Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
File: HnsuJD-KqVRZeTK83NmvZWDc5RY.mft (raw, json)
Hash identifier: 7OktXrWMOhhKoAAVmubZQeNHY4X5S+jhCgFiJJGnz+M=
Subject key identifier: 94:F8:04:56:95:AF:BE:8B:D9:FB:DF:1B:32:D2:22:5F:90:F5:E3:9D
Authority key identifier: 1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
Certificate issuer: /CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Certificate serial: 018FD48A89037BCF11DCB44FBD039F050C7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
Manifest number: 0663
Signing time: Sat 01 Jun 2024 16:03:19 +0000
Manifest this update: Sat 01 Jun 2024 16:03:19 +0000
Manifest next update: Sun 02 Jun 2024 16:03:19 +0000
Files and hashes: 1: HnsuJD-KqVRZeTK83NmvZWDc5RY.crl (hash: FprCeoeNWYPamTBOnA+/ba9Dgi8DRzoRFYI1sESfzP4=)
2: dh2m9udZplSYWI4ck9mh49rhFBQ.roa (hash: gU1r13OkA09j+8Ulc+4kYftdQmoTvIgrP9ZW5HfM3Fw=)
3: wzkm0L8_KyK9vRV03vnGTCTahr4.roa (hash: DizCHZ0vw4qihAcDKoDGRH58S8RCd67+eyukBBFzXNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 16:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d4:8a:89:03:7b:cf:11:dc:b4:4f:bd:03:9f:05:0c:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Validity
Not Before: Jun 1 16:03:19 2024 GMT
Not After : Jun 2 16:03:19 2024 GMT
Subject: CN=94f8045695afbe8bd9fbdf1b32d2225f90f5e39d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ca:87:5f:5c:53:ed:c0:50:ef:75:68:ae:15:
73:ec:0e:6f:32:e2:10:49:2a:45:14:79:2d:28:18:
06:e8:be:2f:8f:e2:42:21:7b:cc:81:87:9c:0b:42:
90:73:5b:7c:c1:72:fb:56:ae:e1:ef:72:c5:e6:cc:
73:d8:91:08:7e:2c:2f:36:a3:eb:e0:31:0f:81:1b:
8f:9c:18:94:8d:28:a5:4a:b9:a8:a1:a8:ed:e0:38:
f1:fb:b6:0a:8c:d7:72:96:79:6a:56:1c:3e:e7:ea:
a1:48:26:fc:e2:10:3d:9e:50:92:71:1a:2e:cd:18:
ef:2a:ca:2d:5d:ee:99:1b:2c:61:89:52:4d:35:93:
eb:b2:00:18:c9:66:9d:b1:19:92:09:ef:1d:96:df:
cb:5e:ab:0e:49:f5:72:3e:1c:bc:0c:93:31:8d:b9:
ca:5e:6f:fd:95:27:ef:e6:85:e0:0e:81:b3:0f:5a:
f8:65:52:5a:40:0e:8b:b2:fc:d1:1e:de:05:d3:50:
d8:e4:8b:b7:87:12:11:80:11:e8:d0:3d:80:66:25:
44:1c:5f:ca:0c:a8:c6:57:d4:84:77:e9:59:71:59:
cd:38:d5:19:94:40:82:d7:ef:b9:ef:3c:54:58:da:
08:7c:2a:1b:97:7a:60:85:b3:0a:4c:c4:2f:3d:89:
b3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F8:04:56:95:AF:BE:8B:D9:FB:DF:1B:32:D2:22:5F:90:F5:E3:9D
X509v3 Authority Key Identifier:
keyid:1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:a6:35:0f:68:8a:f7:22:fd:0a:3f:e6:c9:c6:7d:95:7d:f6:
e7:81:76:84:6a:e9:4d:dd:24:bf:a4:a1:bb:f0:c7:bb:75:6c:
d0:aa:bd:3c:28:31:e7:31:81:61:18:1d:85:f4:43:c1:6d:0e:
31:51:16:64:fb:83:36:20:34:1b:24:55:fc:41:86:75:f7:72:
5f:cf:db:ad:f7:77:e1:d8:f7:cc:34:c9:31:28:b3:11:c0:02:
28:01:df:1a:42:b2:04:8c:de:2f:96:28:6b:75:95:52:92:7c:
36:3e:c9:e2:fb:42:48:f4:04:eb:03:7f:b8:35:82:21:ab:b1:
7e:80:1b:c2:55:2b:0a:c1:17:3a:8d:59:58:64:b2:2a:66:e8:
18:05:0c:5e:03:c9:87:09:78:ad:1e:ae:cb:d1:a1:38:de:e0:
07:16:a4:c0:0c:29:7a:bb:54:a2:d2:0c:51:25:21:df:9f:36:
3e:dd:ce:fb:90:a9:49:25:0a:47:d2:c7:69:51:f5:ea:b9:00:
cd:35:4a:71:10:00:2a:42:a9:d7:54:0a:79:9c:9d:e4:c5:bb:
5b:a8:7e:85:bc:cf:08:23:a4:cd:1f:2f:9c:40:27:7d:d0:e6:
2b:8c:74:0d:4a:99:ad:01:3a:d1:8c:c0:90:a8:bc:56:79:46:
db:d8:29:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:31:49 2024 by rpki-client on console-ams.rpki-client.org