Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json)
Hash identifier: L1l7eLUOTlcNv/vhkr8taAKVKakgUlQBjN+txav3IZ4=
Subject key identifier: E7:8B:9E:81:17:EC:30:CF:AF:5C:5A:F6:2A:49:4B:6B:C8:E1:F0:AF
Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f
Certificate serial: 018F44FBBED2461229DB637830C0AB794F9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
Manifest number: 0F1A
Signing time: Sat 04 May 2024 19:01:39 +0000
Manifest this update: Sat 04 May 2024 19:01:39 +0000
Manifest next update: Sun 05 May 2024 19:01:39 +0000
Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: wRfrhGrqq0nxysMQl7Azzdi+i0HLNPYRh/0N3z0V3fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:44:fb:be:d2:46:12:29:db:63:78:30:c0:ab:79:4f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f
Validity
Not Before: May 4 19:01:39 2024 GMT
Not After : May 5 19:01:39 2024 GMT
Subject: CN=e78b9e8117ec30cfaf5c5af62a494b6bc8e1f0af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:09:77:f0:1a:09:1a:7e:10:bf:31:54:fe:e7:
48:3b:82:f7:61:b7:71:18:29:71:bc:8f:0f:94:01:
11:86:65:14:0f:f4:ff:df:07:1d:b2:ab:ba:62:87:
7e:7a:38:e0:88:75:69:d4:63:94:d3:a7:99:c7:e7:
6b:04:bb:d1:6b:ba:83:e8:fd:ec:bd:a3:bb:c9:74:
96:c9:3b:c1:b4:2c:e2:14:49:8e:d5:2c:3a:c9:7b:
34:c4:f6:77:07:85:80:36:ae:fe:d5:bf:63:3b:eb:
be:cb:03:23:ac:31:61:2c:37:74:ca:1f:f7:da:45:
57:52:7e:e7:93:14:a4:0f:94:87:0d:42:3d:79:45:
6b:81:e8:23:30:6c:12:c4:66:39:f8:f0:76:21:f8:
d9:f5:79:86:30:fe:92:9a:2c:11:08:3c:79:51:f0:
dd:77:68:4e:85:02:37:41:dd:f7:18:bb:b2:1a:dc:
8f:31:fd:a2:16:d7:d2:75:1c:f3:dd:08:e0:40:61:
77:5d:06:88:3f:5b:60:6f:3b:fb:26:cf:ff:51:cd:
a7:dd:37:f1:8e:e4:72:37:75:6f:97:a1:04:3c:41:
0a:ff:16:86:18:42:9a:74:49:e2:24:0f:e8:e1:ef:
71:be:2d:8c:5e:b8:2d:dd:05:4c:b9:23:a4:61:a3:
67:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8B:9E:81:17:EC:30:CF:AF:5C:5A:F6:2A:49:4B:6B:C8:E1:F0:AF
X509v3 Authority Key Identifier:
keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:8c:b5:4b:c2:fe:46:04:3c:eb:3b:35:ab:2b:69:d8:c7:ae:
8f:f6:e7:8c:71:ea:9e:a0:86:8e:42:2f:e9:b8:9c:ea:6c:78:
8f:02:6b:2c:86:0d:61:8c:b2:46:4b:d4:bb:e5:e6:3c:ad:60:
da:8e:9b:47:f5:9e:65:c7:64:f0:31:90:ed:dd:30:96:55:df:
25:92:15:dc:27:b9:e6:8b:7a:be:cf:bb:61:4d:37:e0:d5:c7:
6e:ed:bd:50:36:fc:b5:3b:81:16:25:a3:b4:4d:c2:c2:01:91:
4c:9a:b1:67:75:68:39:89:8c:5d:34:54:e7:ac:f3:7b:af:0f:
d7:54:9e:9d:81:e2:1f:c0:81:76:2f:85:14:de:7b:70:45:69:
82:3c:ad:5e:cf:24:00:c7:f1:89:52:30:14:96:b9:72:55:d4:
45:e3:8a:e5:b2:25:cc:3f:92:bc:33:0f:6b:7c:6c:51:2a:3a:
bb:70:45:22:e3:90:df:f6:ae:85:f6:ef:87:3c:e4:18:70:7a:
33:df:98:7b:d0:97:94:25:95:76:68:61:98:d8:86:b5:c2:9d:
4c:77:3d:69:ba:74:c3:2b:ff:27:c1:1c:69:a8:82:76:0e:35:
48:8e:ce:e5:52:6c:b2:00:27:bb:8e:0f:72:2a:74:59:04:c4:
bb:b6:f8:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9E+77SRhIp22N4MMCreU+bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkODkzM2MxOTNmMDRlMzI0NDFlMzcxNjJkYzRkZWZhOTc0
NGI4NGYwHhcNMjQwNTA0MTkwMTM5WhcNMjQwNTA1MTkwMTM5WjAzMTEwLwYDVQQD
EyhlNzhiOWU4MTE3ZWMzMGNmYWY1YzVhZjYyYTQ5NGI2YmM4ZTFmMGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Al38BoJGn4QvzFU/udIO4L3Ybdx
GClxvI8PlAERhmUUD/T/3wcdsqu6Yod+ejjgiHVp1GOU06eZx+drBLvRa7qD6P3s
vaO7yXSWyTvBtCziFEmO1Sw6yXs0xPZ3B4WANq7+1b9jO+u+ywMjrDFhLDd0yh/3
2kVXUn7nkxSkD5SHDUI9eUVrgegjMGwSxGY5+PB2IfjZ9XmGMP6SmiwRCDx5UfDd
d2hOhQI3Qd33GLuyGtyPMf2iFtfSdRzz3QjgQGF3XQaIP1tgbzv7Js//Uc2n3Tfx
juRyN3Vvl6EEPEEK/xaGGEKadEniJA/o4e9xvi2MXrgt3QVMuSOkYaNn6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOeLnoEX7DDPr1xa9ipJS2vI4fCvMB8GA1UdIwQY
MBaAFB2JM8GT8E4yRB43Fi3E3vqXRLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81MTMwZTUtOTMxMi00OGRlLWFlMmEt
MzQyZDFiMzgxZDg3LzEvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC81MTMwZTUtOTMxMi00OGRlLWFlMmEtMzQyZDFiMzgxZDg3
LzEvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJYy1S8L+
RgQ86zs1qytp2Meuj/bnjHHqnqCGjkIv6bic6mx4jwJrLIYNYYyyRkvUu+XmPK1g
2o6bR/WeZcdk8DGQ7d0wllXfJZIV3Ce55ot6vs+7YU034NXHbu29UDb8tTuBFiWj
tE3CwgGRTJqxZ3VoOYmMXTRU56zze68P11SenYHiH8CBdi+FFN57cEVpgjytXs8k
AMfxiVIwFJa5clXUReOK5bIlzD+SvDMPa3xsUSo6u3BFIuOQ3/auhfbvhzzkGHB6
M9+Ye9CXlCWVdmhhmNiGtcKdTHc9abp0wyv/J8EcaaiCdg41SI7O5VJssgAnu44P
cip0WQTEu7b4Og==
-----END CERTIFICATE-----
Generated at Sat May 4 20:03:40 2024 by rpki-client on console-ams.rpki-client.org