Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json)
Hash identifier: 1pYSb+USQ2X0fa4Q7yFj7DAzaEV9ZfdNqAxLOQ0oHU8=
Subject key identifier: B8:53:75:FB:A7:C2:B2:17:05:FF:B8:07:6A:A3:D0:48:5E:0A:5C:00
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 0193523DF6CC9C734B56EF1CC0D134A5A8E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
Manifest number: 1371
Signing time: Fri 22 Nov 2024 05:00:12 +0000
Manifest this update: Fri 22 Nov 2024 05:00:12 +0000
Manifest next update: Sat 23 Nov 2024 05:00:12 +0000
Files and hashes: 1: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: A0s/xj/Hr+6qsE9fntIRjlUbWlnRtzAOEiB70/v8jCI=)
2: b1mjXNUy_kbilXeI6bW9MLF_rQw.roa (hash: yQUul9KH/Fdpw+pT7gzj+SM0iyDJH7zHdeaQQ+b3/9w=)
3: b265H0ZVNCPRVdDXryUTQvaqAPM.roa (hash: mrRPDt8OsdqKyRBimvrP4q6+bca+aUhXi8D2rArm5eM=)
4: xNgKUzUTB8K9wi4WxTPxBJ1YQK4.roa (hash: RNFX7ZH2Q3tCIIXn6I9hnLNAc37OF2ay9Gxo9HokUTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:3d:f6:cc:9c:73:4b:56:ef:1c:c0:d1:34:a5:a8:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: Nov 22 05:00:12 2024 GMT
Not After : Nov 23 05:00:12 2024 GMT
Subject: CN=b85375fba7c2b21705ffb8076aa3d0485e0a5c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:16:5d:09:4a:07:de:8d:b7:a1:8b:9d:fc:9a:
05:b2:55:3f:52:09:6d:9c:c0:8b:7b:42:75:ef:b6:
e9:bf:da:db:57:11:fa:cf:8f:9f:a8:3b:ba:48:d9:
95:c8:06:9f:06:5a:02:fb:96:cd:a1:28:03:b4:70:
82:e4:d8:99:9f:9a:15:fb:ab:4d:39:2a:49:f4:5d:
57:40:f7:06:be:eb:79:ec:7a:61:9d:42:ad:a0:3a:
e7:31:b8:19:b8:f1:19:ee:26:04:4e:2a:f6:c4:33:
d3:86:67:1c:43:d3:a3:45:b1:f3:b2:04:65:83:41:
5c:19:cf:b5:c1:ab:a7:38:e1:9e:7d:0c:73:d7:29:
8a:ce:a7:e8:46:f0:ff:09:a4:25:71:fd:99:86:e6:
30:a8:5e:d6:2a:1a:89:14:ee:8e:41:e2:47:2d:fc:
cc:21:f3:6f:10:44:e1:86:0c:f4:b8:94:07:50:04:
ab:20:8d:c0:8b:6c:e7:4f:9c:89:e2:66:40:ac:12:
73:01:7e:13:bc:6f:c2:4d:80:00:63:b5:fa:2a:e4:
5a:5a:ca:e2:c9:3a:a2:08:fc:91:a8:30:e5:60:e0:
a2:6a:db:c5:4c:2c:2e:43:34:ca:e7:31:f9:42:cc:
e3:1d:81:de:68:59:95:53:7d:ad:63:fe:21:37:36:
eb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:53:75:FB:A7:C2:B2:17:05:FF:B8:07:6A:A3:D0:48:5E:0A:5C:00
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:fe:bc:bb:cf:4d:59:74:4d:db:44:07:bc:e3:be:f4:0b:3c:
dc:62:3a:26:44:d4:20:2f:a9:c6:c4:f8:9b:bc:ac:8c:68:d8:
ee:50:43:e4:8d:46:f7:2c:88:0a:06:75:c1:4d:c1:26:69:82:
23:8f:83:1b:b6:c2:d6:e9:b5:ad:76:80:85:a6:a3:8a:11:87:
74:c9:1c:87:2b:45:5f:23:dc:d5:61:57:4c:d0:bb:6c:5c:61:
1c:57:60:05:d6:74:8c:a9:cb:fc:64:36:60:0c:bf:2c:02:bf:
6a:7e:20:ab:61:89:3b:08:96:68:2a:53:23:f4:04:c6:86:a1:
c6:9d:60:76:d7:8c:f7:7c:4a:6c:de:76:3c:e1:ea:9b:ea:9d:
31:a0:00:8b:45:07:15:ce:d8:4b:f4:02:36:6b:9d:77:c6:07:
10:0a:53:31:1b:d7:06:85:55:67:84:49:7a:b4:8d:f6:94:78:
e3:10:8b:9b:d2:74:c0:e3:52:8e:6d:31:1d:c8:74:f1:12:a7:
2b:2f:4e:96:74:40:b0:4b:66:53:26:86:2c:c7:00:25:17:af:
fe:6c:07:e6:ad:a1:5b:bf:bc:11:8d:04:11:58:e4:33:f5:66:
49:44:90:b0:be:42:28:92:51:7f:dc:2b:b9:8d:12:54:4d:8b:
e0:88:b0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:40:48 2024 by rpki-client on console-ams.rpki-client.org