Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
File: QLt2qpbfjrfWd3s1clLhEVUjh4U.mft (raw, json)
Hash identifier: Yxcr6J6XsSau6VzWIIxPx4agtmp14gcdM+8fC2+ahEY=
Subject key identifier: C3:FC:B0:EC:E8:92:4F:54:AC:1B:66:DB:96:53:14:E8:49:30:3B:19
Authority key identifier: 40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85
Certificate issuer: /CN=40bb76aa96df8eb7d6777b357252e11155238785
Certificate serial: 018F93840D0E3C3B233BDEB62E0BBD8EE98C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
Manifest number: 0ED6
Signing time: Mon 20 May 2024 01:00:55 +0000
Manifest this update: Mon 20 May 2024 01:00:55 +0000
Manifest next update: Tue 21 May 2024 01:00:55 +0000
Files and hashes: 1: DZzZzVD9TPzyFwpQpkMr-J22iUs.roa (hash: HXmxjT921Aub51FfBQya1oLDS59KWZTpbbMCFFRxtps=)
2: QLt2qpbfjrfWd3s1clLhEVUjh4U.crl (hash: KDkOwJ6lsk9oKY0/GQzttzc7s6oS6fVk5UE6R2kYqpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 01:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:93:84:0d:0e:3c:3b:23:3b:de:b6:2e:0b:bd:8e:e9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bb76aa96df8eb7d6777b357252e11155238785
Validity
Not Before: May 20 01:00:55 2024 GMT
Not After : May 21 01:00:55 2024 GMT
Subject: CN=c3fcb0ece8924f54ac1b66db965314e849303b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cd:a0:25:17:b3:ba:84:fc:5b:d6:dd:9d:e2:
d9:f7:58:8b:d5:12:32:2c:8a:0d:bd:da:ea:25:0a:
da:46:74:16:77:f9:bb:5a:46:11:e0:9b:49:37:21:
f7:a9:39:70:5c:0d:d9:ff:29:c7:58:f3:6c:b7:da:
19:77:88:cd:4e:44:89:33:a2:62:81:47:77:fb:64:
bc:e6:a4:30:77:89:c7:b2:39:fa:e5:aa:2e:dc:57:
5d:fc:c0:9a:f6:d9:13:87:ad:8a:6b:37:e3:46:59:
35:aa:13:5d:91:c5:c0:fd:93:1b:60:f5:f0:51:a2:
96:90:84:3a:1e:aa:f8:0c:f1:fe:96:84:8a:0e:c9:
1a:65:3c:b4:3c:3c:1c:59:34:a6:32:e8:44:41:f2:
35:0a:a6:48:5b:2d:96:f0:e2:34:d7:1f:89:69:4f:
11:15:fb:30:93:d8:ba:aa:4c:22:de:ab:29:c0:5e:
f4:72:4d:16:85:d9:aa:50:81:67:96:f3:f2:32:c5:
39:de:ab:d1:29:1b:ee:ff:c3:3c:e0:40:1d:bc:66:
46:04:92:d5:35:e6:f3:d1:8a:00:0a:b6:09:89:48:
31:dc:04:b1:8f:d7:5f:aa:c1:23:00:5c:0a:29:61:
e4:e5:9a:24:be:89:8e:dd:2a:2e:31:91:49:26:22:
19:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:FC:B0:EC:E8:92:4F:54:AC:1B:66:DB:96:53:14:E8:49:30:3B:19
X509v3 Authority Key Identifier:
keyid:40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:68:47:d4:11:89:97:3c:5a:5b:84:fd:7e:2c:c0:02:7c:c5:
47:b6:6c:9d:d9:ea:cf:18:b8:0d:b4:61:46:72:de:f1:13:53:
24:e9:9d:fb:c7:3e:6f:ee:fd:c4:64:17:66:2b:c1:ec:fc:fe:
91:e1:f3:48:05:b2:81:15:1c:23:ef:08:4c:c5:c9:cb:81:ab:
d2:55:a8:0f:d5:fb:8d:97:c1:4e:b6:87:3f:03:76:33:30:a3:
bb:a4:17:0d:dc:b8:83:7b:ed:20:ca:d4:0e:61:1a:f2:28:a1:
21:cf:c9:45:29:4e:90:3c:be:45:8a:c3:10:a6:eb:c5:44:70:
1e:22:90:49:75:6d:88:c4:79:9f:cd:8f:ef:62:51:80:e8:58:
e6:9a:90:61:80:0c:3d:17:00:df:70:79:d6:39:93:8d:a0:80:
fd:38:fd:6b:a0:44:5f:03:63:16:94:fe:05:ad:97:30:f9:7c:
36:b2:c1:c2:7c:64:2a:03:65:60:94:40:ad:66:6e:71:bb:05:
27:aa:4a:69:4e:77:1a:a2:f0:bb:b8:86:aa:61:77:a3:4e:52:
01:82:e2:cb:87:72:74:5e:07:df:c9:9e:50:60:cc:ff:ef:d5:
e8:02:56:28:8a:25:20:bb:f4:ac:3e:57:7e:55:1d:d1:44:79:
b4:e3:52:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 09:38:43 2024 by rpki-client on console-fra.rpki-client.org