Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
File: HIivL0NlSz9FLVx07QdHElcNH94.mft (raw, json)
Hash identifier: hYBH7ymA6TYJ/Nf/SuyAolK9+rhCTX+d702KxGx59Oc=
Subject key identifier: BE:60:07:FC:6F:4A:5C:EB:91:21:8D:FF:89:FA:A8:59:3F:11:2E:B3
Authority key identifier: 1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
Certificate issuer: /CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Certificate serial: 01901BFD657FADBBC2DF0C8C0B8CE993EBD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
Manifest number: 11C6
Signing time: Sat 15 Jun 2024 13:01:49 +0000
Manifest this update: Sat 15 Jun 2024 13:01:49 +0000
Manifest next update: Sun 16 Jun 2024 13:01:49 +0000
Files and hashes: 1: HIivL0NlSz9FLVx07QdHElcNH94.crl (hash: ZCp5Y1XWm/VSFRO++8M6dTh8RWyO9B7xMeNb80YK/aY=)
2: nF2TmzZqC6Ka7ITKfC35HhUktmw.roa (hash: Kg8vy6gcf1fjtLgnZVAOJAkzNku3Tlpq629Fx/r2idk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 13:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1b:fd:65:7f:ad:bb:c2:df:0c:8c:0b:8c:e9:93:eb:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Validity
Not Before: Jun 15 13:01:49 2024 GMT
Not After : Jun 16 13:01:49 2024 GMT
Subject: CN=be6007fc6f4a5ceb91218dff89faa8593f112eb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ec:83:7a:32:a2:5b:02:2c:eb:56:ec:15:93:
42:ef:4d:3b:f7:a9:60:79:41:ae:f5:b9:2c:46:92:
f2:64:8a:8f:c0:28:2d:a0:48:51:bd:43:09:7a:84:
23:e6:f1:f6:e4:d6:6f:03:d7:27:a0:f5:a5:15:f7:
59:19:b6:1e:18:24:4e:a9:73:c4:fd:05:ff:ef:2c:
60:b2:06:f3:fc:16:e0:ed:aa:27:d9:a7:eb:72:ba:
88:e0:78:da:ac:b3:93:b6:4d:6e:c6:f1:d6:55:99:
b3:3d:df:b2:74:eb:73:08:a2:e3:e4:96:e7:73:d7:
c9:46:77:54:15:a5:3a:5e:e5:22:a3:11:0d:8c:1f:
6d:a0:77:37:93:0b:3d:a5:b1:6e:37:6b:38:e8:73:
83:1b:7c:1f:0d:b7:40:88:49:22:06:0d:e1:c4:8c:
02:f7:21:f9:f2:3b:74:4e:91:0d:b1:0c:df:4e:04:
58:78:fa:39:99:0d:48:d7:c1:10:4a:49:ed:38:21:
98:d4:6c:0b:47:d4:89:2b:0a:3e:65:7f:04:65:67:
29:b0:80:72:f0:85:41:a6:51:5c:d6:98:5e:41:ea:
a1:d2:6d:e6:aa:cb:91:4a:21:05:40:8d:42:68:e2:
75:55:22:0e:ad:3a:c1:b4:77:45:80:ea:0b:50:71:
07:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:60:07:FC:6F:4A:5C:EB:91:21:8D:FF:89:FA:A8:59:3F:11:2E:B3
X509v3 Authority Key Identifier:
keyid:1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:f0:72:22:82:1b:d3:8f:c3:8f:37:9a:76:4c:5e:84:ab:06:
49:b4:34:c5:4c:20:b0:40:2e:09:a9:e0:e4:1a:04:eb:f9:b4:
5f:58:c9:1a:ba:68:91:e3:59:cb:e5:62:d4:fb:f6:a8:a0:b8:
b3:79:6f:fc:1a:6e:d5:a5:9f:fe:a3:f4:cf:b3:6b:d5:03:d2:
5b:4c:16:49:55:0a:68:c8:fa:db:00:d0:4d:65:66:47:bb:8b:
89:4c:cc:d0:7d:2f:b9:cb:c6:64:07:55:3a:07:96:b8:89:67:
eb:d1:53:fe:fb:03:15:d4:27:b5:24:d3:7f:ff:2b:56:52:07:
52:e0:f8:21:49:45:00:0f:0b:3b:d0:b6:f4:28:37:f2:48:08:
21:30:d6:36:bf:09:a5:94:6d:46:9d:76:2c:8a:98:e0:cd:ca:
ce:56:b9:e4:0c:87:56:f2:7b:9f:bf:cf:ce:ae:53:0f:37:1f:
1f:51:be:d2:4c:b4:92:e7:58:e6:1d:56:bd:05:50:20:ea:dd:
77:8f:61:71:2d:1a:45:b6:a7:8b:e3:b3:3e:1e:9b:8f:00:26:
05:87:57:c7:06:bc:14:48:2d:db:d6:37:d4:68:7e:a7:6d:f9:
d4:ce:d5:5d:eb:50:8c:06:fe:13:4e:81:66:5f:d4:4d:8a:f6:
57:72:f3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 20:05:58 2024 by rpki-client on console-fra.rpki-client.org