Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: mc0VLQHHCpj5MllZC0yhDsNScRYvkDS8olCi8zJqk3g=
Subject key identifier: 32:C7:A5:50:0A:D5:BB:46:68:B4:D6:6E:3D:FD:8B:2F:1F:5E:9B:D2
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 018F53C96A3EFFFE4A3F972A1F527386381D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 0EAA
Signing time: Tue 07 May 2024 16:00:59 +0000
Manifest this update: Tue 07 May 2024 16:00:59 +0000
Manifest next update: Wed 08 May 2024 16:00:59 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: q8sEDBczPtjMsZIWtDTja454dJr9vkr89t5Hl0v7ppg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:53:c9:6a:3e:ff:fe:4a:3f:97:2a:1f:52:73:86:38:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: May 7 16:00:59 2024 GMT
Not After : May 8 16:00:59 2024 GMT
Subject: CN=32c7a5500ad5bb4668b4d66e3dfd8b2f1f5e9bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bf:32:bb:79:1a:71:22:2e:c6:94:3a:03:85:
39:57:4a:8d:53:f6:01:33:37:ce:a0:3b:ee:df:4e:
3d:d4:07:b3:68:f1:4a:e8:94:60:e6:64:d9:be:f8:
fe:1a:1c:99:45:a1:09:4e:a5:50:0d:c2:ef:b6:1b:
92:03:1f:a8:1e:56:0d:42:97:a1:85:ea:e1:68:95:
50:4a:d7:a8:9c:46:45:e8:2a:cd:ce:1c:89:bf:40:
57:cd:32:c6:6b:f8:0c:70:08:fa:aa:f7:e0:7b:e6:
29:58:f0:b5:5c:32:aa:db:70:e3:68:3a:72:a5:05:
d8:18:27:27:da:4c:90:ff:38:71:63:53:c4:d4:81:
5e:23:41:89:b5:ce:7c:79:00:ce:82:13:13:6c:b1:
37:a1:12:8b:42:d5:c6:7b:70:d1:bb:ee:6d:ab:5d:
93:65:45:9b:51:01:d2:d7:e3:19:64:1c:9e:ee:9a:
c3:64:64:de:1b:83:a8:ea:b4:8f:19:d5:a3:45:8d:
60:71:2c:12:37:38:5c:a6:83:bd:d1:2a:8b:63:69:
7b:e3:13:2c:fd:71:4f:c5:47:62:19:f7:ba:14:4e:
4a:bc:b5:75:43:a9:e6:01:c4:c7:ed:99:12:36:04:
1e:80:cb:27:8b:26:a7:1d:38:1b:48:19:78:ae:ef:
8d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C7:A5:50:0A:D5:BB:46:68:B4:D6:6E:3D:FD:8B:2F:1F:5E:9B:D2
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d2:59:2f:7f:d4:98:08:76:71:f9:78:32:85:64:5e:be:44:
de:97:35:ee:6a:0b:91:59:bf:c6:9d:7d:43:f5:f6:96:c1:a4:
2f:0a:20:29:46:ce:45:93:e2:32:75:64:0e:f9:ee:96:74:ee:
02:1c:c8:01:4a:fd:b7:e0:6a:06:fa:0d:70:0b:9e:9d:01:71:
2b:ff:45:a7:0e:ed:5b:13:51:0d:a0:d1:6e:a6:f1:55:6d:60:
af:0f:42:94:88:d3:20:80:4e:14:a1:27:46:b0:87:e2:04:70:
3a:a5:ba:9c:08:6d:36:1c:db:4a:40:f1:76:12:4f:3d:1f:25:
37:70:5d:03:a7:85:19:e6:72:4f:3c:d1:fc:88:79:93:58:8e:
10:c0:cd:0a:ac:55:64:10:d9:c0:da:ea:a2:f3:0b:10:8e:42:
0d:97:ce:a5:54:f2:ae:ce:26:6f:1a:6d:70:69:66:ce:81:18:
6f:8e:49:7c:f1:47:aa:f9:79:88:2f:11:ae:72:dd:f5:39:18:
21:1a:f7:f1:d2:9f:36:fc:97:c9:d9:96:b5:0d:fa:79:18:39:
d5:25:1a:6b:f4:e9:a7:9a:05:bd:b3:0e:64:ae:e5:11:b2:e5:
a1:59:8d:3e:16:77:9c:38:97:bb:2c:0e:12:34:48:94:04:80:
5d:6e:66:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 18:36:01 2024 by rpki-client on console-fra.rpki-client.org