e:52:49:f5:ce:46:6f:3f:92:f8:a5:22:c7:
2e:9e:01:42:9f:7f:4b:5a:7f:9e:aa:5c:8c:8f:0a:
39:10:67:5e:72:5d:41:c5:ec:01:f0:63:76:5c:f5:
84:9f:a1:09:96:18:da:7d:3c:db:39:26:5e:86:39:
aa:1b:79:e9:43:7e:20:23:c4:23:3d:7f:cb:3b:8a:
e0:f4:d5:70:70:b9:e1:d7:f2:e9:21:66:84:00:4d:
65:2d:ac:5e:56:eb:72:48:f5:66:c7:b5:5c:c3:99:
d0:98:13:42:d7:f3:f5:28:c7:9a:04:2b:6a:4a:09:
81:db:56:29:f3:6d:a8:76:99:db:d2:cf:ec:6b:1d:
bf:bc:96:3a:ff:ad:4c:0f:80:2c:f9:22:c9:ef:07:
70:99:62:0c:68:18:bc:12:eb:6f:c3:92:14:96:c1:
d7:7a:c4:d4:b4:c7:b4:88:3d:41:f4:92:17:e4:d0:
32:e2:8e:e1:42:65:d1:ec:2c:72:4f:b9:13:94:96:
39:b5:d2:72:a2:3b:50:66:5e:10:0a:97:09:d2:ac:
b4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6E:2C:7D:16:B1:F2:D0:CB:2E:F3:4C:A4:03:60:31:22:DF:42:E5
X509v3 Authority Key Identifier:
keyid:31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:f2:14:8a:41:12:c6:cc:45:d4:57:44:d3:49:01:fb:ad:4d:
30:2b:8d:21:a6:a2:e4:e9:01:0a:cb:ea:56:8d:ef:5e:dc:71:
cf:1e:b6:16:15:94:0b:4d:20:e9:41:ac:67:75:b2:05:bf:60:
d8:f3:42:f6:0e:1b:6f:ea:7e:ff:72:68:49:fd:bb:93:d0:25:
e0:af:7f:75:ae:7a:fa:db:02:31:8d:53:f7:d2:b2:da:bb:36:
a4:db:ea:0b:75:30:87:e8:94:85:ea:4a:8a:25:e7:ef:91:4c:
71:04:9c:6e:2f:36:e8:05:24:82:97:7a:fc:1c:43:47:1a:e7:
38:50:c1:55:f6:04:11:bb:f2:74:69:05:e0:27:ab:0a:bc:bf:
d6:9a:dd:e1:10:ae:1e:fb:91:21:0f:39:45:4f:ad:68:08:f9:
c6:f8:31:2b:6c:76:47:8a:7e:c5:e4:26:77:cc:d9:3b:10:1d:
42:aa:ec:a0:c6:86:52:62:c5:1c:75:11:0d:7e:c1:89:7a:d4:
a4:30:f7:2b:d8:d8:b1:dd:c8:1d:39:a7:9f:1f:d9:3c:f5:27:
8e:f6:43:3e:4f:69:e0:38:6d:a4:9a:73:4c:c2:6a:80:62:35:
01:be:07:35:d2:83:5e:8f:a8:e4:73:82:d0:b6:60:ef:28:7f:
eb:54:f2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:41:32 2024 by rpki-client on console-fra.rpki-client.org