Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json)
Hash identifier: CIWBlPg1+urD0/WpQthEf9F1+ck8tMxq3QjnSCXpt34=
Subject key identifier: B1:19:F0:58:8E:EF:96:C7:E7:D4:1F:20:60:EB:EF:FB:CF:CC:A3:7E
Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f
Certificate serial: 01936B2228D5CDEAAEEDE5DE31ECC3B8279D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
Manifest number: 1140
Signing time: Wed 27 Nov 2024 01:00:20 +0000
Manifest this update: Wed 27 Nov 2024 01:00:20 +0000
Manifest next update: Thu 28 Nov 2024 01:00:20 +0000
Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: t7yEBhDWw0NOTOhXVTPBnzRBIKCXPJi1eYNEApy6rhw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:22:28:d5:cd:ea:ae:ed:e5:de:31:ec:c3:b8:27:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f
Validity
Not Before: Nov 27 01:00:20 2024 GMT
Not After : Nov 28 01:00:20 2024 GMT
Subject: CN=b119f0588eef96c7e7d41f2060ebeffbcfcca37e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8b:b3:e2:32:b0:8b:85:79:47:a7:c8:3c:bb:
1a:5b:a1:a4:84:2d:c2:41:8d:dc:9c:6b:52:2a:9e:
88:1a:fb:76:45:43:82:b8:b9:92:cd:6a:b5:cc:a6:
7b:8a:2e:f7:73:52:8e:cf:1a:88:b8:1e:02:b2:9a:
2f:aa:c1:54:a9:5d:d0:2a:8f:09:a1:22:9c:2f:0b:
55:11:e5:b8:66:57:a7:20:bb:56:c7:3e:e3:be:42:
00:62:60:8a:bd:cc:9f:05:d0:19:ff:7c:92:78:0e:
49:cc:6c:9e:6a:56:1a:15:e3:b4:42:54:90:b3:3c:
b2:ed:aa:7c:ed:88:7b:c2:9f:d2:ba:9a:fa:3e:f6:
cc:e8:ef:a7:1a:19:3c:40:88:e8:52:6a:2f:4f:58:
f7:7e:9e:fa:42:76:ef:87:7c:9d:1b:a4:e8:27:e4:
cc:0d:e0:8f:d0:f4:16:f4:fb:1c:15:91:ee:d5:2d:
0e:e8:ad:8b:90:8a:9d:d6:ec:9a:5c:77:c2:79:fc:
a5:e9:1d:a2:f7:6b:3d:83:75:c0:2e:89:d4:e5:14:
67:e5:db:9b:0e:be:f8:d0:4e:bc:e3:7a:c4:79:65:
2e:dc:b2:b9:af:40:12:fc:a4:a7:45:cb:7b:f2:30:
70:18:fb:dc:0d:dd:7b:5d:e9:89:82:1c:55:cc:eb:
24:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:19:F0:58:8E:EF:96:C7:E7:D4:1F:20:60:EB:EF:FB:CF:CC:A3:7E
X509v3 Authority Key Identifier:
keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:95:8d:c0:da:48:7e:39:63:3b:14:de:5e:5f:c8:af:53:ef:
01:e0:d9:b4:1f:83:4b:b2:22:01:b6:64:72:b2:24:73:87:66:
af:e6:88:f3:2a:a3:80:96:87:11:90:03:ff:a9:c7:8d:06:d0:
fd:33:a3:37:5e:1d:5b:e0:50:80:28:93:dd:d2:80:81:d0:d9:
60:38:85:46:19:06:66:58:5f:68:89:ea:6a:c6:0d:89:cf:8c:
d5:5d:2f:04:4b:ad:9d:4e:aa:e5:ae:78:2a:c0:80:3d:da:a6:
07:5f:e7:7c:dd:6f:64:cb:d2:1b:61:18:2e:88:40:f1:c5:1d:
0e:1d:46:28:a8:2d:df:bc:17:e0:72:8f:74:69:10:53:1e:79:
0e:fa:11:f5:a0:05:98:05:6a:5c:09:2b:3d:53:e7:52:4b:2a:
ef:1d:8a:cf:b8:60:bd:1a:c0:bc:90:82:b1:c7:ff:f6:cb:c7:
34:d7:02:45:e0:7f:3b:00:f2:be:37:56:6b:5c:05:5a:6e:2a:
0f:68:a7:88:8b:61:25:40:76:5d:fa:bc:14:43:44:94:e7:22:
86:1c:48:ad:53:28:25:76:b7:d7:0f:22:6d:6b:96:10:08:c7:
57:d4:59:89:c6:05:29:b9:65:7e:ea:a8:1a:97:3c:7a:bf:0c:
02:12:5a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:48:56 2024 by rpki-client on console-fra.rpki-client.org