Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: ePLFqpq4/zhKM2MDerVRlr2KOjAjFnqyzuC7MQtjYxw=
Subject key identifier: 02:14:6F:80:35:A3:D2:88:42:BA:EF:7A:18:D0:25:70:29:06:AA:1B
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 018FB2A0F48DD6FE1BAF52A8241CAEDF81F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 097B
Signing time: Sun 26 May 2024 02:00:43 +0000
Manifest this update: Sun 26 May 2024 02:00:43 +0000
Manifest next update: Mon 27 May 2024 02:00:43 +0000
Files and hashes: 1: 0oGUixz3g_XM7jpsAIt0NtM1G9s.roa (hash: /1nuyGRI++hNEbF1C+wbrztC/DLgq+bFy1aERR2l7gQ=)
2: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: zgszW0oX49BivUUq3qWk+6M3J7L/BRLxDJUNo3QZMyo=)
3: cKzUBylJP8IKZ1hcSmgSgwUQMSk.roa (hash: uDz+ED6UuTmBQKH09BDSKMj/fY4MQQi1xQ8DkA/Czig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b2:a0:f4:8d:d6:fe:1b:af:52:a8:24:1c:ae:df:81:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: May 26 02:00:43 2024 GMT
Not After : May 27 02:00:43 2024 GMT
Subject: CN=02146f8035a3d28842baef7a18d025702906aa1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2b:5c:48:07:d4:1e:45:5e:89:90:c2:b8:79:
08:51:b4:fe:d4:9b:2d:41:f3:2f:e0:be:fa:99:9e:
95:51:22:1a:b5:8b:26:dc:9e:ce:07:50:59:dc:1b:
1b:34:b4:8d:9e:f1:3d:93:83:69:06:1b:05:02:1b:
66:e2:23:fb:b7:41:e3:96:c3:38:53:27:ab:87:57:
d1:aa:f3:a8:bc:50:37:e3:c0:51:60:6e:60:54:3d:
e1:31:1d:31:e0:0b:6c:c6:f8:32:42:c5:f1:f5:80:
e8:c2:39:24:54:cc:66:96:04:cd:99:83:88:cc:b2:
86:cb:f5:12:85:ae:b9:cd:7c:39:ad:ae:e8:0b:ee:
72:48:a0:f9:f5:f8:8a:d4:14:ef:61:fe:db:80:a5:
60:f2:ab:10:e2:8e:d8:15:7e:7a:e8:12:6a:fc:89:
8c:c6:91:13:55:37:b5:48:0a:da:2d:ef:a1:40:7d:
4d:79:9a:fb:7d:b8:75:97:c4:86:04:a4:91:da:43:
b8:6c:cb:68:f0:1d:77:bc:18:4a:0c:12:b7:a4:e1:
0e:a0:7a:a8:45:02:dc:80:44:52:6e:ed:a6:bb:2b:
57:9b:99:10:c5:9e:85:2e:a8:cb:0c:82:b9:85:fd:
62:08:aa:77:c1:1a:46:19:d7:49:58:7c:5f:ff:c7:
19:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:14:6F:80:35:A3:D2:88:42:BA:EF:7A:18:D0:25:70:29:06:AA:1B
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:18:bb:cc:f8:83:88:ef:fc:b1:0a:86:be:7c:2b:35:81:1e:
02:95:3e:a4:d1:43:f8:aa:4f:f1:44:ff:1a:6b:cb:fc:c8:34:
90:e0:1e:6f:38:3c:6e:1d:81:ec:79:1e:25:cc:66:69:64:35:
3a:ed:a6:85:52:46:60:64:11:8a:62:73:47:56:29:da:e0:25:
b2:c9:35:cb:a2:a2:ae:1f:06:f0:a7:de:02:33:29:74:6f:b3:
32:67:e8:32:1a:73:61:0c:97:9c:e2:76:1a:73:3e:16:9f:a9:
22:b8:f1:9e:fa:a3:ee:f8:80:b7:f6:4e:53:f7:83:b0:88:d1:
6c:8e:56:66:5e:c8:49:3b:fa:10:84:d4:ce:26:9b:c5:da:93:
8a:10:b2:f3:05:b2:ca:2c:4c:3d:90:af:fd:97:d4:3a:a3:af:
a2:96:34:68:cb:e3:01:9c:e3:65:e8:53:39:96:87:0c:1b:45:
a7:96:c5:b1:f1:a5:96:81:b6:cd:e6:b1:49:e5:16:8b:ac:da:
2f:31:45:b5:2c:d8:f6:b6:24:66:52:d4:8d:cf:bd:44:40:b1:
8c:35:ed:91:30:24:11:63:16:8c:24:6c:e4:59:a3:b8:13:f1:
b4:8b:83:b3:a0:30:c7:89:bc:09:b6:e3:06:5e:2f:59:b2:92:
5e:3f:77:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 04:26:29 2024 by rpki-client on console-fra.rpki-client.org