Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
File: NQtAztNuMfkF4abo4DxiHp-_yyk.mft (raw, json)
Hash identifier: f2GeHXoEFarsMKTXF/JLBi/3b8+QhfPzwuuyhUJcG88=
Subject key identifier: 52:43:F9:01:66:B3:06:36:BB:A5:31:56:5B:06:88:7B:50:EE:6F:9C
Authority key identifier: 35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
Certificate issuer: /CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Certificate serial: 018F8748CCBDB07B61C50FF7A7A2C1624FB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
Manifest number: 0EB4
Signing time: Fri 17 May 2024 16:00:46 +0000
Manifest this update: Fri 17 May 2024 16:00:46 +0000
Manifest next update: Sat 18 May 2024 16:00:46 +0000
Files and hashes: 1: NQtAztNuMfkF4abo4DxiHp-_yyk.crl (hash: tFRcSaO9u2qmt67vnXUCcSjQGtv3F0g4wtlP6S9sMTI=)
2: g-2KrX-lxvJNd_9K3cNz5gyiU2A.roa (hash: BXb0souN4TB4nNfD0BWovJyjg47elZmvKdXSMN49Xpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:cc:bd:b0:7b:61:c5:0f:f7:a7:a2:c1:62:4f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29
Validity
Not Before: May 17 16:00:46 2024 GMT
Not After : May 18 16:00:46 2024 GMT
Subject: CN=5243f90166b30636bba531565b06887b50ee6f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c8:07:31:42:74:f1:6a:1c:52:5f:e6:ea:f0:
18:45:cb:98:67:bc:86:af:de:98:1e:b0:df:7f:2e:
97:61:00:ee:c1:9b:0e:1c:f0:cf:0e:4f:c9:c2:02:
a7:a3:f4:a4:48:12:59:3b:1e:9d:d6:47:06:09:53:
2e:00:0a:2c:fd:25:56:eb:4d:ad:93:81:14:f1:90:
0f:75:ec:8c:99:38:e8:be:ba:37:b7:58:42:79:f4:
54:68:e9:bc:e7:b2:60:d6:bf:30:63:e3:db:8e:a3:
94:ac:f8:1f:6d:50:ba:49:ce:96:cc:38:bc:92:0c:
b5:50:08:69:68:f7:0b:a0:f6:e3:d8:56:27:cc:7e:
93:13:9b:1a:b1:fe:f9:26:b5:7a:a5:a2:5d:dc:c6:
9b:f0:fa:bd:85:76:16:a9:31:2e:87:d9:ac:5a:03:
35:95:7e:11:03:5a:90:3b:ee:ec:40:45:02:52:8e:
0f:63:2e:52:66:83:52:17:e4:95:aa:82:ff:0d:32:
83:a0:4d:1b:01:90:7d:aa:15:ef:a1:95:83:25:7f:
e0:3c:db:8f:13:a2:c3:a8:e4:79:d7:31:6c:3c:2b:
e5:70:fa:8d:07:0d:78:e4:ea:84:32:45:a7:17:85:
a2:f9:14:3b:c8:8b:07:8e:25:2a:f6:21:ca:21:85:
7f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:43:F9:01:66:B3:06:36:BB:A5:31:56:5B:06:88:7B:50:EE:6F:9C
X509v3 Authority Key Identifier:
keyid:35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:ca:2f:2f:31:51:98:23:a4:26:3e:4e:c0:a5:cf:61:25:db:
80:9b:83:75:7c:29:61:62:5c:ae:80:f7:ec:42:c5:ae:df:e8:
5e:f2:e2:a1:3c:6f:ae:d2:c6:d3:44:d5:b6:0c:a6:3b:ed:26:
7f:37:cd:97:51:9d:8b:78:31:cd:cb:21:95:65:fa:2d:fd:a1:
34:75:dc:c4:5a:33:19:81:1f:6b:12:01:c4:9f:bf:48:25:0e:
6f:49:df:d1:e2:91:26:da:d5:cc:86:02:61:da:ef:0d:da:79:
4b:3c:58:32:de:ec:a4:ca:99:f4:21:88:3a:3c:be:38:ad:66:
93:fe:9e:61:f8:f5:4a:1d:3d:05:83:5f:67:48:c0:e7:d0:54:
26:6a:92:3e:ff:84:59:c8:00:49:56:a5:77:f2:a5:ba:50:13:
e8:aa:44:2d:fc:3d:b2:ed:73:6f:fa:9b:5c:41:28:30:42:c5:
a7:1d:bd:f3:6b:ed:ea:5b:b6:8a:3f:06:33:b0:1b:25:fd:bd:
c1:53:eb:61:0f:67:d2:9c:a2:63:22:10:7e:85:ae:7f:46:db:
f5:54:65:06:e5:45:a3:31:93:4a:a1:81:49:9b:ee:c2:ee:34:
04:4a:1a:ab:6c:55:4e:f5:3d:e8:53:a8:a3:c9:f2:25:23:0b:
51:9d:ea:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:22:53 2024 by rpki-client on console-fra.rpki-client.org