Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft
File: hwCTRBAfUQ52oqserOnpp9kuTtU.mft (raw, json)
Hash identifier: 77tTc9tNmGFfbJpo9QDeNRWsjcQqVWqCiEwg97XYFaE=
Subject key identifier: E2:19:44:04:52:FF:75:F0:E3:BA:03:4E:B6:15:8C:72:EA:81:E8:AE
Authority key identifier: 87:00:93:44:10:1F:51:0E:76:A2:AB:1E:AC:E9:E9:A7:D9:2E:4E:D5
Certificate issuer: /CN=87009344101f510e76a2ab1eace9e9a7d92e4ed5
Certificate serial: 018F874AA5A4AC2CB891B525171FB40A6FC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft
Manifest number: 03DA
Signing time: Fri 17 May 2024 16:02:46 +0000
Manifest this update: Fri 17 May 2024 16:02:46 +0000
Manifest next update: Sat 18 May 2024 16:02:46 +0000
Files and hashes: 1: hwCTRBAfUQ52oqserOnpp9kuTtU.crl (hash: sfRORNnrrU/b5G5gzhJ6a2IhC0wkvzSMBtoibci4xI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:4a:a5:a4:ac:2c:b8:91:b5:25:17:1f:b4:0a:6f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87009344101f510e76a2ab1eace9e9a7d92e4ed5
Validity
Not Before: May 17 16:02:46 2024 GMT
Not After : May 18 16:02:46 2024 GMT
Subject: CN=e219440452ff75f0e3ba034eb6158c72ea81e8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a2:4a:89:1c:25:17:17:7e:54:98:2d:35:01:
c6:5b:72:31:9f:0a:93:ca:a7:b1:70:5d:92:86:3f:
dd:31:26:2a:0b:95:0f:33:b6:8a:07:ce:60:df:76:
f0:e8:f8:f2:cc:06:62:8c:71:a0:bb:8a:60:43:75:
16:c4:ed:69:42:8a:55:5b:25:33:e3:7f:16:3d:bb:
75:2b:18:52:17:5f:40:2e:cb:d8:d7:6a:53:02:44:
88:95:a7:df:6c:62:16:b5:a4:45:7d:76:d4:96:c1:
1f:98:ac:c5:b5:8b:91:30:c3:79:97:5a:61:0b:65:
a1:fb:cf:d8:56:8b:21:0d:c8:88:40:70:37:2c:f6:
44:63:6d:a8:78:9f:e1:84:3a:d9:51:82:e2:c3:4f:
bd:26:1d:9a:a7:fc:4e:23:f0:44:f5:38:93:67:9a:
74:6d:c5:bb:08:d4:0e:d1:58:7f:79:fd:3d:bc:67:
e6:9e:c5:c9:81:40:cb:f4:8c:0b:80:52:ea:07:65:
29:b3:eb:a3:61:56:5f:15:88:b3:12:cb:d1:25:f2:
71:d0:f5:af:db:9a:2e:8d:c0:c3:17:88:c9:dd:13:
99:fe:1c:af:89:9c:dd:f7:9b:27:71:5a:aa:cf:b1:
d4:c3:07:58:db:1c:49:c6:78:d3:57:10:52:ff:1c:
84:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:19:44:04:52:FF:75:F0:E3:BA:03:4E:B6:15:8C:72:EA:81:E8:AE
X509v3 Authority Key Identifier:
keyid:87:00:93:44:10:1F:51:0E:76:A2:AB:1E:AC:E9:E9:A7:D9:2E:4E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d4:30:b9:82:ad:20:60:c4:f7:f4:d9:9a:6c:0b:63:38:ad:
01:31:b1:80:bc:96:ee:29:d6:9c:98:04:8b:2d:6a:3b:e2:68:
d6:20:f0:6d:58:b0:a6:5d:e8:c2:8f:f1:11:c2:42:2f:93:00:
8e:dc:a4:29:d2:b1:b2:0c:11:ff:47:d8:e0:2a:32:aa:97:6b:
d2:9e:71:2b:30:a3:7e:2b:69:83:4b:92:92:48:a6:e9:40:53:
ae:1b:86:ce:81:45:1e:f3:46:06:da:19:08:2c:86:6d:9b:83:
7f:6e:f7:5c:aa:ae:3c:13:51:39:d8:ee:60:cc:5d:a1:51:34:
99:11:d8:0c:66:18:e0:7e:ac:af:d4:f6:b2:22:f5:7b:1a:87:
94:d2:ce:c9:43:97:04:0f:63:3f:b5:10:6f:a0:f1:fd:0a:49:
71:8a:cb:35:f9:7c:ad:65:10:64:c4:c4:18:ff:b1:14:24:97:
2b:d0:20:27:1e:a7:69:0c:0f:4b:da:e1:1c:43:ca:c0:8c:24:
f1:b0:f8:b0:df:b9:43:d5:c4:7b:e7:1f:fe:9e:15:d2:36:2f:
92:6b:34:d7:fb:2e:b7:9c:2e:9e:29:06:be:09:a1:95:c7:ac:
7f:1f:48:2c:19:9d:d4:c4:77:55:b2:28:4c:ab:01:a2:f0:68:
0d:42:3b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:14:41 2024 by rpki-client on console-ams.rpki-client.org