Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
File: hbfVzNrwMwl0l0V2QgCnJydkcwo.mft (raw, json)
Hash identifier: DontdI81UQM8A5bvFTbo7IXMHVbKr3QsMN/PozeNpyg=
Subject key identifier: C9:2A:49:3A:0A:74:55:E8:5F:BC:F9:8E:3D:1C:D8:63:E1:BB:87:87
Authority key identifier: 85:B7:D5:CC:DA:F0:33:09:74:97:45:76:42:00:A7:27:27:64:73:0A
Certificate issuer: /CN=85b7d5ccdaf03309749745764200a7272764730a
Certificate serial: 018F882422315F9674B54B85C15BF8C6F623
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
Manifest number: 1179
Signing time: Fri 17 May 2024 20:00:20 +0000
Manifest this update: Fri 17 May 2024 20:00:20 +0000
Manifest next update: Sat 18 May 2024 20:00:20 +0000
Files and hashes: 1: Ye2g34-8QSrKCVw_VU9H_PaUK7A.roa (hash: 4Po9MYXeKvj4243S6/flQZ5yoGlCI4F+OOE/a9HNaWs=)
2: hbfVzNrwMwl0l0V2QgCnJydkcwo.crl (hash: rDX7PLqaJZW5w2HoTxjv71QPqXMbmf6OekL/QCjKjiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:22:31:5f:96:74:b5:4b:85:c1:5b:f8:c6:f6:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b7d5ccdaf03309749745764200a7272764730a
Validity
Not Before: May 17 20:00:20 2024 GMT
Not After : May 18 20:00:20 2024 GMT
Subject: CN=c92a493a0a7455e85fbcf98e3d1cd863e1bb8787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:04:f0:4f:3c:a7:3d:bb:5e:e0:a5:77:df:
50:e3:a4:2a:cf:8c:70:35:2d:d9:97:a0:de:bc:fc:
7e:ca:2a:53:a8:95:38:69:aa:c9:fc:06:9a:65:7f:
5d:13:a7:03:e6:15:59:07:b1:7c:ed:25:77:70:55:
c4:89:02:ab:6e:92:fb:24:31:68:af:81:9a:73:6d:
02:11:c3:f5:1d:e8:38:7b:96:d9:fd:7e:1f:2e:fd:
3d:b0:d0:89:41:f3:e3:8e:e6:ad:03:7b:c7:b0:34:
90:a4:bc:c0:70:b7:1e:2a:3c:46:9e:36:15:92:41:
42:1b:37:ce:db:4f:ed:d9:50:6e:83:0a:c8:ae:6b:
e2:68:d4:54:c2:93:5e:92:a4:5d:1b:16:92:b2:52:
ac:d1:ab:df:2c:55:b9:57:7e:1a:eb:c2:c6:11:42:
49:aa:36:6e:0c:ab:64:e9:e4:02:e1:73:94:ad:5e:
ea:75:68:06:a5:dc:26:02:03:1e:5d:36:90:63:91:
59:39:25:6e:83:9a:e7:4a:b8:7a:40:4d:98:9b:9e:
a6:04:e9:a1:dc:0e:84:5e:8a:d8:17:e3:f0:1f:f5:
0f:4c:94:42:46:76:1e:ff:17:36:20:25:40:89:0b:
9e:94:a0:a8:17:7b:cd:d4:15:e0:03:d3:6d:37:9d:
8c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2A:49:3A:0A:74:55:E8:5F:BC:F9:8E:3D:1C:D8:63:E1:BB:87:87
X509v3 Authority Key Identifier:
keyid:85:B7:D5:CC:DA:F0:33:09:74:97:45:76:42:00:A7:27:27:64:73:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:43:fb:47:24:3a:e6:ab:71:70:04:7f:30:d3:f7:4c:51:92:
5f:8a:65:45:be:36:c9:98:27:68:f0:e2:31:dc:e5:e1:c7:40:
86:d2:bc:66:92:19:0d:c2:a0:ef:c9:2c:d9:03:72:58:26:15:
24:4a:60:b0:2f:41:29:67:41:bb:39:9d:3a:69:fa:bc:bf:4c:
f4:10:ac:c5:f9:c5:7f:bd:61:c4:f5:f8:88:95:09:69:98:b1:
32:61:42:f3:d4:8c:09:d1:ba:19:c5:6d:1e:16:ae:a5:03:87:
05:96:3f:a7:95:17:99:dc:6f:00:7c:89:ec:b1:bb:75:c9:9d:
36:b3:53:c6:9b:4e:0e:0a:ec:d2:c5:b1:24:6c:22:40:7e:df:
9b:3a:b8:72:cc:7a:2e:a3:c8:24:af:ca:9c:c0:34:42:f2:a4:
d2:e1:8c:f6:0a:8c:07:35:d9:12:f8:a9:b1:a9:19:72:15:97:
9a:eb:40:2a:a3:1f:71:72:16:27:6c:a1:d7:60:a4:82:39:5d:
57:56:c9:8a:03:af:76:b6:2d:c9:4b:4a:c3:05:56:57:f8:5a:
19:58:0a:b3:00:6b:6b:2c:83:89:db:82:59:69:25:02:30:01:
17:7b:d7:c4:cd:8e:b1:46:c2:1c:c2:59:d1:2f:1b:d7:f7:dc:
d8:63:c9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:03:07 2024 by rpki-client on console-ams.rpki-client.org