Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
File: hpA1wxdzT2Ybv4XCGEFVofNhat0.mft (raw, json)
Hash identifier: 0j0ZC58pGJvk1V0PviVGRSlGfFO5HCJwAR5k0PvfA0o=
Subject key identifier: DB:8F:BB:26:4F:8A:F7:C0:75:9F:3C:45:3B:62:2E:C0:B7:55:53:B9
Authority key identifier: 86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD
Certificate issuer: /CN=869035c317734f661bbf85c2184155a1f3616add
Certificate serial: 0193568ADFCB1D0D182C636B676208F0BCC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
Manifest number: 0EF7
Signing time: Sat 23 Nov 2024 01:02:41 +0000
Manifest this update: Sat 23 Nov 2024 01:02:41 +0000
Manifest next update: Sun 24 Nov 2024 01:02:41 +0000
Files and hashes: 1: 7GmN22H1fQJ0qV-smZS7xh35BF0.roa (hash: UhdcptFBTuyVsKLwrO2rnwU3/Qtr9pJL4cUOsvLPi6Y=)
2: hpA1wxdzT2Ybv4XCGEFVofNhat0.crl (hash: fSjikioE0ssXfLxeOqHJfHoKsIRjsHWG8XkOu8Ni4ho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:df:cb:1d:0d:18:2c:63:6b:67:62:08:f0:bc:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869035c317734f661bbf85c2184155a1f3616add
Validity
Not Before: Nov 23 01:02:41 2024 GMT
Not After : Nov 24 01:02:41 2024 GMT
Subject: CN=db8fbb264f8af7c0759f3c453b622ec0b75553b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:65:56:c1:b5:be:ca:a8:53:40:5d:52:37:
28:62:e9:7b:f8:21:5f:05:39:8d:6c:10:c5:4c:e4:
1f:b3:a5:50:ef:53:ae:5e:38:68:21:04:e5:49:b8:
7a:4a:1d:6c:a7:55:9e:78:8b:79:58:ec:5b:53:35:
7f:66:5c:51:33:a4:a1:46:ad:9b:e3:9b:03:de:0e:
2a:0e:c3:81:6f:e6:87:e6:ab:cd:6b:ea:22:16:85:
57:b4:ef:9c:e8:3a:c7:73:5c:4b:e6:1b:94:ea:1b:
a1:2b:45:f4:ec:09:74:e1:f2:ef:e4:78:00:00:cf:
f8:46:9f:1a:18:f2:84:5b:71:4d:d1:95:ed:a5:54:
9a:76:ca:b6:00:eb:4d:50:b6:c8:28:74:b0:57:46:
35:3c:19:a4:55:78:ca:3c:4a:0d:50:0a:fd:97:09:
b4:35:2a:c8:13:7f:b3:54:4b:67:7d:f3:55:15:54:
51:d5:fc:ec:83:91:1f:da:cc:6d:67:fd:22:7c:c9:
7c:6d:c9:10:17:8d:fd:2c:68:d6:07:35:d1:64:67:
ae:ca:8e:7b:21:d3:d4:ea:ac:20:dc:81:39:df:f0:
37:8c:b6:8c:db:d5:6b:44:d1:75:1c:b5:80:ed:1f:
52:4a:a0:73:3b:56:6e:6b:01:0d:d1:05:2a:63:1e:
18:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8F:BB:26:4F:8A:F7:C0:75:9F:3C:45:3B:62:2E:C0:B7:55:53:B9
X509v3 Authority Key Identifier:
keyid:86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:e4:9a:82:2a:a4:aa:3d:24:15:ca:f7:b0:60:49:9f:7b:87:
b7:da:e2:4c:af:7f:18:af:2c:a0:14:f0:af:16:ff:e2:7e:fb:
1e:9b:e9:a3:f5:8a:10:07:7f:f2:b5:b7:b2:bf:ba:c8:11:59:
0b:66:07:0e:2d:2d:ce:6a:1e:af:a1:3c:34:96:14:d6:a1:fb:
0f:35:26:e2:cb:14:c4:4d:c5:74:71:2d:bc:96:9b:8e:2b:89:
14:f6:ce:24:56:37:a4:06:0b:ec:1a:50:2f:9e:01:84:6e:56:
78:47:12:f4:dd:e2:8b:d0:dd:64:60:9c:6c:52:7d:d8:9e:53:
77:5f:7f:a5:85:d3:c4:52:05:80:bd:3c:77:82:0e:c5:da:0b:
c6:03:2c:59:44:02:7f:71:94:ee:07:7b:b7:95:9c:7b:7e:ad:
9e:f7:14:0e:6d:79:78:7a:da:eb:43:41:34:97:a8:81:40:e6:
a0:e7:60:ca:d6:98:70:ae:51:87:f5:96:8a:07:ac:4a:f9:d9:
53:7d:0e:3a:90:7a:b3:64:fc:26:fe:83:e3:b1:cc:90:d5:6b:
7e:3d:0c:84:36:b2:ae:2c:d6:8d:e5:43:25:05:d5:bb:1d:d3:
a1:ab:f0:f3:c7:a4:65:f1:31:e3:57:ab:69:2c:54:7f:88:4f:
98:b0:e9:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:50:55 2024 by rpki-client on console-fra.rpki-client.org