Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
File: HqsBKTydvRqdatyGGCtSDNF2wAc.mft (raw, json)
Hash identifier: yzMVcvcJDvLh2YTf5oZpvmx/FnsgJA4rOcdtcfDN4xo=
Subject key identifier: 40:BA:A7:B1:AD:C7:32:42:E1:5F:34:51:5F:12:E0:52:EE:6C:54:87
Authority key identifier: 1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
Certificate issuer: /CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Certificate serial: 018F3B53563EEC9EB252D8863FA2B8A36B44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
Manifest number: 0F01
Signing time: Thu 02 May 2024 22:01:08 +0000
Manifest this update: Thu 02 May 2024 22:01:08 +0000
Manifest next update: Fri 03 May 2024 22:01:08 +0000
Files and hashes: 1: EdJg23CEda8T94OgEGXj7zDDSPc.roa (hash: N36NBKEFaCutWn21AN2zl7GDW8MUO5yXD8yyJTszARE=)
2: HqsBKTydvRqdatyGGCtSDNF2wAc.crl (hash: HwKZ3y9kaXwqTKaZujNCv4XanslhhrpTupTdXgqpbCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3b:53:56:3e:ec:9e:b2:52:d8:86:3f:a2:b8:a3:6b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Validity
Not Before: May 2 22:01:08 2024 GMT
Not After : May 3 22:01:08 2024 GMT
Subject: CN=40baa7b1adc73242e15f34515f12e052ee6c5487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:aa:f9:8b:a9:fa:be:3e:2b:46:a1:e8:4f:
b0:aa:be:4c:6e:b2:9a:0d:ec:33:2c:30:82:f4:94:
fe:d3:a2:43:31:22:57:df:3f:12:0c:66:83:51:de:
fc:10:96:dc:bf:f1:56:5a:6f:37:ad:86:2a:89:12:
aa:fd:63:c5:25:5f:1d:6d:91:fb:fc:c7:9c:24:98:
a8:aa:49:c0:4e:29:ae:4d:5a:4a:2d:fe:cf:2a:96:
2c:ef:51:75:90:bc:60:df:3c:d7:8a:c6:50:fb:4d:
7c:d5:50:ce:80:cb:cd:77:f7:2c:ea:8b:68:f6:6e:
d5:25:34:7e:eb:23:5d:a0:bf:e0:e1:d5:5f:2b:cf:
fd:c4:60:88:ad:c0:07:cd:d9:f9:71:7a:47:12:7d:
a9:02:ad:d5:e0:64:49:91:1d:4c:a9:2a:6b:8d:5d:
95:19:89:21:7f:a6:d7:7d:bf:f6:66:a6:d6:70:50:
d9:d1:cf:3b:9e:f2:e3:db:92:1c:a2:74:d8:7c:c7:
5a:66:98:b1:61:26:fa:b7:7e:c1:5e:2c:2d:89:c3:
10:51:06:4f:d6:f4:50:bd:a7:75:92:9d:66:1b:b6:
84:b2:57:8c:65:9e:67:37:e7:4b:9f:46:ea:d1:48:
88:88:de:4b:0e:1d:25:aa:5c:b4:22:60:78:43:a7:
14:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BA:A7:B1:AD:C7:32:42:E1:5F:34:51:5F:12:E0:52:EE:6C:54:87
X509v3 Authority Key Identifier:
keyid:1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:54:0d:41:ce:ef:02:80:44:bd:52:a8:9a:2e:36:15:4a:65:
b9:e2:f3:80:b6:67:38:69:e1:c8:e1:5c:17:59:b4:be:21:29:
59:60:c4:3f:97:ee:a1:a6:46:41:55:33:ac:5b:e4:a2:9e:c6:
