Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
File: QHShwDg61esPBYjkwzlLo0AQpiE.mft (raw, json)
Hash identifier: cCKoRfDaorK0k1HebiY+K71nR/RptXihLsrKdpc+Aeg=
Subject key identifier: D2:AD:CE:49:57:A9:0C:27:86:4E:90:E6:7B:11:C6:B8:C7:A0:EB:23
Authority key identifier: 40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
Certificate issuer: /CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Certificate serial: 018F87ED2A937F59625E227C9311F427777A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
Manifest number: 117A
Signing time: Fri 17 May 2024 19:00:18 +0000
Manifest this update: Fri 17 May 2024 19:00:18 +0000
Manifest next update: Sat 18 May 2024 19:00:18 +0000
Files and hashes: 1: 33s_uv21fbn3KgymRpmVK5zSyyE.roa (hash: r3bx7BEmNfJ6uRTqwMdUUBuljm4MXnYGp22ssEsndmc=)
2: I1O9JkhXZZ72sO6O0lisS2YFrTs.roa (hash: /uUuuMlJS2Y/kvVK9vOpvhPhr4kBD4uq3/WXldf+LbE=)
3: QHShwDg61esPBYjkwzlLo0AQpiE.crl (hash: 08s3sMpPKnnhaGsmZfzy2He9kJQ2vy6nZJ+0Bjii5CA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:ed:2a:93:7f:59:62:5e:22:7c:93:11:f4:27:77:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Validity
Not Before: May 17 19:00:18 2024 GMT
Not After : May 18 19:00:18 2024 GMT
Subject: CN=d2adce4957a90c27864e90e67b11c6b8c7a0eb23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:68:72:c3:0c:b4:eb:15:ad:97:71:ae:6e:09:
c7:84:a6:6f:7f:e8:95:62:33:c7:7f:c6:1f:44:91:
63:22:e9:6f:e9:7f:2d:af:f4:c5:e8:91:ce:5c:69:
8f:1d:a4:c1:d9:54:f0:47:b4:5b:5d:dd:45:de:49:
ff:65:bf:a6:c2:1a:9d:3e:28:a4:c7:42:4f:7d:ed:
8b:b2:49:7b:20:5f:7d:6f:30:a6:ec:fe:f5:19:ad:
96:4f:65:fe:a9:12:73:88:d9:81:00:cb:41:32:86:
08:6c:0e:5b:5a:8d:fb:ee:34:c9:72:be:8a:ee:65:
bb:63:15:a5:35:1b:a4:30:c0:dd:d7:0c:90:4f:8f:
e8:4d:77:eb:d7:98:bc:9d:fc:ed:aa:8f:30:6b:66:
14:5f:ea:78:f4:54:39:85:4d:3a:e5:d0:ee:86:ee:
08:df:c8:51:bb:5b:d2:41:23:0c:e2:f3:85:87:5a:
0b:f8:60:8a:75:ae:e5:a5:37:60:d3:7a:a0:0d:83:
f2:d8:88:cf:1d:ef:f8:41:01:2b:54:0b:ed:d8:5d:
be:65:99:3b:40:f4:78:6a:ad:20:94:f1:0b:f2:f5:
e7:28:b9:d1:6e:97:5a:5e:df:a6:16:0b:08:cd:5b:
c2:ac:69:d7:c9:aa:c8:b7:99:71:64:b0:40:07:e2:
7a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AD:CE:49:57:A9:0C:27:86:4E:90:E6:7B:11:C6:B8:C7:A0:EB:23
X509v3 Authority Key Identifier:
keyid:40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:28:e1:f2:0d:db:10:db:5d:9f:a7:45:d5:80:39:18:7c:7d:
3a:e3:0e:e9:23:d6:49:da:f7:a6:ba:80:dc:c0:2b:49:52:6d:
