Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
File: YmqokTLSpoTY0qGj9-QPIjRjbzg.mft (raw, json)
Hash identifier: vKJ63pwgoljkjUAiBQsjs7rVdruyu8AUAXS8R7LCMYk=
Subject key identifier: 17:4A:69:0B:AB:72:F0:A1:39:77:22:B5:0A:90:4A:CA:D9:C8:5D:03
Authority key identifier: 62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
Certificate issuer: /CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Certificate serial: 018F86A372FB00793BAE56AA48C6D42E01CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
Manifest number: 0F53
Signing time: Fri 17 May 2024 13:00:09 +0000
Manifest this update: Fri 17 May 2024 13:00:09 +0000
Manifest next update: Sat 18 May 2024 13:00:09 +0000
Files and hashes: 1: YmqokTLSpoTY0qGj9-QPIjRjbzg.crl (hash: qLdvO5kLhBw8vKcsPKcYp5cHYCWlcXOcKfhac0+DsL4=)
2: mX4UyaDHEu_Yz_DNN-gMYgseEZM.roa (hash: yCd3Yu2QCwM8guGeye9CaM7s+WzKA7Tpit/vK58fCvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:72:fb:00:79:3b:ae:56:aa:48:c6:d4:2e:01:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Validity
Not Before: May 17 13:00:09 2024 GMT
Not After : May 18 13:00:09 2024 GMT
Subject: CN=174a690bab72f0a1397722b50a904acad9c85d03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ce:8a:05:c7:51:5f:fe:32:98:b8:8f:e5:51:
fd:72:52:33:f7:da:79:cd:ec:80:ef:b5:b1:ea:53:
64:26:5c:19:b7:97:e4:d2:aa:ff:da:d3:cc:28:a2:
46:f4:97:1b:d6:ac:56:6d:3f:c1:4f:9f:a1:a6:0e:
78:2b:a9:e6:79:7b:e8:87:3c:f1:fe:97:3d:76:1a:
67:e9:eb:f8:d8:8e:c1:f5:2e:a8:13:7c:39:e7:c9:
72:65:b8:02:17:a4:49:48:0f:04:4d:68:89:4f:ff:
0c:f5:44:42:c0:80:ea:98:b1:2b:81:7e:d6:ee:b3:
fc:a3:39:17:f9:22:38:cf:7d:6e:4b:a8:e8:c1:3d:
1f:2d:96:66:7e:fa:33:64:5b:aa:25:30:06:de:e6:
4f:b1:52:30:79:6b:0b:9d:7c:23:57:0d:4a:b0:bf:
aa:f9:2f:22:cf:1e:35:52:80:75:48:8c:2a:14:df:
90:d7:91:c1:f4:35:fe:8a:18:85:57:ca:5a:29:af:
2b:35:4f:a9:98:33:e5:da:19:15:11:ea:dd:fc:04:
79:aa:f1:7a:88:f7:7a:2d:d3:e4:3a:4f:02:d4:37:
4e:fa:c4:4e:b8:d9:70:72:40:bb:e4:1a:c8:1b:dd:
76:f4:a5:c6:c4:da:e7:8d:2d:c0:4b:06:34:47:37:
dc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4A:69:0B:AB:72:F0:A1:39:77:22:B5:0A:90:4A:CA:D9:C8:5D:03
X509v3 Authority Key Identifier:
keyid:62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:cb:65:f9:6b:d9:e7:21:bd:b2:c2:a2:c9:db:b3:be:8b:6d:
3d:6c:66:85:17:f5:36:b5:50:07:e4:19:ab:0a:64:2e:77:e3:
cd:c3:22:8b:2b:fa:55:62:55:0d:c2:a8:f8:5f:1f:d3:8c:25:
20:44:8c:b8:7a:c2:9b:2a:a6:ed:95:cd:8e:8f:e5:9b:d2:0f:
43:80:9b:2e:a4:01:d7:01:f6:5a:c5:65:bc:b4:e0:49:ed:11:
b8:d5:b5:d7:b6:97:59:1b:4b:90:0b:01:c2:5f:de:f2:8c:15:
2b:80:ec:1d:f2:00:7f:6c:92:b9:48:89:6e:2c:27:73:dc:d3:
45:ba:fc:04:6d:90:ed:eb:03:07:7e:87:96:73:d9:51:c9:b1:
06:2b:f5:78:81:c7:dc:1e:8c:32:38:40:4e:e1:27:ba:93:bf:
5f:8b:66:60:a7:9a:c1:f1:14:8d:cc:d6:20:4a:32:5d:58:dd:
97:b9:ee:94:17:b7:15:c9:ca:8d:4a:cf:a2:f1:cf:f3:e0:08:
10:a9:d5:aa:09:47:2f:90:03:1d:44:80:9e:30:62:34:b5:b3:
ec:a4:29:62:18:8c:86:2c:2e:56:ca:2c:9b:06:5b:85:27:cc:
dd:89:82:ed:c3:c7:ee:2d:be:5e:c0:49:b6:69:3b:94:3a:76:
47:02:6f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:20:57 2024 by rpki-client on console-ams.rpki-client.org