Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
File: HIivL0NlSz9FLVx07QdHElcNH94.mft (raw, json)
Hash identifier: XClmnMhDDZvTRmO5KHUKi97MEs7fNSm1p4niXKPy4i8=
Subject key identifier: 18:BA:60:D0:F6:6F:99:CB:30:3A:B6:87:70:DE:53:9F:23:FA:16:21
Authority key identifier: 1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
Certificate issuer: /CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Certificate serial: 018F45A17D3FFFE82E624263BEAA4ABA4948
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
Manifest number: 1157
Signing time: Sat 04 May 2024 22:02:42 +0000
Manifest this update: Sat 04 May 2024 22:02:42 +0000
Manifest next update: Sun 05 May 2024 22:02:42 +0000
Files and hashes: 1: HIivL0NlSz9FLVx07QdHElcNH94.crl (hash: KaRa1l4auvYz7tm3obFPVPy88Kz+10Q9nLCVX4nA6SU=)
2: nF2TmzZqC6Ka7ITKfC35HhUktmw.roa (hash: Kg8vy6gcf1fjtLgnZVAOJAkzNku3Tlpq629Fx/r2idk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:45:a1:7d:3f:ff:e8:2e:62:42:63:be:aa:4a:ba:49:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Validity
Not Before: May 4 22:02:42 2024 GMT
Not After : May 5 22:02:42 2024 GMT
Subject: CN=18ba60d0f66f99cb303ab68770de539f23fa1621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3f:95:8a:ce:f3:cc:0c:cd:2c:f7:0a:ff:33:
67:f1:e3:19:b9:e1:1f:86:fd:a7:db:96:ae:b7:b2:
bd:51:65:ac:f9:17:92:00:a1:74:ee:d3:10:fc:6b:
b8:10:b2:06:58:a6:b5:b6:70:f0:1c:71:4c:9d:b4:
ce:fd:55:79:67:6a:44:57:13:ec:ac:e8:be:a6:28:
46:77:70:51:39:16:cc:a0:f8:de:28:82:46:0a:26:
42:19:59:6b:8e:94:83:fd:cc:45:aa:21:4d:f2:73:
9a:35:28:1a:15:27:e8:4d:12:cd:4f:c1:e9:73:ac:
d2:8b:27:25:6f:e9:ad:9a:09:7e:92:1b:0e:e9:af:
7a:5a:dd:41:59:b4:4f:67:84:60:f7:d1:29:69:5c:
e5:53:54:21:66:4a:a4:d8:7c:c9:12:4f:7f:87:8c:
ab:c4:87:96:5b:82:e0:4c:a8:2d:3b:15:55:3b:5a:
6f:df:86:6d:bd:c1:09:5c:b2:c0:c5:92:15:44:d5:
1d:70:c7:50:7b:70:c0:8f:e3:16:58:90:4a:52:41:
f8:76:2b:ae:0b:75:7a:59:fd:cc:40:ca:4b:d8:55:
ca:64:a3:e7:5c:c0:1f:4a:cb:29:6e:f6:5f:81:b0:
14:c5:95:13:43:c4:0d:7b:16:78:1c:67:36:27:70:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BA:60:D0:F6:6F:99:CB:30:3A:B6:87:70:DE:53:9F:23:FA:16:21
X509v3 Authority Key Identifier:
keyid:1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:cf:c3:25:b1:73:6f:98:40:34:ef:2c:53:a1:50:6c:a9:6d:
f0:a9:b3:79:31:89:9c:33:6e:c9:73:e9:30:46:cd:9a:09:f8:
7d:6f:72:52:ee:2b:d0:11:83:7c:1c:5d:69:bf:17:9c:1f:bb:
68:44:73:6e:7f:3c:7d:f7:27:ff:38:df:c7:1d:c0:85:94:6b:
5f:f9:42:f9:02:f4:f3:40:b5:b7:77:ac:e6:8c:95:52:00:ee:
38:a4:6b:2a:d2:8c:e5:97:a8:24:0f:67:23:a9:81:e2:2e:83:
e8:95:ed:03:9f:4b:fe:2e:f4:0f:f2:58:11:83:02:28:69:01:
45:16:9e:01:e1:75:c2:18:e0:63:f2:c1:30:15:a0:73:06:14:
c4:26:36:b8:9e:8e:99:8c:fd:41:02:4a:a5:ac:7d:79:41:93:
3c:47:86:95:6d:96:ac:e1:f7:83:8b:5b:3d:5d:18:a9:e7:b2:
ba:86:06:08:80:18:f1:f3:e4:eb:9e:77:c3:f8:bc:57:bb:a6:
bb:01:f2:90:86:a2:b5:2c:81:1a:44:95:69:a7:8b:01:15:1c:
3b:49:f6:9a:56:e9:80:08:b3:13:77:18:8c:95:01:3c:cd:0b:
7d:13:e9:8b:da:b6:b2:c4:83:32:71:90:93:fe:9d:9b:8d:f0:
42:dc:36:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 00:29:51 2024 by rpki-client on console-fra.rpki-client.org