Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: COtFdQQUYiMW57EXkzqnWteIzA9/yMFAzxwaN09UnBU=
Subject key identifier: 9D:DC:C9:D7:F1:51:D3:D8:87:27:FF:F6:51:C0:2C:47:45:66:58:49
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 018FB5A4B6463497DF0D28018196A698199B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 0C8F
Signing time: Sun 26 May 2024 16:03:41 +0000
Manifest this update: Sun 26 May 2024 16:03:41 +0000
Manifest next update: Mon 27 May 2024 16:03:41 +0000
Files and hashes: 1: 5yTT4LbWRIqMO89X0PQNBanVEbk.roa (hash: WNMlSF1s7JQQ+lhKB/nU5P1Ta+4+wXDnnXGc7JYmI2A=)
2: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: yO21qLsUUfWfGSIOHuCzHY3hGNYSeRKCDINRsHXK2Eo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b5:a4:b6:46:34:97:df:0d:28:01:81:96:a6:98:19:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: May 26 16:03:41 2024 GMT
Not After : May 27 16:03:41 2024 GMT
Subject: CN=9ddcc9d7f151d3d88727fff651c02c4745665849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fe:34:a4:2e:d3:a1:b5:c5:c5:52:f7:fe:c5:
2f:ca:69:98:44:16:bc:5d:14:80:b3:55:f4:e7:9d:
be:f5:93:36:e5:0f:1c:27:d4:d9:a3:70:c4:e5:12:
2a:4e:7c:02:03:bb:bb:88:1f:47:c4:02:51:c3:92:
e5:0c:c6:f2:72:cc:72:ab:0e:32:ea:37:31:41:13:
a0:64:f1:0e:91:c4:01:e4:57:3e:87:ef:ff:eb:38:
6b:75:9a:ef:8b:ba:75:3e:1e:6a:42:0f:b5:0f:d3:
22:c6:12:98:fd:cb:81:46:b1:35:e2:5a:cd:04:42:
9b:86:fd:5b:e2:db:4c:83:2a:a9:b6:5e:2e:54:81:
8c:04:dc:d5:64:77:dd:4f:2a:17:42:81:25:45:d6:
77:af:40:1c:f5:0f:5c:08:f1:86:be:79:10:f7:64:
54:f9:4f:a9:18:4e:4a:12:b8:c1:e3:6f:01:cb:81:
b2:27:26:39:88:63:18:c6:d2:03:f1:e7:66:ac:16:
c7:88:e2:5d:b1:ea:cb:45:ab:36:df:e4:12:b4:5f:
4a:52:75:34:8e:eb:20:aa:6a:af:70:1e:65:41:3f:
57:00:ba:6b:f6:2a:9e:c5:2a:a3:31:76:5b:df:a9:
77:02:4f:9c:47:38:92:f2:4e:b0:59:74:67:f2:b6:
11:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DC:C9:D7:F1:51:D3:D8:87:27:FF:F6:51:C0:2C:47:45:66:58:49
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:ab:7b:79:82:d3:8c:a3:21:24:5c:41:bb:07:9d:73:86:06:
bc:65:97:41:bc:8b:9f:98:40:99:d8:91:98:c3:d6:0e:ae:14:
fd:e5:11:c8:37:11:bc:56:5f:16:81:d1:8c:5e:b3:19:7a:e1:
86:1e:ce:05:89:34:a3:5a:1a:9f:78:55:f7:f0:a5:69:3c:5a:
a9:ab:17:3f:62:47:f5:18:f3:23:e9:c5:dd:52:29:38:a5:b1:
15:5f:86:ac:ed:7c:77:cb:d8:01:1a:cb:3c:2b:b8:b4:d7:95:
3a:66:c9:3b:6d:af:a8:3b:74:61:b4:f4:05:d0:5d:0e:84:19:
a2:9a:ac:4f:8f:a1:b7:d4:5c:c3:9a:85:5c:31:7d:46:e2:72:
91:f6:c0:3c:80:21:75:7c:ff:4e:e6:10:b8:2d:f8:9a:75:5c:
ca:a6:5b:73:53:d7:12:c7:b0:3d:4b:75:d1:85:b2:4b:2f:f1:
e0:21:9c:a1:0e:66:72:e8:4e:47:9e:76:83:2e:46:58:86:78:
60:44:74:63:39:9b:d1:df:b9:81:c2:5b:79:bb:2b:7e:f1:5f:
a4:fe:dc:42:f0:f5:8e:19:7a:94:05:af:84:eb:51:5f:45:8a:
31:43:97:15:15:c0:2e:6a:19:c9:b6:7c:ff:bd:9f:c6:9b:a1:
c0:e1:b4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 17:12:51 2024 by rpki-client on console-fra.rpki-client.org