Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
File: hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft (raw, json)
Hash identifier: aQJThOE+0v8/DhJg9lB2Lr48B4TlfnUt1VIYH7yoUII=
Subject key identifier: 5C:85:2F:45:7E:D9:F7:13:B0:84:F3:E3:CA:E6:D5:DB:B3:8C:73:BF
Authority key identifier: 85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
Certificate issuer: /CN=85512d19d37946cd4c236f890469635751f5d904
Certificate serial: 018FB42234B2F1BE7D3CA6D5B41C3E32B14E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
Manifest number: 118A
Signing time: Sun 26 May 2024 09:01:31 +0000
Manifest this update: Sun 26 May 2024 09:01:31 +0000
Manifest next update: Mon 27 May 2024 09:01:31 +0000
Files and hashes: 1: hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl (hash: Rv5CnJLpfsWsO5yofVYudBrzNIKZizkosSV3gHp0u6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b4:22:34:b2:f1:be:7d:3c:a6:d5:b4:1c:3e:32:b1:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85512d19d37946cd4c236f890469635751f5d904
Validity
Not Before: May 26 09:01:31 2024 GMT
Not After : May 27 09:01:31 2024 GMT
Subject: CN=5c852f457ed9f713b084f3e3cae6d5dbb38c73bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:60:23:4f:c3:1f:ce:54:8d:d5:9f:c1:5d:84:
5d:ac:d7:80:7d:3e:bb:b4:9a:a9:84:93:a2:60:51:
69:2d:bf:10:c1:25:3d:32:a4:f1:26:e5:e3:c1:ad:
fc:da:98:bb:fc:97:3d:98:ec:c5:64:f9:cc:07:b1:
52:3d:b2:54:36:0b:a3:0a:4f:87:83:73:11:34:06:
4b:9b:e2:db:ce:cc:93:1b:c2:98:6a:4b:31:df:c1:
54:ea:84:1d:10:2a:af:c7:32:15:02:2c:ea:20:66:
28:d5:df:b9:49:6a:b4:ce:ac:a0:58:ca:11:be:6f:
24:13:7b:51:44:c0:7b:b9:9e:f5:f1:d0:5d:6d:d4:
3e:64:f8:2d:79:ca:af:a8:84:e9:d5:cd:6f:64:01:
19:ef:7a:f2:ff:c6:b7:04:d9:f3:7d:21:43:4f:8b:
57:e9:90:6b:b6:ea:4e:57:a7:6c:a6:b5:43:38:5b:
a7:41:6a:71:5e:69:2b:bd:24:86:ff:cd:7b:a0:fc:
73:36:d8:72:c4:c8:fa:fb:ec:ad:df:dc:3d:f2:17:
7f:ce:a7:3f:42:a9:d6:ac:cc:ae:59:60:71:22:99:
c6:98:da:16:40:99:5f:ec:7f:5d:e5:ca:fa:39:15:
e4:aa:c0:f6:a2:2d:3e:d2:73:11:51:ef:9d:0d:c3:
7f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:85:2F:45:7E:D9:F7:13:B0:84:F3:E3:CA:E6:D5:DB:B3:8C:73:BF
X509v3 Authority Key Identifier:
keyid:85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:78:99:5d:22:c8:95:c5:eb:4f:97:9c:aa:5c:09:97:74:66:
bc:10:0d:54:52:7b:00:5f:41:f6:56:cb:10:0a:c8:8c:68:ae:
db:cd:ab:f3:25:ec:3a:c0:8c:be:2b:71:85:f7:e4:2e:7a:8f:
d4:0d:4c:a3:1c:20:a1:5e:80:86:a8:e4:55:45:dd:db:ee:e4:
5c:3a:78:cd:9b:d8:61:22:e9:e9:e2:2d:c2:4d:d8:2e:b8:58:
08:a8:fa:ba:5e:24:e3:cc:4f:39:4d:8a:45:59:76:80:79:99:
3a:1b:76:6e:d6:f2:09:14:02:b5:cc:e3:6a:d0:32:ac:72:aa:
74:3f:11:bd:4e:4d:16:b8:a7:67:0f:89:5c:e0:ed:60:f2:8c:
65:83:9d:ee:35:63:3b:0a:af:a9:7e:c3:2f:66:c0:e9:68:f9:
c7:c5:57:13:61:09:59:4d:e3:5a:39:03:65:0a:b1:bc:07:50:
77:7e:d9:3a:76:1f:1c:4c:ea:42:cb:0d:b4:65:3f:85:9f:0e:
4a:84:30:72:6b:50:2c:b8:80:95:26:f2:f9:c0:63:9a:3d:e4:
6c:b6:7c:cb:9b:0b:3b:df:79:2e:78:4d:f7:c4:8f:08:b5:73:
5c:ce:88:58:1a:ff:1d:05:c1:df:39:65:e1:1d:a4:d6:3f:b5:
cd:a3:a7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 17:15:53 2024 by rpki-client on console-ams.rpki-client.org