Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json)
Hash identifier: ml/10vExMWosI0rSGjT1+Q7EDKEvk4+iQz39mma3z50=
Subject key identifier: 3D:51:1D:35:E7:43:AF:E7:6C:2B:A7:1A:9A:58:34:39:7C:13:2D:C6
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 018F3252614CA38BA562ACFD1ED2138D5642
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
Manifest number: 114E
Signing time: Wed 01 May 2024 04:03:30 +0000
Manifest this update: Wed 01 May 2024 04:03:30 +0000
Manifest next update: Thu 02 May 2024 04:03:30 +0000
Files and hashes: 1: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: TAlm6EUel5Af6i9gT7hIgx9hOwQNK8zmtT/F6XVgGfk=)
2: b265H0ZVNCPRVdDXryUTQvaqAPM.roa (hash: mrRPDt8OsdqKyRBimvrP4q6+bca+aUhXi8D2rArm5eM=)
3: xNgKUzUTB8K9wi4WxTPxBJ1YQK4.roa (hash: RNFX7ZH2Q3tCIIXn6I9hnLNAc37OF2ay9Gxo9HokUTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 04:03:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:32:52:61:4c:a3:8b:a5:62:ac:fd:1e:d2:13:8d:56:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: May 1 04:03:30 2024 GMT
Not After : May 2 04:03:30 2024 GMT
Subject: CN=3d511d35e743afe76c2ba71a9a5834397c132dc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:16:fe:c4:27:6f:3e:24:ce:a1:1f:93:de:b1:
1d:5c:50:d7:f4:6d:09:c1:57:06:49:c5:9d:8a:ba:
bf:ac:ef:fe:84:4e:7f:12:8a:a1:72:85:4a:ca:3a:
83:df:2a:e0:69:58:e5:71:77:20:6c:f1:19:bc:53:
64:8d:f4:5d:77:93:5c:b2:00:15:27:5a:1a:ee:ed:
82:77:d4:79:35:6c:cb:d2:30:b0:39:7d:a4:03:7c:
c3:f0:ad:12:31:25:3a:17:11:8b:c1:c3:22:2c:65:
ce:a4:f9:6e:c4:d8:eb:9b:b0:7c:cb:83:06:99:f5:
63:c6:d2:da:3d:a5:8f:44:60:ac:4c:dd:72:dd:5a:
82:4c:e6:48:60:2a:64:7f:8e:ae:95:f0:1a:5d:b7:
58:3c:80:4a:18:a0:a9:5b:64:16:e8:4d:a5:4e:86:
8d:5a:35:13:cf:d7:d7:f8:7f:e5:c7:23:f1:d7:1f:
d4:e7:9c:b3:3c:21:0a:65:d4:84:43:93:d3:34:01:
a0:bc:b1:e0:42:f9:02:f5:7e:67:36:cf:53:06:06:
bd:81:39:96:ac:60:93:fd:41:ac:9e:61:85:2a:fb:
ff:57:81:9a:fc:f4:30:1b:6c:de:22:79:7e:c8:f1:
fd:81:db:d3:8d:48:25:0b:d0:4d:fd:82:f7:b8:c7:
76:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:1D:35:E7:43:AF:E7:6C:2B:A7:1A:9A:58:34:39:7C:13:2D:C6
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:19:4a:ce:65:ac:6d:f8:56:9e:60:25:69:b4:de:bf:85:10:
24:89:ab:cd:4d:4c:94:8b:17:73:78:37:18:28:1f:a0:19:e1:
1a:c2:cd:a0:83:57:2c:2f:d8:cb:a9:59:cb:f5:51:26:e5:21:
f0:5e:1e:dc:46:9c:e6:e7:03:3b:c2:c6:02:34:d2:1a:f4:e4:
52:66:df:19:53:c0:4b:46:a5:77:8e:1a:92:ad:76:a7:a8:c5:
13:82:11:90:94:1b:13:4b:1f:1e:1a:c6:d8:48:a6:dc:2f:89:
d4:4a:0d:d5:1a:27:61:7b:76:ad:b5:e7:2a:af:8d:86:33:14:
fc:e8:f7:a3:66:fc:e2:20:cc:cd:7a:52:4e:3b:3a:1c:f7:2a:
a5:40:db:36:8e:14:2b:58:88:61:43:5e:48:fb:06:49:4f:ce:
60:48:2d:69:39:e9:e3:31:25:f8:db:c4:1d:b2:85:c0:8b:e1:
04:2e:0c:69:13:2c:f7:b7:dd:4e:4b:84:17:4c:4e:df:14:0d:
a9:4c:1c:6f:ff:69:e8:0f:d4:8a:99:60:59:ea:42:7d:a9:1d:
cb:d1:c1:47:f1:cb:6e:65:b7:93:15:34:f3:e9:c2:bd:73:d5:
c4:2c:85:1c:83:14:7c:b9:2f:cb:b4:de:f3:6f:c6:4e:49:9a:
d6:52:b1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 14:26:08 2024 by rpki-client on console-ams.rpki-client.org