Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: VlFLK0mpIE6Dzib+wbdZrrihyqgxpGWdp8DvJ8HU5rg=
Subject key identifier: AF:98:4E:5D:3E:F5:23:DF:DD:C5:ED:E4:3A:08:BD:65:FE:7C:FD:32
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 018F8749FAA22639FC74E570064EF1F8FF7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 0490
Signing time: Fri 17 May 2024 16:02:03 +0000
Manifest this update: Fri 17 May 2024 16:02:03 +0000
Manifest next update: Sat 18 May 2024 16:02:03 +0000
Files and hashes: 1: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: zUDbrfM7nwUuSnEYqnSSdzHiWgMB9OolcLdh7Tvgnk4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:fa:a2:26:39:fc:74:e5:70:06:4e:f1:f8:ff:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: May 17 16:02:03 2024 GMT
Not After : May 18 16:02:03 2024 GMT
Subject: CN=af984e5d3ef523dfddc5ede43a08bd65fe7cfd32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:24:e3:1c:cf:3a:e1:fc:2c:e7:ce:f7:57:43:
ea:a8:b8:c5:74:42:60:32:dc:c8:d9:46:d6:7b:0c:
f0:ef:ec:82:6e:29:43:72:ab:32:d6:39:10:b8:a6:
68:37:55:fe:2b:2f:40:df:1e:f6:3b:8f:44:cf:8a:
2f:98:ef:be:a8:a3:fa:14:d7:67:b3:98:70:9e:8f:
84:88:ad:05:4e:3a:0a:be:e2:da:6d:c3:9b:f8:d2:
cc:00:11:17:46:4a:3e:2b:86:38:c6:71:75:9f:b3:
09:e6:e4:12:a4:1b:f7:d4:ee:ee:62:85:68:91:38:
26:9a:46:ed:ef:3e:de:70:47:5d:c2:a0:4d:18:18:
51:11:fb:21:bd:49:31:ac:73:d9:cd:04:5a:5d:f6:
ae:6b:6d:8a:30:dc:03:c7:57:77:09:15:b3:26:60:
a9:49:f0:79:3f:bd:d8:26:7b:4f:6e:ac:b8:44:a3:
4e:4b:0f:6e:b1:5f:32:0d:d6:93:45:b2:d2:fd:1b:
11:48:19:18:6a:76:cf:ef:04:2d:3d:41:ed:9d:d3:
c8:39:02:7d:a0:05:d7:41:70:b0:eb:6d:2d:5d:ef:
e7:df:0b:88:03:fc:1e:f3:56:82:13:a1:eb:66:e4:
64:52:26:62:d7:4e:14:cf:ca:bb:fd:06:79:8b:d9:
6f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:98:4E:5D:3E:F5:23:DF:DD:C5:ED:E4:3A:08:BD:65:FE:7C:FD:32
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:46:59:0c:cf:47:ba:f9:45:db:4a:c5:0c:11:17:16:08:d3:
cf:58:73:ed:36:82:4f:1f:95:75:d3:1f:1c:59:7f:67:c8:78:
4b:00:c0:c0:2c:b0:e3:b8:79:e1:28:ed:99:f8:8e:8d:10:ea:
d2:ed:9a:7b:88:90:99:af:f7:a7:2e:db:95:20:34:fd:c1:69:
64:4d:62:8e:e1:ff:65:b5:4a:91:99:5b:8c:1d:a2:9c:93:70:
f6:02:74:ba:e5:6b:c1:21:9f:54:00:11:ad:dd:a8:be:71:00:
70:f8:83:a5:83:5b:70:f4:88:44:26:8a:86:c0:5e:05:c9:b1:
0c:5d:56:57:7c:f2:a7:8d:6f:be:34:a8:2d:b2:3b:2c:4c:18:
35:3d:11:c0:2d:d1:e8:05:ef:2e:34:46:ba:8e:46:2d:6f:8d:
06:61:0a:ca:9b:6f:27:e7:ad:55:ab:16:37:b5:98:1b:6a:4a:
af:59:36:b0:42:3c:30:d2:77:4a:18:06:08:d4:57:7d:9e:09:
f0:af:4b:81:9f:90:16:9d:2f:e2:28:22:52:71:97:8f:12:a4:
83:49:e5:54:f3:56:f9:ad:1c:d2:b2:ac:d4:2b:e9:41:76:f8:
cb:18:c6:87:65:c5:d4:3b:44:83:68:91:97:d3:02:74:ff:5f:
35:34:f8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:21:36 2024 by rpki-client on console-ams.rpki-client.org