Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
File: HyLAhI0wWeWuVfaMBwecuaksJ54.mft (raw, json)
Hash identifier: pmfSRWg32GkUc06AqYeXv1gIO/C70JQGYdOGXGT2XFg=
Subject key identifier: 8D:EC:6D:C4:E1:EE:A0:CD:65:2D:D7:BB:A0:0B:8A:8C:53:55:E2:57
Authority key identifier: 1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
Certificate issuer: /CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Certificate serial: 018F48D84A003B859537A1E3F5B2D2FC81AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
Manifest number: 0E43
Signing time: Sun 05 May 2024 13:01:25 +0000
Manifest this update: Sun 05 May 2024 13:01:25 +0000
Manifest next update: Mon 06 May 2024 13:01:25 +0000
Files and hashes: 1: DQGLMYNpzsXO08R3OtD-v_tZtUQ.roa (hash: lBmlT0x+7mbfduBQVfYLQ8ixKn2fPF7tVMXULW9M0d0=)
2: HyLAhI0wWeWuVfaMBwecuaksJ54.crl (hash: e9drKirYN1X/kMrIVpMVR14rxwXk0zg8UK9ITA9Eqpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 13:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:48:d8:4a:00:3b:85:95:37:a1:e3:f5:b2:d2:fc:81:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Validity
Not Before: May 5 13:01:25 2024 GMT
Not After : May 6 13:01:25 2024 GMT
Subject: CN=8dec6dc4e1eea0cd652dd7bba00b8a8c5355e257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7e:33:8c:81:c0:e5:89:92:62:12:da:f1:e6:
32:30:71:16:e0:e1:6e:da:8c:6a:42:a9:4b:5a:32:
4f:6d:e5:85:a6:96:5c:09:e4:57:a8:b5:69:6a:86:
56:cc:e2:3b:b1:d5:ec:95:ac:2a:cf:86:ba:31:f8:
d6:37:1e:32:67:77:e5:06:62:08:d6:60:fc:1b:cc:
9e:ad:a9:79:c7:96:e4:ae:f3:25:5f:47:4d:20:74:
88:f4:a5:e8:79:d1:8b:6e:ef:47:22:d7:57:4c:3a:
64:71:86:f9:2e:9d:de:a0:dc:ac:ea:da:bf:53:c2:
65:43:24:27:a2:fb:ed:14:74:b0:9c:95:e0:69:52:
cb:31:83:f6:96:bb:2f:97:73:28:3a:a6:e7:c2:a4:
d0:35:79:de:0c:e2:d0:21:e3:0a:8f:bb:7b:f9:06:
71:d2:58:1c:16:27:5f:fc:aa:1c:7b:37:dc:de:43:
e9:47:46:1a:5b:f2:7b:d6:66:85:7b:ff:28:fa:6d:
03:71:50:ed:58:91:4a:ef:c0:40:64:7a:e0:ce:92:
de:f8:34:b5:13:16:9b:c9:82:bf:d1:f2:1c:4e:1c:
32:fa:88:29:12:ab:a2:4b:08:7b:48:14:21:b5:09:
9f:19:d2:35:8f:3c:89:ae:bf:cd:43:53:6a:57:7b:
4f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:EC:6D:C4:E1:EE:A0:CD:65:2D:D7:BB:A0:0B:8A:8C:53:55:E2:57
X509v3 Authority Key Identifier:
keyid:1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:dd:87:3a:d8:67:d5:47:21:80:c9:e9:ca:37:0c:3d:fb:36:
dc:b3:f3:47:9b:e3:18:fe:b5:8a:3a:09:3e:86:b1:0a:83:9c:
e5:cc:30:6b:ed:39:17:fc:d8:a3:f3:ba:85:1a:52:62:33:6a:
71:9e:bb:ed:17:a6:27:45:b3:a7:6b:43:4f:5c:de:a4:c6:64:
53:0e:44:eb:a1:15:f2:73:84:4d:c9:36:7a:fd:2e:cf:fc:43:
a5:01:fb:f6:18:c7:5a:85:a2:a8:29:c2:bd:3c:c3:4d:26:db:
30:3f:91:01:ec:7a:9b:ec:b5:91:69:59:1e:f5:fd:3e:38:ad:
ff:55:b8:ce:59:86:e0:dc:d6:51:a9:81:9c:e6:a3:f4:5b:2c:
e6:b2:d0:d6:90:f1:1a:25:bc:ae:83:45:29:ef:ca:5f:c2:7c:
66:70:2d:f3:1e:ed:63:5e:7b:57:2f:b9:72:fa:61:72:ec:2c:
30:7c:fa:52:36:d6:f0:b3:f0:fb:d7:75:71:c0:31:d1:7d:24:
71:ef:d0:62:7b:8f:8c:d7:e5:9f:55:70:f2:8c:c2:46:c5:02:
4f:12:9f:d5:9d:18:f1:fe:62:3b:31:5a:e2:dd:f3:95:c9:d4:
cc:ab:37:ac:95:e2:a4:28:8e:8c:3d:20:32:16:14:8d:f6:16:
e1:ae:80:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:14:38 2024 by rpki-client on console-ams.rpki-client.org