Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
File: Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft (raw, json)
Hash identifier: ijtFRmW3Il+8CE0V7Q67dBbgkCRpVtupQNC0bDPzWzo=
Subject key identifier: E6:32:7E:92:D3:B9:DE:37:BD:92:FA:BF:A7:6B:DA:2A:E8:AD:57:1D
Authority key identifier: 1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
Certificate issuer: /CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Certificate serial: 018F23138516D08FD45CF89354BBFA44CE26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
Manifest number: 0771
Signing time: Sun 28 Apr 2024 05:00:32 +0000
Manifest this update: Sun 28 Apr 2024 05:00:32 +0000
Manifest next update: Mon 29 Apr 2024 05:00:32 +0000
Files and hashes: 1: Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl (hash: J4wm46NaDWDNXYcjyd9cDmyOTnsOwts5kzQoJ6zcHmo=)
2: SWIzilvPl8Crt9p1288U5CME81M.roa (hash: goQ9AL1CxoiivMDO9ySeGzcHsAM6GHF4NWLG9HFKhes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:23:13:85:16:d0:8f:d4:5c:f8:93:54:bb:fa:44:ce:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Validity
Not Before: Apr 28 05:00:32 2024 GMT
Not After : Apr 29 05:00:32 2024 GMT
Subject: CN=e6327e92d3b9de37bd92fabfa76bda2ae8ad571d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ad:c5:0d:64:c3:c6:3b:79:94:17:79:2f:85:
d1:f4:97:7a:1a:0e:98:dd:c7:74:05:14:6b:6d:2c:
d2:46:0b:49:c8:43:ee:54:2b:eb:f7:e8:db:6c:85:
fb:b5:7a:cb:19:8c:57:29:94:76:55:32:81:d8:4c:
cb:9f:2c:2c:f7:00:74:2d:eb:db:62:06:37:59:53:
ef:d8:77:fe:a4:2a:70:6d:98:cd:18:9d:bc:e5:69:
18:4d:0e:7f:6b:f5:75:d3:cf:e8:bc:38:08:ac:e6:
63:1b:3d:92:fd:88:62:21:6a:ef:44:05:36:15:d3:
c8:f7:65:d8:09:b4:b9:b9:d4:0f:cb:3d:cd:e9:99:
d3:8f:15:91:bf:96:e3:57:a4:db:60:31:37:17:f5:
84:c7:2b:e2:dc:64:80:1a:ab:25:05:dc:5e:7f:e2:
d5:41:8d:46:e1:3e:fb:98:c5:b5:3e:19:b6:03:9f:
d7:4e:b3:bc:a4:6f:26:6a:4f:7f:e3:29:da:a9:8d:
44:77:5b:5d:e2:41:7c:32:0d:98:3b:d8:0f:8c:70:
e2:8b:1f:08:9e:e0:7b:a2:b9:6b:ce:f0:5f:d8:d6:
46:ba:3a:d2:0f:ce:70:78:d3:1a:bc:79:c2:1a:af:
5f:37:28:c1:ad:14:ac:bc:17:09:d0:98:5f:fe:82:
4a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:32:7E:92:D3:B9:DE:37:BD:92:FA:BF:A7:6B:DA:2A:E8:AD:57:1D
X509v3 Authority Key Identifier:
keyid:1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:39:01:ed:cd:92:0a:93:f1:ba:ce:48:74:4d:ad:de:9d:5d:
01:75:c8:e9:96:82:81:61:1c:b4:a3:93:40:5c:4f:e6:4f:3c:
e1:05:3d:b5:6e:2f:ee:db:78:fb:d1:c7:d0:c0:ba:c1:f2:9d:
f2:72:48:19:59:01:21:23:f4:03:bc:42:59:2d:0e:b9:b8:2b:
ec:28:c0:ae:df:5e:e9:7d:52:61:26:d4:de:11:fe:41:9f:33:
0c:c4:2a:e0:07:23:4b:b9:b2:90:72:22:2a:72:71:24:2d:20:
03:0c:4b:da:5b:d8:1c:a3:11:bb:05:f1:46:7a:2d:48:0b:ae:
b1:3a:a2:ee:4c:e9:39:8d:40:6a:e9:3a:9e:b0:7f:93:bd:da:
e4:76:a2:a0:cd:e6:16:3e:ea:c0:37:8c:56:35:c6:b6:94:e0:
ce:32:fe:08:ae:c9:d6:2d:86:5c:88:b4:21:0f:2d:93:e6:71:
e7:ef:b9:e6:41:7a:73:11:9b:96:ab:ec:9f:2e:ca:bd:ad:8c:
87:4f:43:94:a5:56:3c:fb:37:fd:e2:e8:0b:c3:92:38:0c:0f:
bb:fd:37:39:b9:67:4a:0a:32:30:ce:6c:8e:61:e7:81:61:fe:
56:c4:7c:45:d0:e8:36:b9:fd:e9:aa:aa:8c:c2:b9:b0:a7:98:
67:91:46:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 10:13:32 2024 by rpki-client on console-ams.rpki-client.org