Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
File: hkl2gukwfEaHk1AIFzFH0TKijGQ.mft (raw, json)
Hash identifier: DAMtTYi6YGDJevwVRCyyUFI59uBvzVFjZAiuT56syag=
Subject key identifier: 17:0A:4C:71:7C:02:67:5C:C2:9E:19:62:1F:FB:44:00:29:08:6C:D6
Authority key identifier: 86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64
Certificate issuer: /CN=86497682e9307c4687935008173147d132a28c64
Certificate serial: 018F874883A53B004F9BFCD752DB0F490846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
Manifest number: 0D44
Signing time: Fri 17 May 2024 16:00:27 +0000
Manifest this update: Fri 17 May 2024 16:00:27 +0000
Manifest next update: Sat 18 May 2024 16:00:27 +0000
Files and hashes: 1: hkl2gukwfEaHk1AIFzFH0TKijGQ.crl (hash: XoBEjXGfyVSKqnvO+pvn8pVqVxJwbpeJtKpS4e8FUMs=)
2: kHEe7MWhgj-ps3QL70Tk2podQIc.roa (hash: tGP05BevM5EJG+J3f/rzjFOBycK9cangwaiNYo9tX/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:48:83:a5:3b:00:4f:9b:fc:d7:52:db:0f:49:08:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86497682e9307c4687935008173147d132a28c64
Validity
Not Before: May 17 16:00:27 2024 GMT
Not After : May 18 16:00:27 2024 GMT
Subject: CN=170a4c717c02675cc29e19621ffb440029086cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5b:7f:32:cd:7a:c9:0f:d7:56:17:c3:4b:f9:
e7:9b:88:52:9f:be:1a:d5:79:a8:2c:46:af:0e:5b:
2b:55:b1:3a:cd:b2:d6:ea:b0:f8:b5:89:bb:a8:fb:
bb:a2:25:40:67:66:c2:93:ec:82:e2:cd:ea:dc:8e:
8b:e2:ad:e6:1b:17:de:13:38:49:77:46:4e:5d:3d:
af:3a:ad:08:6c:04:9a:65:a5:f2:5d:02:1d:e9:5f:
c1:2b:01:67:3b:61:2d:17:58:32:4d:9d:87:02:9d:
04:1d:3c:ad:55:94:cc:0f:c0:e3:b4:90:8a:7a:5e:
59:ef:06:f4:2f:e2:c4:e5:ca:e7:55:a8:ea:34:3d:
62:d3:71:88:37:b4:7e:3d:ea:ef:2b:1d:70:91:fa:
4e:08:05:94:a9:4f:dc:b9:71:3f:48:88:e6:77:f0:
dd:61:2b:ed:2e:16:d7:b2:b1:d2:d2:35:75:04:7a:
97:ab:3f:8a:e4:e3:f1:aa:9a:3a:6f:a5:e6:c8:ae:
b5:23:38:f1:ed:ad:89:53:bb:52:c2:11:71:75:de:
c9:00:c2:2b:45:f2:85:ce:37:f0:c9:e0:b1:b0:e6:
6b:35:2e:8d:eb:14:17:d5:a7:5e:a8:9d:22:11:bb:
e7:a1:cf:28:98:66:f2:a2:26:42:f8:a6:3d:2a:65:
37:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0A:4C:71:7C:02:67:5C:C2:9E:19:62:1F:FB:44:00:29:08:6C:D6
X509v3 Authority Key Identifier:
keyid:86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:66:e9:1f:aa:d4:4d:c5:67:a7:c3:38:a4:2d:83:4e:6e:a2:
70:b3:47:38:6c:c2:c1:ed:a3:59:01:89:a3:1d:61:5f:66:53:
8b:a8:57:3b:33:39:6e:60:c3:79:0f:0c:09:46:d9:8b:e9:3e:
25:6c:ca:99:58:13:ef:44:80:8c:e3:05:7c:70:e8:00:27:7a:
34:01:da:c3:f5:b9:43:b1:3d:38:be:72:6f:a7:13:06:b6:36:
84:de:42:3b:40:ca:3a:19:8d:b2:49:d3:33:97:cb:51:e4:d9:
54:48:65:5c:59:38:55:31:74:fe:36:94:ab:3d:0d:4a:ba:c6:
9a:5f:f5:12:1b:85:d4:ce:f9:60:e5:50:2c:96:50:99:2c:49:
ec:1f:b8:2a:8b:9b:d4:5c:f7:ab:0d:7c:15:12:df:31:5a:61:
44:57:7f:f0:d0:86:0d:74:1c:29:6b:8a:47:b7:6c:3b:f2:ce:
20:e1:95:70:4e:ee:82:56:f4:d8:3c:8f:28:cb:61:b9:ac:37:
83:2f:41:92:20:94:4a:92:49:56:bd:e1:b0:4d:ee:cd:2e:18:
16:9f:81:18:0d:fa:c2:7f:04:0e:60:b8:c1:1d:0f:40:49:51:
b0:3a:fe:9a:bf:60:38:36:67:3d:c8:2f:83:9c:21:05:32:62:
53:8e:09:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:45:12 2024 by rpki-client on console-fra.rpki-client.org