Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json)
Hash identifier: cHhBUBmuf1RgMnWYr35VSXfQuQMhEGZn1QkV2Ke0x7o=
Subject key identifier: 01:21:BC:4C:A9:72:F5:B9:F7:88:D3:26:BD:72:E7:1E:B8:E5:D8:49
Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Certificate serial: 018F1E5B292DEB5EDA75ED2F9CEC227ADE5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
Manifest number: 1141
Signing time: Sat 27 Apr 2024 07:00:41 +0000
Manifest this update: Sat 27 Apr 2024 07:00:41 +0000
Manifest next update: Sun 28 Apr 2024 07:00:41 +0000
Files and hashes: 1: A9st79ruM4hRubY3iQwXZmZj_I0.roa (hash: DWubeyufd6g6p+JjdLLB4PNzmgaDWrJRIVEYf825um8=)
2: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: wEFYK/sISOgXQ8BfSbRrgNHNjuSUokCn2Wwo1BKIVVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 02:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1e:5b:29:2d:eb:5e:da:75:ed:2f:9c:ec:22:7a:de:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Validity
Not Before: Apr 27 07:00:41 2024 GMT
Not After : Apr 28 07:00:41 2024 GMT
Subject: CN=0121bc4ca972f5b9f788d326bd72e71eb8e5d849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fd:35:19:0d:ba:5f:9f:1d:f1:68:d9:1b:30:
f1:91:29:8d:4e:1a:e7:e3:7a:04:66:f1:f5:24:fc:
b4:7d:2f:67:57:1e:ca:7c:4c:da:f4:80:ec:fe:ec:
01:cd:bf:a7:bb:a7:ce:1b:e8:0e:e8:d4:53:96:2e:
c2:3e:9d:b1:b2:e1:64:19:d1:ce:f7:5d:70:40:a4:
52:88:0a:95:48:3e:44:59:da:31:41:10:9d:d1:78:
d0:c7:f9:9b:ab:59:32:10:54:ca:80:99:fd:48:0d:
ee:0e:e1:d8:dd:42:ca:bc:58:23:fb:9d:cf:ff:f9:
ef:d6:a7:ed:a8:cb:3c:59:b6:a8:11:18:88:6d:eb:
38:09:26:41:3e:1e:d0:db:51:8a:db:71:d7:36:aa:
14:22:74:37:e9:61:65:09:02:d4:5e:14:ec:20:93:
ba:6a:65:ef:95:d2:71:46:ec:c1:0d:1c:5d:67:dd:
93:e8:b4:15:79:34:0f:67:8f:e2:3f:65:78:05:13:
65:d6:07:53:a6:71:e2:c5:77:fd:cf:01:e1:24:ff:
07:58:4a:04:67:52:c9:df:56:4b:80:46:7a:ed:3a:
ee:00:01:37:7a:37:7a:05:41:71:32:12:9d:1a:35:
57:6e:ba:12:6e:0a:58:e0:c1:c6:39:83:bb:cd:3c:
93:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:21:BC:4C:A9:72:F5:B9:F7:88:D3:26:BD:72:E7:1E:B8:E5:D8:49
X509v3 Authority Key Identifier:
keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:18:ff:f3:44:b9:ff:ba:fd:c7:4d:f7:27:ed:f4:29:10:b6:
aa:b9:98:11:7b:24:c9:49:8a:21:57:ab:8c:b5:f1:7d:6c:bd:
c2:1c:49:ef:fb:0d:9e:be:eb:07:bd:43:48:8f:bb:4a:97:8e:
e2:32:fd:eb:f8:08:ca:ca:6b:05:3b:5f:9a:ae:0d:a2:a9:d6:
83:31:e2:c1:01:a5:99:9c:13:0c:02:24:38:1a:b2:d1:12:7a:
8d:07:99:68:33:eb:a5:2e:11:67:ba:6e:a5:58:b1:87:dc:18:
b5:0a:f7:07:28:01:34:9d:f7:0b:15:41:38:dd:7a:ac:d0:b1:
f3:35:fe:79:5d:c2:9d:b2:c9:cf:2c:72:40:98:ab:c8:f8:be:
e6:9c:e5:fd:9e:b0:80:42:66:20:75:3e:d7:bb:3f:c8:03:1d:
88:fa:61:d0:d2:f6:db:f4:a1:42:24:6e:b0:b5:9d:97:5d:cf:
b0:7d:b7:d1:cd:c0:0d:6f:23:90:a2:95:8b:42:8b:be:18:e0:
f3:73:d9:82:72:4b:11:28:2a:0c:aa:aa:b5:8b:45:83:b7:34:
46:45:f5:96:d5:81:c8:f9:fc:66:92:f7:04:34:c7:fb:66:09:
be:a9:5c:1a:b6:b5:88:ab:d2:20:fa:7b:72:f3:46:59:66:31:
a5:3b:6b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 10:53:43 2024 by rpki-client on console-ams.rpki-client.org