Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ae0c68-8dce-4da4-96aa-15605ac6dd62/1/Ha03U-KHlOH4gxrnEAYLEaYzdu4.mft
File: Ha03U-KHlOH4gxrnEAYLEaYzdu4.mft (raw, json)
Hash identifier: IYBAtxt2UHNWGhnroq6qkk9jucG0uDd2jEcP9b+xPH8=
Subject key identifier: 86:C4:D2:39:BD:A3:AA:B9:56:07:4D:62:61:3D:C2:5C:1F:46:AA:0F
Authority key identifier: 1D:AD:37:53:E2:87:94:E1:F8:83:1A:E7:10:06:0B:11:A6:33:76:EE
Certificate issuer: /CN=1dad3753e28794e1f8831ae710060b11a63376ee
Certificate serial: 018F351A713AD4E8DF371BC3699D55EC360F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ha03U-KHlOH4gxrnEAYLEaYzdu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ae0c68-8dce-4da4-96aa-15605ac6dd62/1/Ha03U-KHlOH4gxrnEAYLEaYzdu4.mft
Manifest number: 09E8
Signing time: Wed 01 May 2024 17:01:16 +0000
Manifest this update: Wed 01 May 2024 17:01:16 +0000
Manifest next update: Thu 02 May 2024 17:01:16 +0000
Files and hashes: 1: Ha03U-KHlOH4gxrnEAYLEaYzdu4.crl (hash: g3tNSVJcSlnKrKJsOLfofo2Xy5Fd69z3XVwWhE6xB8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/ae0c68-8dce-4da4-96aa-15605ac6dd62/1/Ha03U-KHlOH4gxrnEAYLEaYzdu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/ae0c68-8dce-4da4-96aa-15605ac6dd62/1/Ha03U-KHlOH4gxrnEAYLEaYzdu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ha03U-KHlOH4gxrnEAYLEaYzdu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:1a:71:3a:d4:e8:df:37:1b:c3:69:9d:55:ec:36:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dad3753e28794e1f8831ae710060b11a63376ee
Validity
Not Before: May 1 17:01:16 2024 GMT
Not After : May 2 17:01:16 2024 GMT
Subject: CN=86c4d239bda3aab956074d62613dc25c1f46aa0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a8:21:f2:9e:12:d0:71:78:3a:28:af:60:1a:
c5:31:6d:d6:a4:ff:dc:92:3a:f3:11:f6:eb:c7:0e:
3c:7c:95:61:82:e0:43:1c:67:c9:9d:f0:83:d3:a4:
d1:c3:c1:b6:4e:21:da:0d:8b:4d:4d:16:9a:a8:61:
69:19:b0:63:f3:2e:98:bd:f1:ee:6d:d4:28:37:94:
33:a2:5a:9a:00:fc:4c:4f:a1:d6:05:35:d1:1a:c2:
10:e8:ec:e9:a8:af:12:0d:9d:90:56:f0:60:a0:a0:
cd:4f:6a:b1:c5:a9:79:ab:ce:e6:01:a8:0a:8f:e8:
bc:dc:74:8e:d2:b4:5c:e9:b1:5c:75:4f:b4:74:80:
79:19:be:55:8d:57:c9:27:07:a4:8e:8f:9d:b5:b1:
8d:2c:a3:08:56:81:18:fb:78:ad:77:83:03:26:b8:
0b:fa:89:24:bc:14:d2:f2:f7:bb:ea:a2:7d:4b:28:
89:b7:d6:7d:81:27:36:48:fe:9b:1a:f5:dc:a0:56:
17:d9:ca:4c:f6:d3:fb:93:9f:76:7b:49:b4:96:e0:
43:ea:86:2b:b0:0b:53:6d:da:82:ea:98:56:ed:0a:
7e:e2:7a:9c:b6:d3:43:00:3c:69:05:20:d3:b0:87:
99:d7:31:a8:c9:ee:bb:23:a5:85:f3:58:38:8b:da:
8c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C4:D2:39:BD:A3:AA:B9:56:07:4D:62:61:3D:C2:5C:1F:46:AA:0F
X509v3 Authority Key Identifier:
keyid:1D:AD:37:53:E2:87:94:E1:F8:83:1A:E7:10:06:0B:11:A6:33:76:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ha03U-KHlOH4gxrnEAYLEaYzdu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ae0c68-8dce-4da4-96aa-15605ac6dd62/1/Ha03U-KHlOH4gxrnEAYLEaYzdu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ae0c68-8dce-4da4-96aa-15605ac6dd62/1/Ha03U-KHlOH4gxrnEAYLEaYzdu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:75:14:61:ec:64:06:d4:3e:44:28:1b:28:c3:d5:12:35:02:
8d:37:dc:33:32:fc:47:3d:70:33:b5:9c:9c:3e:12:87:36:8b:
f2:4b:b9:1d:37:6d:f4:cb:05:c6:65:e5:67:dd:3e:a8:fa:8e:
50:35:70:53:ce:57:38:87:10:64:f1:5d:7d:9f:fe:1f:78:d9:
72:3f:86:de:e4:0e:f5:c9:37:9f:d6:f7:26:ab:e3:cc:4b:3b:
0c:fc:37:87:88:81:c6:58:f7:83:94:5a:40:40:e7:6a:17:62:
a3:9b:a3:f8:20:bd:bd:4e:75:1a:97:aa:88:42:f2:ad:b7:1f:
7a:02:23:c7:24:82:5f:a4:60:bd:12:8c:b3:20:ae:12:1a:ee:
32:d1:eb:88:83:04:ee:0f:c5:74:f6:b5:9b:8a:ea:a9:cf:76:
69:df:a8:cc:9c:e3:fd:de:c0:85:77:7b:e8:15:04:14:db:2e:
84:fc:5c:a9:29:e6:c3:65:bc:f7:38:07:0d:e5:6a:01:0d:5c:
f1:3d:fd:c3:c9:3f:e2:f1:a7:b6:94:4c:d1:2d:42:8d:cb:0b:
16:cc:ca:b2:dc:f2:8d:31:ec:6f:16:b6:82:96:48:68:ba:c3:
42:8c:90:23:b1:95:25:e7:9f:37:48:96:ec:32:c5:f2:d0:08:
d8:3a:41:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 21:43:35 2024 by rpki-client on console-ams.rpki-client.org