92:da:2c:37:e1:c5:dc:da:05:99:56:40:9b:23:0c:53:c3:68:
b4:a3:43:96:5c:8a:a5:67:89:02:1d:3d:b8:be:3d:8e:4c:c4:
ea:47:ac:5e:74:48:b6:dc:53:08:e6:6f:e1:b2:9b:36:19:c3:
68:50:d8:41:1c:b9:9e:2d:f1:7b:7c:67:bd:1a:15:dd:75:f9:
08:28:77:d3:8b:2e:45:58:e1:5c:13:98:07:c3:00:31:84:86:
0a:21:db:42:75:ae:4b:dc:98:88:1c:e0:c2:72:24:a4:d1:34:
d3:fb:52:ee:4e:e1:b4:14:90:8c:d3:8a:50:07:a5:2e:46:90:
f5:e5:7f:67:88:5b:ff:fc:e5:3a:73:d0:3e:0a:ec:fb:76:ad:
72:5c:bc:64:0c:f9:f2:25:f1:55:c8:fa:bd:45:04:d4:09:1a:
49:44:b4:1f:fa:0e:f2:4a:b6:5f:05:25:c6:b2:c3:60:6b:96:
2a:a1:9b:32:27:47:4b:11:42:2e:8a:18:1e:fb:8e:91:c9:a4:
90:f4:57:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY87U1Y+7J6yUtiGP6K4o2tEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYWIwMTI5M2M5ZGJkMWE5ZDZhZGM4NjE4MmI1MjBjZDE3
NmMwMDcwHhcNMjQwNTAyMjIwMTA4WhcNMjQwNTAzMjIwMTA4WjAzMTEwLwYDVQQD
Eyg0MGJhYTdiMWFkYzczMjQyZTE1ZjM0NTE1ZjEyZTA1MmVlNmM1NDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoKq+Yup+r4+K0ah6E+wqr5MbrKa
DewzLDCC9JT+06JDMSJX3z8SDGaDUd78EJbcv/FWWm83rYYqiRKq/WPFJV8dbZH7
/MecJJioqknATimuTVpKLf7PKpYs71F1kLxg3zzXisZQ+0181VDOgMvNd/cs6oto
9m7VJTR+6yNdoL/g4dVfK8/9xGCIrcAHzdn5cXpHEn2pAq3V4GRJkR1MqSprjV2V
GYkhf6bXfb/2ZqbWcFDZ0c87nvLj25IconTYfMdaZpixYSb6t37BXiwticMQUQZP
1vRQvad1kp1mG7aEsleMZZ5nN+dLn0bq0UiIiN5LDh0lqly0ImB4Q6cUyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEC6p7GtxzJC4V80UV8S4FLubFSHMB8GA1UdIwQY
MBaAFB6rASk8nb0anWrchhgrUgzRdsAHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHFzQktUeWR2UnFkYXR5R0dDdFNETkYyd0FjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9jMDBjMTMtNzkxYS00ZTE1LWJhZjct
ZTAzYWM1ODlhMDNmLzEvSHFzQktUeWR2UnFkYXR5R0dDdFNETkYyd0FjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9jMDBjMTMtNzkxYS00ZTE1LWJhZjctZTAzYWM1ODlhMDNm
LzEvSHFzQktUeWR2UnFkYXR5R0dDdFNETkYyd0FjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASVQNQc7v
AoBEvVKomi42FUplueLzgLZnOGnhyOFcF1m0viEpWWDEP5fuoaZGQVUzrFvkop7G
ktosN+HF3NoFmVZAmyMMU8NotKNDllyKpWeJAh09uL49jkzE6kesXnRIttxTCOZv
4bKbNhnDaFDYQRy5ni3xe3xnvRoV3XX5CCh304suRVjhXBOYB8MAMYSGCiHbQnWu
S9yYiBzgwnIkpNE00/tS7k7htBSQjNOKUAelLkaQ9eV/Z4hb//zlOnPQPgrs+3at
cly8ZAz58iXxVcj6vUUE1AkaSUS0H/oO8kq2XwUlxrLDYGuWKqGbMidHSxFCLooY
HvuOkcmkkPRXig==
-----END CERTIFICATE-----
Generated at Thu May 2 23:20:09 2024 by rpki-client on console-ams.rpki-client.org