Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: F6CalT+YBFy6dYac3Hh6AT5h90APgD6gwPmve9SIKfU=
Subject key identifier: E5:1B:84:8B:88:3D:74:94:4B:59:1B:A6:55:DB:9D:E3:27:A4:DB:98
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 018F3A782BFEE877C8259589472BAE7DFE6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 0C19
Signing time: Thu 02 May 2024 18:01:45 +0000
Manifest this update: Thu 02 May 2024 18:01:45 +0000
Manifest next update: Fri 03 May 2024 18:01:45 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: 39lPst7dIdaI4qaxxQlTXMNVMbER1uvk021znA4Pmu0=)
2: vYVmgH1olzLGCH5JO9sR6NgFttM.roa (hash: HjDxte69LmCz1k3uC26l/idpBCMdgCR49hjeHVeDRwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3a:78:2b:fe:e8:77:c8:25:95:89:47:2b:ae:7d:fe:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: May 2 18:01:45 2024 GMT
Not After : May 3 18:01:45 2024 GMT
Subject: CN=e51b848b883d74944b591ba655db9de327a4db98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d7:6c:af:57:1c:42:c0:b7:e8:fe:bc:1c:2b:
3c:9c:89:2b:fd:b7:b6:55:f2:13:23:c9:56:c0:ca:
7c:db:0a:5b:b0:65:28:7a:5f:ac:90:eb:fe:3c:a2:
f7:af:08:e8:20:db:4a:c5:9e:56:78:17:dd:22:2f:
6c:c9:62:e5:5e:dc:4d:ec:6b:da:72:59:6b:d2:92:
42:3e:20:a7:ee:64:89:7d:a2:de:b4:23:56:58:65:
07:f0:6a:f6:54:12:0c:a1:aa:0c:81:fd:b9:d6:44:
60:4f:52:44:ee:1a:61:d7:bf:39:83:d8:28:f8:c6:
46:76:9d:bd:3f:bb:a3:55:80:96:86:46:4b:c7:80:
dd:33:d1:d4:9b:07:99:35:7a:02:6f:80:fc:6a:33:
24:ae:7f:3b:66:cd:4f:85:19:6b:72:4b:4c:6b:74:
a8:a7:f2:ef:3d:f2:5c:e6:4a:53:1b:d6:a3:b1:28:
b0:4e:84:f1:08:1d:66:b1:ef:a9:02:51:4c:9a:6a:
38:2e:86:aa:96:64:64:07:b7:f2:05:15:a0:0e:8e:
fc:98:c0:3a:27:af:b4:af:6f:0e:52:3a:46:b3:07:
50:ee:78:a1:df:c4:54:60:1f:b3:ea:33:8d:43:b3:
b1:be:c4:58:6e:12:1b:25:d3:43:c4:07:04:4d:da:
d7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1B:84:8B:88:3D:74:94:4B:59:1B:A6:55:DB:9D:E3:27:A4:DB:98
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ae:7d:d2:c3:d7:09:b8:d6:07:ec:cb:1f:2e:e5:a2:6a:0a:
69:9b:14:f5:6d:38:1c:60:8e:ec:1b:24:f7:53:2b:7f:8e:75:
19:a3:41:0b:5a:23:9c:08:80:26:06:25:1a:29:a9:76:d1:19:
72:9b:71:d1:72:e6:51:28:67:88:b3:c6:43:aa:ad:98:71:52:
ea:82:fb:4d:45:43:0b:9d:9e:24:aa:ed:91:d6:af:41:58:91:
e4:ef:cb:b9:17:05:7d:56:3f:1c:8a:85:fb:16:eb:39:bd:e3:
53:1e:d6:b9:9f:11:20:c3:0d:5b:4d:df:ff:58:bf:cf:4d:7c:
1c:84:0d:67:a4:95:88:e9:87:d6:00:57:e5:46:3a:5d:0d:ec:
8e:ea:e8:ce:3e:6d:77:0f:05:cc:98:9c:fc:dc:e2:50:90:9e:
20:ad:01:54:a5:66:25:5a:7a:4c:1d:95:d0:2f:90:d7:25:e4:
75:4a:78:c6:5a:de:f5:b8:31:54:76:93:61:f6:9a:31:d1:69:
30:9d:25:63:ac:32:8a:7f:af:65:d5:65:e3:4b:24:a9:c3:92:
97:73:b2:d9:f9:f8:04:b6:39:7d:8b:fc:09:fc:7b:5a:63:62:
fe:b1:c8:7f:7b:ae:5b:15:0d:3b:a1:51:f5:08:13:82:aa:c4:
02:a3:b0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:51:09 2024 by rpki-client on console-ams.rpki-client.org