Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
File: HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft (raw, json)
Hash identifier: izSfW1MP2n5hgwAEez3UNMQiOnxJMrhJAB8HnviQfBo=
Subject key identifier: 9D:87:63:BC:FC:66:A8:F4:97:4F:19:07:4F:4A:0D:85:3A:03:F9:07
Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Certificate serial: 0192376EC97ABBF55AB668DF3D835693ED49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
Manifest number: 0F01
Signing time: Sat 28 Sep 2024 07:01:00 +0000
Manifest this update: Sat 28 Sep 2024 07:01:00 +0000
Manifest next update: Sun 29 Sep 2024 07:01:00 +0000
Files and hashes: 1: 4HGsqSXDicxQcWWFpHRdr_LfRhg.roa (hash: ZX4oi/fjz5eAFeZVMiZBMHhS8q7SKTC4SiN8mNZAzAw=)
2: HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl (hash: j6ZMb4xXcjQhNeogk8913pel/NpybjV2DkJuB+j1M38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:37:6e:c9:7a:bb:f5:5a:b6:68:df:3d:83:56:93:ed:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Validity
Not Before: Sep 28 07:01:00 2024 GMT
Not After : Sep 29 07:01:00 2024 GMT
Subject: CN=9d8763bcfc66a8f4974f19074f4a0d853a03f907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:93:ed:ba:3a:8b:9e:a4:82:f2:bc:31:2b:57:
f8:7b:92:3a:6d:c7:fc:e0:27:31:ec:bf:92:40:6f:
0f:e8:6e:39:cc:2e:ee:39:5c:0a:ef:31:16:97:23:
0c:25:70:35:26:d3:56:31:d0:98:d1:f2:ce:48:0d:
08:40:e3:d7:e0:a3:ff:a7:50:2c:f3:a2:e0:95:73:
45:99:ce:f4:41:94:af:ef:3d:47:1b:6b:89:b3:c4:
10:f6:7e:8c:3b:86:6c:f9:75:d3:ab:66:5c:fa:6b:
60:23:f5:5d:83:6f:41:33:58:28:15:e0:e2:2b:da:
26:50:3c:c5:c4:6f:b0:4b:4d:01:c4:57:76:e6:06:
d4:d9:49:2f:30:53:b2:7e:32:e5:98:a8:25:30:ae:
a5:cb:54:de:19:b7:a4:bd:c4:e1:d4:bc:49:d2:e0:
09:ed:dc:f6:e7:1b:95:5a:5a:f0:c7:c4:e3:0c:e7:
78:e8:8e:67:a5:b3:78:b0:8b:7a:e9:1f:93:41:2a:
a4:78:d1:63:17:f6:a5:24:a6:f5:bd:c4:f0:18:de:
ca:0c:fd:15:ed:2e:31:6b:27:4a:cc:35:e9:57:bf:
fa:0c:9d:3e:6b:82:0d:3c:f3:f7:05:7c:2f:11:a7:
3c:0b:0d:4d:c3:f5:89:9b:18:8b:26:7d:aa:33:45:
77:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:87:63:BC:FC:66:A8:F4:97:4F:19:07:4F:4A:0D:85:3A:03:F9:07
X509v3 Authority Key Identifier:
keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:e9:32:c7:b6:f0:8c:bb:23:c8:51:4c:1f:17:49:dd:00:84:
23:2f:b6:e6:34:e0:38:4e:4b:0a:f3:51:18:5b:63:bd:fb:15:
57:b8:e6:64:91:d7:32:c0:b3:8d:e8:d3:45:b3:26:c1:b2:9d:
49:7d:44:d1:38:82:d6:39:1c:17:dd:cb:f5:aa:8a:66:04:6a:
05:fb:e1:38:a9:83:0e:60:2f:c8:13:a2:5f:2f:d6:d5:89:1d:
d7:e8:b5:23:28:78:3c:69:d0:7c:b3:80:6f:f9:29:27:e9:1c:
77:aa:4e:65:d9:e1:26:7e:4d:26:3c:7d:59:00:a2:51:89:57:
08:da:b9:9d:fa:72:d6:4c:f5:b4:9c:14:1b:77:74:b3:dd:38:
ce:2c:4d:cb:55:9a:e4:e9:29:7e:ab:75:91:94:0a:c5:e6:39:
62:e7:ed:eb:de:e6:7a:fd:ee:d5:8d:a5:9a:2d:09:ea:c8:51:
fc:bc:f0:90:be:26:2d:5b:1d:66:db:4f:c1:20:81:86:f0:c2:
f7:d3:9e:4e:30:0b:80:32:0b:d6:04:8e:d5:c7:44:fe:9c:11:
e2:6f:3e:e3:dd:79:ca:5d:1b:39:61:7f:16:e9:80:b6:81:3a:
fb:1b:f3:13:80:69:ae:e0:65:3e:ac:24:59:85:d4:f0:92:4f:
09:1b:6d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 17:11:25 2024 by rpki-client on console-ams.rpki-client.org