Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft
File: QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft (raw, json)
Hash identifier: us6s1JiCAPKkpVLviikgp7WRFmsu6NhC86Ah09wGhvs=
Subject key identifier: 36:EE:C5:AF:68:7D:36:B6:01:C4:4D:80:03:AB:3D:E6:A2:5B:AB:0C
Authority key identifier: 40:EE:97:65:86:4B:D1:1D:4A:34:94:26:E3:72:E1:1A:94:34:8D:E2
Certificate issuer: /CN=40ee9765864bd11d4a349426e372e11a94348de2
Certificate serial: 018F92DF368C5C7F1D298F52B17FD5672A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft
Manifest number: 028D
Signing time: Sun 19 May 2024 22:00:52 +0000
Manifest this update: Sun 19 May 2024 22:00:52 +0000
Manifest next update: Mon 20 May 2024 22:00:52 +0000
Files and hashes: 1: QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl (hash: PTlfcovHmlUc1aUi3+ELmIY1ui4J5LhPuRQHBmAbx8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:92:df:36:8c:5c:7f:1d:29:8f:52:b1:7f:d5:67:2a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ee9765864bd11d4a349426e372e11a94348de2
Validity
Not Before: May 19 22:00:52 2024 GMT
Not After : May 20 22:00:52 2024 GMT
Subject: CN=36eec5af687d36b601c44d8003ab3de6a25bab0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:10:02:d5:fc:7b:07:4d:8b:5a:d7:ae:77:94:
d6:42:c2:ef:4e:51:87:da:1c:3c:81:11:90:01:2d:
7e:ba:f6:30:85:51:3e:e6:03:ed:14:cf:26:4d:f9:
83:e3:78:b9:b7:0a:64:57:dd:49:83:83:3b:df:e6:
49:36:11:6d:68:7c:0e:7d:4c:5b:11:b9:c4:8d:2c:
5a:c5:e8:d7:db:99:c8:24:6d:a6:3d:5f:ae:c8:15:
4a:66:e0:40:50:b5:96:ef:4f:43:cb:64:4a:e1:8b:
39:1c:3e:48:0d:cf:f2:ed:7a:f0:9a:49:86:c7:e5:
39:7a:ac:41:e1:5b:f0:b7:2a:ad:2d:6f:bd:4c:1c:
a5:ca:3e:0f:36:6e:82:8c:6c:e9:4a:e6:95:6d:95:
dc:ad:1c:aa:eb:e8:37:6d:5e:55:37:08:a7:14:f1:
39:cb:db:6e:b6:7b:f2:ad:dc:6d:3e:8d:bb:7d:5e:
88:72:c1:2c:82:11:3f:95:fc:70:e0:d0:fa:1e:d7:
e4:a9:41:a9:98:12:6d:6b:ea:36:29:d1:e3:b4:21:
01:96:fe:1e:ae:c6:dd:d7:00:82:ee:bc:d1:82:c9:
2c:f5:bb:5a:3c:ea:b0:54:dd:89:a4:44:b4:c1:98:
9a:49:b7:27:01:9a:31:27:5c:3c:0c:23:10:fd:d0:
fa:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EE:C5:AF:68:7D:36:B6:01:C4:4D:80:03:AB:3D:E6:A2:5B:AB:0C
X509v3 Authority Key Identifier:
keyid:40:EE:97:65:86:4B:D1:1D:4A:34:94:26:E3:72:E1:1A:94:34:8D:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:b4:94:20:bd:92:e2:05:d7:1d:77:0f:66:79:1a:e6:16:68:
75:01:0a:e0:08:30:fa:b5:37:93:8a:10:da:d5:68:e6:3d:38:
c1:f9:51:73:8a:1f:b3:8d:9c:0d:a8:15:4c:57:7c:19:8f:42:
65:c6:28:0c:23:15:f8:89:f3:e2:11:99:3a:ed:4c:1f:07:d6:
13:42:b3:56:58:7d:3d:6c:1f:6c:95:18:e8:3b:27:ce:2d:1e:
ad:74:ed:8f:40:f2:8b:c0:15:7f:89:d9:23:7a:75:50:6f:1b:
4a:e7:8b:b6:aa:5e:ca:ca:4a:e5:e8:e3:4b:f2:43:06:6f:ce:
6c:59:8f:f3:c4:f1:e8:00:40:d8:ba:a2:68:d7:6a:ff:49:4d:
d1:40:4e:2e:a1:9a:a2:14:4d:1b:d1:44:d3:b1:77:a8:d6:00:
f2:bc:7e:c5:4a:c6:85:f6:49:cf:d3:68:5e:2c:e3:1c:79:cb:
65:ee:8a:4a:05:fe:fe:97:79:cd:11:56:91:2c:01:d9:ec:31:
c9:cd:a3:b9:df:fc:f9:48:e5:86:d0:3d:2e:70:05:8a:6d:30:
d8:94:e4:f2:65:16:78:48:74:d1:b4:62:97:83:16:4a:4f:09:
9f:76:8c:0e:f5:08:90:5f:07:62:18:e7:fb:1e:42:97:4b:27:
32:86:9a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 23:13:12 2024 by rpki-client on console-ams.rpki-client.org