Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
File: HpUuiDc295y9nFZHBL88NmIbjso.mft (raw, json)
Hash identifier: dxQLvlbaT2pH8LKqcxCoGgZ2H7f/xfeajhOnEvmuXB8=
Subject key identifier: 41:29:C8:53:B8:F0:A6:84:59:99:BE:1B:D6:65:EE:DA:91:3D:CE:42
Authority key identifier: 1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
Certificate issuer: /CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Certificate serial: 018F23B847D288E3E7B6B739101C037CB899
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
Manifest number: 1147
Signing time: Sun 28 Apr 2024 08:00:30 +0000
Manifest this update: Sun 28 Apr 2024 08:00:30 +0000
Manifest next update: Mon 29 Apr 2024 08:00:30 +0000
Files and hashes: 1: HpUuiDc295y9nFZHBL88NmIbjso.crl (hash: uzmVqGbyXFzmLjSMrXxvEZr//6Zr3HWozKFRMROwB4A=)
2: YNiriPReKszl8jXRidQBcFCnC4g.roa (hash: xiW4Da2lN0898RwNncJ0rEaEP5J3Rl5IverfKdiIVwA=)
3: xpt97EqIIKlIwyjHVgH6x8-wgYI.roa (hash: qU1/7jBOqPaUXZWclGVaRaZRQ6bNy/7ZLkJETKm/FRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:23:b8:47:d2:88:e3:e7:b6:b7:39:10:1c:03:7c:b8:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Validity
Not Before: Apr 28 08:00:30 2024 GMT
Not After : Apr 29 08:00:30 2024 GMT
Subject: CN=4129c853b8f0a6845999be1bd665eeda913dce42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a8:d5:d1:a4:0f:cb:f0:0f:44:47:8a:d7:4a:
81:ed:d6:5a:bb:82:c4:d3:f8:f1:34:c4:e7:62:33:
a9:b1:87:1e:9f:81:43:40:88:0d:7e:a1:41:82:2a:
cd:25:cd:be:4e:14:1d:86:0e:cf:92:43:27:5c:e5:
27:bc:86:8a:d1:6b:2c:94:6d:59:b1:57:ee:1d:8b:
7d:fc:16:2b:7f:f7:8c:1c:4b:44:58:01:c5:d1:e7:
0b:50:99:b8:be:9d:42:1f:b7:54:df:2f:52:c0:02:
a1:c1:72:14:72:e9:98:96:c2:72:81:e0:24:06:87:
16:1d:9b:99:94:72:a8:12:13:fa:25:c8:cc:1a:6d:
0b:8b:cf:d4:0c:d1:34:0d:38:f2:8d:6a:a2:d9:8f:
4d:fc:9f:78:04:49:5f:a2:10:81:58:ba:ad:41:d7:
cf:d0:78:68:11:92:ef:d0:4c:2f:df:96:87:be:e5:
59:55:0e:84:50:5c:e0:9f:f8:c9:73:65:3f:fe:dc:
65:97:5f:d8:f8:9a:6a:09:f8:1b:21:be:a4:03:6d:
e3:6b:06:f0:58:ab:dd:68:2c:88:87:13:f8:01:1e:
e4:b3:37:b7:f7:f8:a3:b0:68:ba:fc:1e:ff:d5:12:
9c:3a:1d:c1:89:f8:ef:82:52:7f:f7:69:fc:11:00:
16:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:29:C8:53:B8:F0:A6:84:59:99:BE:1B:D6:65:EE:DA:91:3D:CE:42
X509v3 Authority Key Identifier:
keyid:1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:43:52:7d:cd:b3:61:2d:c3:7f:f7:44:04:82:97:30:0f:2c:
95:65:f0:d7:d0:92:23:bd:a9:86:8b:a5:fa:e5:c8:90:b8:36:
44:ca:70:75:9d:d7:2f:34:ba:4c:6d:3f:7c:b1:62:43:9e:d9:
52:32:fd:3b:1d:b7:e1:ce:60:7a:40:fe:ae:2b:2f:c9:db:22:
8f:aa:42:04:cb:6f:62:18:ac:5a:a3:26:db:db:ce:9c:49:a5:
a2:10:8d:3a:59:e1:35:e8:47:18:d9:3a:13:22:5d:43:1a:44:
9b:f1:74:a3:e0:55:43:00:5a:ce:fb:73:cb:96:c8:b2:ec:60:
59:39:01:0a:fb:88:74:c0:a9:5c:4b:b3:51:e4:a7:4e:ff:6a:
c4:e3:99:cc:00:7d:00:be:9b:ba:9a:4e:5f:b0:97:41:48:ec:
b3:49:16:ae:b9:6b:24:53:d6:ac:7c:4c:2b:f9:7a:12:c2:8b:
55:1a:a1:4a:ff:b1:ea:e2:9f:7c:b7:60:04:3f:00:32:f8:72:
35:f0:bd:d9:b1:e1:28:b6:97:2b:44:ca:19:b3:04:be:20:0d:
f6:4a:9c:f4:c9:59:5f:2f:b3:98:c2:b4:ce:8f:40:c5:1f:52:
f6:9d:28:90:26:da:ab:6f:83:cf:a4:c4:ee:21:4c:ee:c3:01:
31:ea:13:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 10:13:13 2024 by rpki-client on console-ams.rpki-client.org