Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json)
Hash identifier: Q+XLdBzbDlmdeZOmv6ASyeyLDg32SI5yUjNtD369/S4=
Subject key identifier: DF:ED:5B:7E:AF:61:1B:2A:CD:CA:1B:C4:4D:FA:46:DA:B7:FE:89:E5
Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Certificate serial: 018F88923016A228FCD1F651452F7E5350DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
Manifest number: 06D7
Signing time: Fri 17 May 2024 22:00:32 +0000
Manifest this update: Fri 17 May 2024 22:00:32 +0000
Manifest next update: Sat 18 May 2024 22:00:32 +0000
Files and hashes: 1: H412dFhpULtmjw9nq96ZzXLHVyc.roa (hash: uDe4a41iWG66UKXhgc+CadzXPkPzpEahBptzcEzltrU=)
2: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: Y/ztODampXz6Mf3M65plaqI30vLfr3MYuq155YiZ1n0=)
3: WIIsSIk0oAqZ-zpzLhEILB0lkyY.roa (hash: 0Br8xx+/b87POLLjDVH4qSOOVCF3Jr2VYr/ulAFgp14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:92:30:16:a2:28:fc:d1:f6:51:45:2f:7e:53:50:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Validity
Not Before: May 17 22:00:32 2024 GMT
Not After : May 18 22:00:32 2024 GMT
Subject: CN=dfed5b7eaf611b2acdca1bc44dfa46dab7fe89e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c1:fc:c9:95:f5:f9:ae:ee:79:51:d1:f2:3f:
04:50:3c:8e:61:61:4a:d9:33:d5:93:cc:1f:fd:0d:
4f:ea:0c:bb:7a:5e:29:35:78:a9:fb:20:6c:09:97:
b6:d4:7e:67:f6:11:63:b7:4d:98:0b:82:c7:15:bd:
ad:eb:65:a4:48:15:f2:0d:58:99:56:2b:dd:eb:73:
ea:f4:dc:86:ba:1b:8b:5f:14:4b:90:ae:ef:79:f5:
df:ab:92:f8:94:56:ff:72:eb:5f:c8:af:0a:9e:b3:
3c:7b:b4:02:a9:05:89:09:1e:b3:e0:68:52:2c:fc:
3d:fc:f4:f2:5a:a8:ae:67:b0:ab:cd:a9:31:a9:ae:
70:b1:c9:d4:4e:a1:d7:64:27:00:d5:a2:d9:87:cf:
c3:3c:87:f5:b2:01:e0:63:23:19:a1:e9:65:3d:61:
58:61:f7:d6:e2:40:ac:c6:2f:ea:bd:c9:20:ff:4b:
ea:9a:66:10:05:db:da:e8:f0:8e:3d:de:cb:06:f6:
d9:04:21:63:09:db:cb:18:d5:64:fa:02:06:9d:40:
60:e4:21:0d:f9:0f:34:8b:c8:b6:77:12:68:6f:0b:
a4:c1:79:bb:72:0f:ed:a5:ae:98:ba:95:46:f0:1d:
50:b7:cf:6a:2b:86:4c:2a:bd:c1:36:42:e4:f3:bc:
94:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:ED:5B:7E:AF:61:1B:2A:CD:CA:1B:C4:4D:FA:46:DA:B7:FE:89:E5
X509v3 Authority Key Identifier:
keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:94:58:a8:e3:7c:a8:4f:b3:8f:aa:cc:fe:e7:37:88:07:d7:
ff:b7:2b:49:9e:9f:10:2d:80:ba:3d:9b:0d:e9:e3:46:39:56:
e2:f4:ab:da:6c:54:02:46:53:8a:21:42:ad:e1:f5:6a:ee:b9:
b9:13:c3:fd:0f:0f:1d:d9:93:1d:d0:21:e8:60:4c:c8:d5:b4:
c5:5f:c6:56:7a:46:0b:1b:97:92:1e:b1:f8:93:81:3d:5c:b8:
1d:12:70:aa:19:cd:b7:cc:b5:b0:cc:41:03:83:68:64:7f:58:
4b:cd:8a:66:0b:79:b3:f2:82:c7:b2:8a:8e:b7:c7:62:83:4e:
50:37:ac:6a:80:f0:61:97:c9:fd:bc:67:94:ea:d7:51:8b:08:
71:6e:9f:f5:c7:8c:67:00:7b:d6:60:a5:b5:7a:2b:b1:29:bb:
3c:b4:ec:4d:51:cc:9a:fd:ce:a2:8f:4d:51:0f:cc:72:9d:1e:
a3:cc:57:6b:df:d1:73:c4:4d:31:07:96:87:ba:04:41:5d:d6:
f2:da:0f:1b:a8:72:12:d6:b9:f7:fe:85:50:84:51:d2:8e:72:
96:cd:d8:83:f8:89:6a:30:c9:be:9d:36:1a:0d:b1:65:88:9c:
41:e7:51:da:eb:85:f0:64:bd:4e:aa:aa:ed:b7:c9:78:26:55:
92:d8:44:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 22:56:17 2024 by rpki-client on console-ams.rpki-client.org