6f:fa:b2:fd:fe:fb:d5:b3:e4:4e:74:45:1f:57:73:cf:28:1d:
69:54:19:c0:7c:18:d4:fc:20:82:c2:22:a0:d8:a7:77:5e:37:
47:60:d2:78:f9:c0:15:dd:98:2f:07:2c:c3:9a:af:9e:f4:fb:
e5:cf:22:2e:98:e9:4c:d9:de:fe:1f:86:cd:0e:ad:f1:bb:8b:
53:80:2f:83:0a:2c:3c:87:c6:11:c8:e7:f9:3d:4a:fb:20:2f:
2d:1a:d1:76:23:aa:a0:ec:56:eb:d8:66:f1:43:58:4a:d9:06:
a7:65:ce:c3:58:d5:1a:f7:1b:dc:f3:f6:c9:73:80:13:f6:96:
6d:1a:39:1c:80:c2:13:f4:b6:ce:f4:b7:21:52:16:f7:2d:98:
8e:4c:d3:a5:4d:8b:0f:7b:df:b0:8c:1e:b2:63:dd:db:10:be:
c6:33:57:9e:c3:a9:fc:89:1f:e9:85:a9:0d:22:c0:be:47:2d:
74:57:21:d1:1d:90:52:cf:f9:62:cc:87:90:df:6e:ab:b8:47:
50:d3:d9:e2:52:15:61:77:af:d0:9b:d5:16:12:08:ef:74:be:
9a:d3:c0:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+H7SqTf1liXiJ8kxH0J3d6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNzRhMWMwMzgzYWQ1ZWIwZjA1ODhlNGMzMzk0YmEzNDAx
MGE2MjEwHhcNMjQwNTE3MTkwMDE4WhcNMjQwNTE4MTkwMDE4WjAzMTEwLwYDVQQD
EyhkMmFkY2U0OTU3YTkwYzI3ODY0ZTkwZTY3YjExYzZiOGM3YTBlYjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12hywwy06xWtl3GubgnHhKZvf+iV
YjPHf8YfRJFjIulv6X8tr/TF6JHOXGmPHaTB2VTwR7RbXd1F3kn/Zb+mwhqdPiik
x0JPfe2Lskl7IF99bzCm7P71Ga2WT2X+qRJziNmBAMtBMoYIbA5bWo377jTJcr6K
7mW7YxWlNRukMMDd1wyQT4/oTXfr15i8nfztqo8wa2YUX+p49FQ5hU065dDuhu4I
38hRu1vSQSMM4vOFh1oL+GCKda7lpTdg03qgDYPy2IjPHe/4QQErVAvt2F2+ZZk7
QPR4aq0glPEL8vXnKLnRbpdaXt+mFgsIzVvCrGnXyarIt5lxZLBAB+J65QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNKtzklXqQwnhk6Q5nsRxrjHoOsjMB8GA1UdIwQY
MBaAFEB0ocA4OtXrDwWI5MM5S6NAEKYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUhTaHdEZzYxZXNQQllqa3d6bExvMEFRcGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8zMDRhYWEtNGNlNS00MDY1LWIwNzMt
MjZjMzM2NTE1M2FmLzEvUUhTaHdEZzYxZXNQQllqa3d6bExvMEFRcGlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8zMDRhYWEtNGNlNS00MDY1LWIwNzMtMjZjMzM2NTE1M2Fm
LzEvUUhTaHdEZzYxZXNQQllqa3d6bExvMEFRcGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACSjh8g3b
ENtdn6dF1YA5GHx9OuMO6SPWSdr3prqA3MArSVJtb/qy/f771bPkTnRFH1dzzygd
aVQZwHwY1PwggsIioNind143R2DSePnAFd2YLwcsw5qvnvT75c8iLpjpTNne/h+G
zQ6t8buLU4AvgwosPIfGEcjn+T1K+yAvLRrRdiOqoOxW69hm8UNYStkGp2XOw1jV
Gvcb3PP2yXOAE/aWbRo5HIDCE/S2zvS3IVIW9y2YjkzTpU2LD3vfsIwesmPd2xC+
xjNXnsOp/Ikf6YWpDSLAvkctdFch0R2QUs/5YsyHkN9uq7hHUNPZ4lIVYXev0JvV
FhII73S+mtPA9w==
-----END CERTIFICATE-----
Generated at Fri May 17 20:10:55 2024 by rpki-client on console-ams.rpki-client.org