Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: gTcr9Wkn6Az2szOBp0xytb3axBorhbV6uz9KT5MTzi4=
Subject key identifier: 21:A1:AF:9A:9B:C2:0D:91:DB:59:EF:2E:43:EF:D2:90:65:DC:B4:EB
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 018F2F4EB0AF8E6ED56DC02A7428C23942B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 114E
Signing time: Tue 30 Apr 2024 14:00:37 +0000
Manifest this update: Tue 30 Apr 2024 14:00:37 +0000
Manifest next update: Wed 01 May 2024 14:00:37 +0000
Files and hashes: 1: A8aD0MYc5-brnQ4jKEvsbku-T4M.roa (hash: eMUtiC7pZK80Mao116N2QqMGlwtM6lPKEqxy9Cc7ees=)
2: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: qfFD0v5Z5W95dggAijQ/TF94yihHAkNXbZagxDDD9P4=)
3: gd7PEizyKQcqH6jvmLoBHpHSumM.roa (hash: uGGJ4H30TTSIGd7z8bjzfqRGUHlEJyzjr0rtew4d0JY=)
4: uEUKpSCRpXURaC7TBZ_YD69b5QA.roa (hash: IXEZzo3rZctlJuS82O41cSYCl4NuOwraQtgUQAQ1tKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 13:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2f:4e:b0:af:8e:6e:d5:6d:c0:2a:74:28:c2:39:42:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Apr 30 14:00:37 2024 GMT
Not After : May 1 14:00:37 2024 GMT
Subject: CN=21a1af9a9bc20d91db59ef2e43efd29065dcb4eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:77:d5:1e:0d:d1:a7:2b:6c:ab:05:f1:97:7d:
e7:b4:13:dd:6b:3f:34:bf:5b:02:34:b9:ce:76:20:
b9:03:33:0e:40:75:e1:07:6c:be:38:04:8c:b6:d9:
11:d0:67:e3:53:b1:13:ab:69:8a:d6:d2:8b:c6:2f:
e8:46:71:b3:44:19:c4:84:f6:dc:a8:72:8c:e2:d2:
73:bc:57:8f:c7:0a:81:7d:44:f8:0e:01:4c:0d:01:
8d:ff:89:0f:02:73:38:d1:d2:90:40:3f:e8:c3:3a:
35:bc:2e:55:19:f0:2e:3e:00:43:8f:df:ad:08:a2:
7e:a2:c0:fa:b5:62:23:eb:e8:08:03:d1:32:fa:0d:
29:c4:73:87:06:3a:e1:b8:a6:16:89:1a:40:4d:67:
8f:1f:f3:1e:6e:86:d9:9d:6a:c0:6a:c7:b1:ea:16:
ad:14:43:67:61:a3:47:35:31:ba:10:c1:b5:04:76:
64:6f:af:8b:63:5c:83:91:d3:87:36:b2:94:c9:23:
7c:9d:10:61:14:4c:70:bd:e4:41:e8:fa:f1:21:59:
9e:96:76:73:97:ef:21:48:46:16:40:46:1b:2c:b2:
cf:be:eb:88:12:d8:a4:75:8c:3a:2b:7b:ab:5a:b3:
d9:f9:8f:79:d6:ab:3a:31:9b:e7:61:21:81:25:8e:
3a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A1:AF:9A:9B:C2:0D:91:DB:59:EF:2E:43:EF:D2:90:65:DC:B4:EB
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:78:03:02:bb:d2:c8:94:60:35:98:ba:53:6c:b4:bf:8d:9e:
d9:fa:a7:02:03:3d:1c:55:e0:4a:3b:04:6e:f5:30:fa:56:8e:
c0:18:25:ac:9e:90:ed:d2:9c:39:4a:c8:44:2b:26:54:03:fa:
b5:45:8f:38:c3:3d:4a:3a:53:f5:dc:a8:c5:41:0b:a1:f6:1d:
95:92:6b:e6:bb:dc:7f:70:7f:ad:eb:02:f4:95:6e:12:1c:6f:
e8:9a:f8:7d:a6:07:9b:67:bc:d0:3f:e2:6f:f1:0d:78:a9:53:
bf:b1:3c:41:d8:4f:25:54:a2:93:05:41:a1:8b:7e:dc:b9:cd:
cb:0c:f1:88:93:37:0d:86:a4:66:17:f2:b3:e2:88:df:5e:df:
90:40:0e:64:52:01:41:34:b6:15:41:41:4d:ee:f7:33:a8:fb:
09:a7:f9:87:f3:4a:a9:55:a4:04:85:3d:d0:c7:64:5a:f4:ca:
91:43:02:34:c2:91:67:f6:31:19:03:c0:5c:78:7a:23:a4:08:
f7:88:d0:89:2c:4a:d5:72:a8:5e:33:b2:ec:67:7c:ab:1f:03:
62:53:5f:15:68:48:48:94:10:b4:c8:fb:8a:46:fd:65:46:fe:
40:45:30:40:b3:a8:5d:b2:84:73:e0:0d:2b:a2:35:90:0d:9b:
92:7a:e7:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 20:17:44 2024 by rpki-client on console-fra.rpki-client.org