Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/hfyyKdh4rherMdmISIku6ivvluE.mft
File: hfyyKdh4rherMdmISIku6ivvluE.mft (raw, json)
Hash identifier: Viw7Zo5XMiCNmExJPme3RhaNkf9cyuJKuQHCiKLho0U=
Subject key identifier: B4:0C:53:72:BA:6B:B8:38:9C:CC:5B:1A:0D:8D:3F:40:88:E0:52:ED
Authority key identifier: 85:FC:B2:29:D8:78:AE:17:AB:31:D9:88:48:89:2E:EA:2B:EF:96:E1
Certificate issuer: /CN=85fcb229d878ae17ab31d98848892eea2bef96e1
Certificate serial: 01901E58FA8D38086B3E50CF53ADF7CBEBAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfyyKdh4rherMdmISIku6ivvluE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/hfyyKdh4rherMdmISIku6ivvluE.mft
Manifest number: 11C5
Signing time: Sun 16 Jun 2024 00:01:06 +0000
Manifest this update: Sun 16 Jun 2024 00:01:06 +0000
Manifest next update: Mon 17 Jun 2024 00:01:06 +0000
Files and hashes: 1: BAS0U9mPjEuGyMwPtaYguX9Lx8M.roa (hash: OvtM+f1nrNFYqueyPV/1JlVtnnu737QmSa3TE+o+Co0=)
2: hfyyKdh4rherMdmISIku6ivvluE.crl (hash: DAqvA6OP3Bs08DBVhNVdbajm3CGRV787+iJ97CFNN0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/hfyyKdh4rherMdmISIku6ivvluE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/hfyyKdh4rherMdmISIku6ivvluE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfyyKdh4rherMdmISIku6ivvluE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 19:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1e:58:fa:8d:38:08:6b:3e:50:cf:53:ad:f7:cb:eb:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fcb229d878ae17ab31d98848892eea2bef96e1
Validity
Not Before: Jun 16 00:01:06 2024 GMT
Not After : Jun 17 00:01:06 2024 GMT
Subject: CN=b40c5372ba6bb8389ccc5b1a0d8d3f4088e052ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b5:f0:b4:0d:61:27:d6:e7:58:88:23:2c:5c:
55:40:d1:77:f6:4c:75:38:24:83:13:0a:2e:34:86:
8a:0a:f7:de:54:f0:b6:2a:3e:f6:ac:d7:5f:77:52:
cc:48:14:a0:64:2b:72:bc:f4:95:0b:7e:05:b7:fc:
ac:9b:7c:20:f9:23:75:07:36:61:38:a0:fe:60:a2:
e0:3e:f7:67:45:cc:28:4d:a7:d1:ca:ad:ef:ee:c8:
2d:5b:13:0a:25:b0:f7:4d:16:11:4a:c9:33:d3:04:
57:54:ef:59:82:d6:0a:71:86:53:8c:77:ff:33:eb:
bc:75:8b:8e:6b:a3:fc:27:bf:0e:c8:b8:ba:ca:3d:
46:3e:0d:10:91:33:c3:eb:02:d2:5e:07:d8:9d:72:
89:2c:a0:45:81:37:90:1f:82:c3:0b:11:59:a8:8d:
00:77:75:e1:04:50:c0:f3:8a:08:e0:92:14:1c:2b:
0e:40:90:38:9e:ff:ac:28:de:75:6b:31:b0:a8:24:
e5:ed:f9:af:78:39:a6:c8:ae:be:be:a7:b4:9a:e2:
8e:a6:34:65:a1:f3:b8:1c:dc:b8:46:9b:ab:39:8c:
2a:5f:80:63:66:5a:18:e7:80:df:35:f1:96:0c:46:
b7:28:96:73:26:68:24:49:2a:76:8a:b9:64:bc:a2:
75:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0C:53:72:BA:6B:B8:38:9C:CC:5B:1A:0D:8D:3F:40:88:E0:52:ED
X509v3 Authority Key Identifier:
keyid:85:FC:B2:29:D8:78:AE:17:AB:31:D9:88:48:89:2E:EA:2B:EF:96:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfyyKdh4rherMdmISIku6ivvluE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/hfyyKdh4rherMdmISIku6ivvluE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1113d5-7419-4748-b052-4b1de0df21f0/1/hfyyKdh4rherMdmISIku6ivvluE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:50:5b:86:f5:23:f2:07:95:a4:9e:f1:22:6b:cd:c0:3e:75:
6f:16:fd:79:c5:ce:d5:cc:ce:40:02:6f:6e:08:b3:1a:f4:c2:
42:bb:2e:b3:69:f4:79:1a:25:38:39:99:e0:38:4c:47:6e:cf:
ca:17:5a:bf:ed:d2:87:c2:61:1c:35:d0:0e:15:ff:a1:13:28:
17:84:5a:dc:b4:11:68:58:34:26:64:2d:e7:68:46:aa:db:50:
88:66:e0:a0:84:df:b2:ab:ec:d5:80:75:2d:73:b8:79:42:ba:
97:35:49:54:12:20:e9:42:fa:70:8e:0c:b0:a1:02:09:9d:5e:
f4:b8:a1:8c:7f:6b:b3:84:07:ae:61:06:ed:b8:de:f2:5b:79:
87:24:29:8b:36:56:04:2f:a9:45:ee:86:48:a8:a3:26:de:61:
c0:93:e3:08:fa:f3:78:bd:c9:1b:8e:eb:0b:37:ac:61:58:fd:
bf:42:a5:38:bb:85:63:f0:d2:44:0f:d2:1b:4e:58:c7:79:76:
1c:72:fc:91:86:b8:e3:9a:9d:1a:97:af:90:17:54:a4:ee:ca:
d5:c5:13:f9:bf:a1:1f:7d:1e:0e:14:8d:ed:4b:b9:32:65:f6:
89:4b:b7:29:e8:cf:d1:b3:e6:52:08:29:db:47:a6:cb:87:29:
17:ba:d4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 01:05:15 2024 by rpki-client on console-fra.rpki-client.org