Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
File: hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft (raw, json)
Hash identifier: oPmthDgk+L6JsQZgtKYIa6RcrhO7YPc6i06Zx/sjJSE=
Subject key identifier: C2:74:DF:48:A0:CA:77:BF:B0:DD:E3:98:CF:59:6F:92:61:E5:DD:9B
Authority key identifier: 86:AF:AA:E2:E3:E0:54:07:3A:38:AA:B6:35:DC:96:46:0E:EF:48:7E
Certificate issuer: /CN=86afaae2e3e054073a38aab635dc96460eef487e
Certificate serial: 01901CA151FF03B0E12A2C7CAF74D4CC584D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
Manifest number: 0E7C
Signing time: Sat 15 Jun 2024 16:00:52 +0000
Manifest this update: Sat 15 Jun 2024 16:00:52 +0000
Manifest next update: Sun 16 Jun 2024 16:00:52 +0000
Files and hashes: 1: 983YTwfomFvW8Wo-Ca4dHlos1fw.roa (hash: d6JMS2l5pllG2Nm7Kyjl+Xi5QIqxlerZc4fcl9M7CPc=)
2: hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl (hash: t+HqlEeY5uDXqmpALjymaFeCLBr5jr5jFmna85Sh3Js=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1c:a1:51:ff:03:b0:e1:2a:2c:7c:af:74:d4:cc:58:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86afaae2e3e054073a38aab635dc96460eef487e
Validity
Not Before: Jun 15 16:00:52 2024 GMT
Not After : Jun 16 16:00:52 2024 GMT
Subject: CN=c274df48a0ca77bfb0dde398cf596f9261e5dd9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6d:6a:f6:b1:5c:e4:52:13:91:c2:6e:6d:35:
c5:1d:3c:1b:2e:5d:d1:6e:2d:ce:db:ae:b6:08:c9:
e2:8a:75:fa:8e:99:ec:6b:1b:92:aa:f0:4e:be:e3:
32:a7:b1:e5:fb:e1:42:dd:b1:a7:3c:ee:9c:a0:b2:
1e:70:8a:dc:8d:53:0c:d0:be:71:8c:e7:f8:a6:ab:
b6:83:71:7c:ba:70:8e:92:69:de:b0:03:14:e8:d2:
f3:bb:fc:73:90:8d:30:24:fe:c6:15:d2:3d:d6:bd:
94:da:da:e6:94:8b:6f:fc:7c:1d:7a:d8:d0:43:04:
8d:4c:c8:0e:3f:b6:8f:6e:f3:61:e4:8b:2b:5c:01:
8d:14:24:ca:1c:7a:3c:d4:40:51:1b:14:7e:72:4f:
30:b9:7f:3f:ef:1c:e2:19:1d:13:76:4d:29:0c:a5:
25:53:cc:9b:aa:03:d7:1f:21:a4:72:d0:1d:50:06:
3d:7a:f9:6b:1b:af:52:a0:eb:2a:45:d7:ca:35:1a:
a3:12:e8:4a:41:16:4b:9c:13:3c:52:b3:04:0c:39:
0f:bd:6b:0e:61:07:4a:3f:c6:b0:5b:7a:17:71:1f:
b0:0c:ea:de:7d:d8:c0:13:59:92:e6:7a:a1:0e:c6:
54:d2:0a:8b:34:0f:40:9d:28:a7:f4:53:93:15:48:
91:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:74:DF:48:A0:CA:77:BF:B0:DD:E3:98:CF:59:6F:92:61:E5:DD:9B
X509v3 Authority Key Identifier:
keyid:86:AF:AA:E2:E3:E0:54:07:3A:38:AA:B6:35:DC:96:46:0E:EF:48:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:2c:73:cf:95:97:f7:d8:fd:af:10:da:d9:7a:7e:f0:a2:61:
ce:06:a8:29:e0:81:2d:c7:b8:e3:a9:bf:8d:f5:f9:42:13:67:
43:ad:99:5a:a3:68:aa:b6:d3:78:63:0a:67:15:65:88:d4:c9:
cd:d8:ea:64:87:c7:83:6f:fc:21:57:eb:7b:b4:8e:2e:bb:10:
f7:0f:88:15:07:28:a5:2a:1a:6b:93:2c:73:33:c6:33:e5:55:
d1:f9:7b:45:3d:d2:17:fa:77:98:45:ed:8b:48:87:d5:6e:aa:
7d:f5:58:3c:1e:bb:28:f3:57:37:ea:bf:c0:73:b5:ff:78:cf:
e4:e6:6b:03:a8:70:23:83:85:9d:8e:d3:d4:41:9e:4c:3c:81:
61:6a:24:98:75:f9:23:d1:ad:6a:78:6b:d6:13:f5:96:00:97:
26:89:69:1d:15:25:5e:fb:4c:9a:24:ad:00:1b:9d:33:42:66:
57:be:3d:31:ea:a2:03:99:06:f3:cd:19:4a:d3:a6:cb:67:6b:
28:0d:07:e8:c3:d4:d9:3b:20:0d:6e:c5:e8:53:a9:2d:0b:ac:
2f:4a:53:4e:d3:fc:5d:8f:e8:00:eb:e0:29:dc:68:e1:26:7f:
a0:61:1c:ae:dc:5c:34:00:e2:22:53:e9:59:a4:8c:38:e1:7d:
9b:5a:13:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 20:04:06 2024 by rpki-client on console-fra.rpki-client.org