Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
File: hcNSXWi2ERZWThbh3U5WywNcnIU.mft (raw, json)
Hash identifier: wM8sGaR8JKORTTYY5dwPQeKeOZDG7jjrLGe4lseoh9U=
Subject key identifier: 34:9F:26:D8:15:ED:99:0F:3E:EE:AA:D7:E7:2C:EF:0A:69:A4:3B:38
Authority key identifier: 85:C3:52:5D:68:B6:11:16:56:4E:16:E1:DD:4E:56:CB:03:5C:9C:85
Certificate issuer: /CN=85c3525d68b61116564e16e1dd4e56cb035c9c85
Certificate serial: 01906C3D14B9DC4070171C421364F0DE4F97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
Manifest number: 11F1
Signing time: Mon 01 Jul 2024 03:01:00 +0000
Manifest this update: Mon 01 Jul 2024 03:01:00 +0000
Manifest next update: Tue 02 Jul 2024 03:01:00 +0000
Files and hashes: 1: hcNSXWi2ERZWThbh3U5WywNcnIU.crl (hash: 4vq51Xtlpj811HpqAwvhh1La/iIOuaha+yTQZogXerc=)
2: s0NRN3Tw2H8nRJ7bDOnvSMGPAVg.roa (hash: IoceEcWKIhA//L12wwFk8L9DpLgDvvYOXJkrCXe2iDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6c:3d:14:b9:dc:40:70:17:1c:42:13:64:f0:de:4f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3525d68b61116564e16e1dd4e56cb035c9c85
Validity
Not Before: Jul 1 03:01:00 2024 GMT
Not After : Jul 2 03:01:00 2024 GMT
Subject: CN=349f26d815ed990f3eeeaad7e72cef0a69a43b38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6d:c7:47:f2:1a:8f:d1:69:38:06:e7:3a:ae:
f2:82:09:d8:88:ef:43:f3:c5:1e:79:ae:ce:01:53:
19:70:9e:ba:03:e7:32:0f:35:b4:95:f9:dd:a9:29:
b6:f5:0e:f8:6a:cd:31:f5:35:f7:92:94:44:62:a2:
4c:6c:89:41:b6:8f:06:a5:92:26:4c:9a:3a:73:ad:
fb:03:f3:53:56:92:60:c7:e2:57:d7:d5:8f:2a:0d:
14:0d:0f:30:d9:54:c2:d9:56:a8:5e:75:4f:09:49:
85:f3:52:e4:81:ca:42:a2:8a:90:04:78:37:79:71:
69:75:b4:9c:25:f3:55:c0:fe:23:22:0c:33:1d:0a:
31:44:54:07:4a:7e:35:e2:18:f8:f7:da:41:62:2e:
6d:a6:62:08:0b:03:5c:8b:c7:17:bc:4c:a3:1d:69:
bf:6b:3b:a3:06:18:a3:f1:f1:61:b8:b3:ea:d9:46:
b5:91:1c:92:90:c1:09:11:90:d0:6b:28:aa:a0:25:
d0:49:30:e5:bf:6c:70:77:3a:4c:24:d0:bf:71:e1:
81:0b:e5:6c:05:90:33:b3:d1:82:44:ba:b9:c7:b0:
8d:82:8b:9d:26:0f:34:2d:09:8a:83:17:b9:7d:3d:
47:53:cd:11:6f:4f:b3:9b:55:1f:cf:e9:36:22:2d:
c8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:9F:26:D8:15:ED:99:0F:3E:EE:AA:D7:E7:2C:EF:0A:69:A4:3B:38
X509v3 Authority Key Identifier:
keyid:85:C3:52:5D:68:B6:11:16:56:4E:16:E1:DD:4E:56:CB:03:5C:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:60:02:e7:d9:9c:29:15:e2:f4:70:8c:44:04:ee:0a:74:97:
7b:b1:2f:4d:5b:b3:e2:b7:65:f2:d7:40:2c:bf:2f:78:39:ca:
d0:ff:cf:00:2e:e6:2b:c5:10:5c:60:92:50:42:a9:a5:dc:21:
bd:6c:6a:d9:11:45:76:21:f5:b0:e5:7a:f8:58:b2:03:08:86:
42:aa:87:4a:ef:f0:9f:16:14:af:41:63:a9:44:13:e4:e7:29:
0e:17:55:bf:ce:c4:9e:12:3b:5b:23:6e:9d:45:df:83:b9:73:
c0:55:c8:69:fb:53:c8:a7:49:b8:7f:bb:8c:01:7d:c9:ae:29:
f5:a2:7a:7b:60:7c:af:7e:19:39:c2:93:a3:bf:f8:c1:77:1f:
07:f1:69:82:72:76:67:45:2f:01:d4:2e:a1:ef:61:f8:5d:f1:
62:64:b1:3d:03:5c:61:38:2c:71:54:e6:d6:88:40:a3:69:9f:
05:de:de:c0:94:43:5b:d6:07:37:ab:e5:de:92:3f:24:be:80:
0e:a4:47:10:c2:d5:e3:4d:9e:ec:f0:0f:18:c4:bc:c9:8e:67:
32:16:e7:8e:ed:7b:e0:9c:8e:bb:c6:84:27:f1:db:45:b5:4d:
ba:a7:62:b0:0e:54:2b:d4:7d:9d:96:93:dd:34:84:7a:cb:8d:
8f:a8:80:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 04:01:26 2024 by rpki-client on console-ams.rpki-client.org