Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
File: HrwURUFHAQyh700E0hASXh7X0ho.mft (raw, json)
Hash identifier: sRxoSsitCokWrRfADCz+SdXODiJCBS9ZA2LM9H2/ceo=
Subject key identifier: 1B:2C:95:B7:3B:79:7D:3D:EC:39:CB:39:B5:10:F8:97:77:FA:22:E8
Authority key identifier: 1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A
Certificate issuer: /CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a
Certificate serial: 018F86A3826B6658273BF57A82E3DF2AB456
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
Manifest number: 0337
Signing time: Fri 17 May 2024 13:00:13 +0000
Manifest this update: Fri 17 May 2024 13:00:13 +0000
Manifest next update: Sat 18 May 2024 13:00:13 +0000
Files and hashes: 1: HrwURUFHAQyh700E0hASXh7X0ho.crl (hash: KeJwyJj0nR+L8OJxWjMpka9WH7wAYAgYtU/+trSezyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:a3:82:6b:66:58:27:3b:f5:7a:82:e3:df:2a:b4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a
Validity
Not Before: May 17 13:00:13 2024 GMT
Not After : May 18 13:00:13 2024 GMT
Subject: CN=1b2c95b73b797d3dec39cb39b510f89777fa22e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dc:6a:df:dc:8a:aa:be:2a:8a:c6:81:b8:ab:
79:21:f7:4a:9d:9b:05:8d:9e:83:64:37:46:85:8a:
db:da:a8:9e:0d:fe:7b:a6:e6:8d:91:8d:c1:b6:74:
76:d2:22:eb:98:95:c5:3a:24:5d:a4:67:a5:fd:6e:
eb:cf:2e:a1:62:59:d9:0c:5b:38:f3:6d:7d:d0:f1:
86:4d:0b:c0:85:cd:fc:6f:4d:13:ac:cc:46:a7:69:
e4:ec:22:53:9f:53:48:6b:df:b3:8e:fe:e9:c3:6b:
0c:5a:cc:f5:ed:82:d3:36:66:81:cd:79:e3:d7:21:
ce:97:95:07:93:38:7b:7f:d2:53:ca:d1:30:ee:57:
e4:8e:8e:2f:fc:aa:fe:eb:fd:90:92:d1:de:b0:c0:
18:3c:b3:fa:89:c5:7a:5e:2a:63:be:60:5d:43:9e:
4b:ce:38:c7:34:6e:ff:9c:89:ce:43:03:42:d8:50:
1b:a8:63:d9:c1:d9:54:04:e7:79:45:57:e0:fe:af:
60:56:77:ed:2c:3c:4d:4a:04:d5:61:ac:51:74:2d:
0b:38:fd:5c:28:06:f2:4e:f7:ae:90:0c:aa:e4:33:
4a:e0:47:8f:e5:54:2d:19:dc:c2:cc:e3:75:e8:80:
5b:24:05:de:ab:ab:2d:cf:2c:01:27:56:89:9a:28:
cd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2C:95:B7:3B:79:7D:3D:EC:39:CB:39:B5:10:F8:97:77:FA:22:E8
X509v3 Authority Key Identifier:
keyid:1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:69:42:a8:39:e3:8c:6c:3f:87:1d:f3:3f:1b:e0:86:ee:18:
37:4b:48:8a:82:57:54:5b:bb:00:13:5d:fd:7b:36:5e:c4:bd:
91:4e:56:c1:44:ab:ef:94:a2:d7:e7:26:a3:e2:d1:1b:4e:c9:
d4:82:58:f2:65:2b:ed:25:61:7c:fa:d8:39:2e:75:0c:b2:e0:
50:f3:07:18:c2:0e:32:00:8a:4f:80:6a:88:0f:8b:64:9d:a8:
1b:4c:e9:73:ac:8f:40:fb:5d:a3:b1:77:b2:f0:14:b0:79:cd:
69:f2:30:b1:1d:69:51:1d:d1:b3:ce:d4:ed:12:de:a4:5c:e5:
c5:dd:c9:2a:e9:c3:b0:af:0b:19:d6:e6:bc:8d:27:44:76:00:
4b:54:7d:45:51:d7:21:2a:e4:5d:23:91:d3:60:b0:fa:67:3b:
94:ed:f3:1a:dd:28:92:98:8c:19:9b:c2:82:82:7d:2f:02:40:
87:6c:20:9e:50:35:dd:df:c7:ef:a3:36:50:b4:46:44:26:61:
b0:fe:f3:d5:02:df:92:03:a1:71:4e:28:b3:78:7a:fb:d6:b8:
2a:ce:42:6e:2d:21:44:df:21:e8:bf:de:7c:89:a9:bd:d9:ff:
9c:31:89:f5:08:71:35:e1:c8:b2:b1:e3:c0:92:47:0b:c7:ef:
1d:c3:d6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:21:09 2024 by rpki-client on console-fra.rpki-client.org