Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: GnO9oiY0xsTfxC2AMaDpWbJGsFHAnY4qvGLmXPOKZZ4=
Subject key identifier: B1:7D:71:1D:17:32:A0:0A:A1:B6:4A:36:75:92:40:0E:7F:E9:03:D4
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 018F47FC9A0E1758C722FCFBDED51F7606A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 1156
Signing time: Sun 05 May 2024 09:01:27 +0000
Manifest this update: Sun 05 May 2024 09:01:27 +0000
Manifest next update: Mon 06 May 2024 09:01:27 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: ATsgNQi8f0jVI/Kguv0p/WV+FEp1xr3+Z/q7h7AY7QM=)
2: rpbmrZHZIGrpxRzULVKjF2Cni6c.roa (hash: 2iSTWhQbLgPjJ51CvpMHWSbhkkmuW4cm/6Xplt1vdTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:47:fc:9a:0e:17:58:c7:22:fc:fb:de:d5:1f:76:06:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: May 5 09:01:27 2024 GMT
Not After : May 6 09:01:27 2024 GMT
Subject: CN=b17d711d1732a00aa1b64a367592400e7fe903d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d2:d3:c7:90:3b:82:69:10:15:db:18:ed:63:
cb:74:b5:12:57:7f:48:66:ca:df:dd:71:95:79:ba:
b4:5e:23:3d:2a:c7:06:1f:65:2e:13:ef:c2:66:07:
f8:77:77:dd:f2:74:bd:0d:9e:13:29:3f:d5:be:60:
c2:92:e5:ed:a5:3f:ac:1c:0b:45:af:0a:19:94:fd:
9e:9e:81:fc:7d:4b:c0:ae:6f:e0:93:88:aa:32:ff:
0e:a8:ed:98:12:0e:d7:99:6a:f9:33:41:8e:2f:4a:
5e:3f:0a:af:9e:2f:57:66:74:0a:3f:0f:98:86:ba:
f6:bd:00:f0:a7:60:ad:62:a6:e1:a4:1a:0f:89:fd:
50:c7:ad:de:7d:39:5a:ba:bd:94:a8:f8:3a:9c:e1:
7f:34:24:57:33:7b:72:9c:ae:24:6e:b3:da:c2:b6:
8d:25:aa:a5:c9:9e:b3:f6:44:2a:0d:8e:b1:4e:22:
b6:b1:a3:6a:93:ae:01:7b:07:e6:d5:07:bd:18:00:
ad:78:d6:33:a8:08:bc:74:16:5d:5b:ba:a9:fa:00:
4c:6a:b1:e4:ec:0f:51:10:0e:21:2a:5d:24:11:9d:
26:33:a9:9f:bb:7c:fc:c1:6f:07:6e:79:7f:82:39:
2d:62:fc:9a:a6:98:dd:7b:6d:10:e7:67:60:ec:94:
80:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7D:71:1D:17:32:A0:0A:A1:B6:4A:36:75:92:40:0E:7F:E9:03:D4
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:86:6f:10:bb:92:a8:b4:f9:63:8e:f1:ee:f3:7b:ee:59:1d:
e5:c6:dc:7c:61:b4:94:a3:f2:93:91:b9:95:d0:38:da:08:b8:
00:8d:ca:cc:ff:ed:23:3b:bf:d1:d1:1e:5e:e7:b5:49:8c:5b:
81:05:f8:23:c1:22:82:69:68:08:3e:75:6a:7e:1d:bc:31:19:
a6:21:0f:7f:db:e2:92:dd:8e:94:a5:b6:0a:7c:21:ec:72:8e:
00:d0:74:f2:3d:99:9a:99:76:f7:5f:34:90:e8:20:a8:25:19:
86:4b:72:ba:d3:14:d4:a3:65:b2:0d:ba:4c:a2:64:ed:67:25:
73:4e:b9:1f:24:8d:21:ae:91:63:82:34:7e:07:99:24:b7:b0:
6c:c2:ca:be:7b:b3:03:bc:ae:44:a6:2e:e0:d4:43:89:3b:41:
a6:e5:bb:22:4d:29:53:42:12:e6:ce:e9:a3:8e:24:5c:02:74:
94:77:3a:f7:fb:33:78:f0:4b:9c:bf:32:83:f5:7c:c3:10:b3:
70:9b:4b:4e:d3:3d:f3:96:79:63:ff:ec:56:56:a0:8d:2d:eb:
ad:d5:45:4d:f2:87:b2:dc:76:36:2e:c5:53:97:7c:93:ec:bc:
e1:af:e7:51:03:2f:78:68:fc:a9:37:13:95:9c:e0:6f:7d:8c:
5f:a7:eb:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 12:22:23 2024 by rpki-client on console-ams.rpki-client.org