Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
File: HqsBKTydvRqdatyGGCtSDNF2wAc.mft (raw, json)
Hash identifier: madMndV2wi8UG5GwTYPWmjGHXVh6kw1VgabO3L3piPo=
Subject key identifier: 67:ED:12:92:14:62:D7:5C:3C:72:05:A6:80:22:89:C4:45:14:21:96
Authority key identifier: 1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
Certificate issuer: /CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Certificate serial: 019355E435DDE9AB5BEED242FD6AA3FF9386
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
Manifest number: 1121
Signing time: Fri 22 Nov 2024 22:00:39 +0000
Manifest this update: Fri 22 Nov 2024 22:00:39 +0000
Manifest next update: Sat 23 Nov 2024 22:00:39 +0000
Files and hashes: 1: EdJg23CEda8T94OgEGXj7zDDSPc.roa (hash: N36NBKEFaCutWn21AN2zl7GDW8MUO5yXD8yyJTszARE=)
2: HqsBKTydvRqdatyGGCtSDNF2wAc.crl (hash: ZbJcgggc0Dird3pa5sETYh3pJ5T5niqsIXw49Sd8v+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:e4:35:dd:e9:ab:5b:ee:d2:42:fd:6a:a3:ff:93:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Validity
Not Before: Nov 22 22:00:39 2024 GMT
Not After : Nov 23 22:00:39 2024 GMT
Subject: CN=67ed12921462d75c3c7205a6802289c445142196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6c:7a:6a:82:2e:31:4b:f6:a6:56:d0:65:8f:
26:1c:75:7c:e1:00:90:8f:51:0f:e1:46:db:44:d5:
3a:be:14:89:48:8d:0d:32:37:f9:c3:ec:af:92:1e:
75:2f:08:23:2e:4c:b1:9a:5e:19:f0:47:52:af:b8:
09:e3:86:a4:38:d6:84:54:38:fb:61:9c:50:b7:75:
a1:7c:f1:f1:36:10:e7:10:c3:78:9a:e6:e5:bc:28:
54:2d:dd:be:46:f8:ef:8f:19:10:8b:47:6f:86:2a:
63:90:df:de:1b:c1:7d:38:70:ca:8e:da:3f:93:f5:
36:75:1c:22:d6:bc:bd:9e:8a:38:cf:e3:0b:fc:b2:
0a:8b:70:83:5b:27:da:a8:1a:e9:54:c1:3c:18:3a:
be:9a:88:fa:34:c4:27:55:08:fe:ce:e5:63:b6:d3:
b2:3b:50:17:0b:90:ca:7b:19:66:f9:54:a7:23:f4:
b2:33:6a:02:af:b9:13:70:5e:a8:6d:a3:62:60:53:
0e:92:27:fb:83:9e:d3:55:30:96:87:b7:b0:8c:f1:
fe:dd:77:de:eb:66:22:4c:ca:9e:36:b9:1f:b1:fb:
96:2c:c6:65:33:26:c1:6f:49:04:0d:82:76:3e:a2:
89:ab:dd:55:e5:c0:8d:58:be:5e:ce:c3:1e:df:c6:
1a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:ED:12:92:14:62:D7:5C:3C:72:05:A6:80:22:89:C4:45:14:21:96
X509v3 Authority Key Identifier:
keyid:1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:62:bc:2a:a2:aa:38:d2:57:95:79:3f:20:27:17:b9:a8:07:
d8:80:21:84:67:38:d8:b1:2a:31:5d:bb:1d:93:a2:0c:d6:ed:
45:31:a8:f2:38:6b:86:5e:2a:7d:ca:23:d7:4e:f5:cb:86:f1:
5c:95:45:33:89:ea:2c:2b:ec:60:9f:47:b2:af:77:57:9b:9c:
b6:c1:5a:a2:a7:2a:64:3e:86:ba:05:d2:fe:1b:a0:9f:28:be:
ba:63:12:ba:13:c8:72:db:e9:b4:67:fb:b8:8a:e0:68:f6:c4:
b6:8c:6c:18:0a:6f:cd:6d:4d:de:0e:71:2e:05:58:4f:a3:e7:
c8:bd:0b:c8:71:e1:21:88:e1:62:e0:c8:47:c1:cc:18:52:e5:
c0:2a:51:30:2e:8a:c0:2b:6e:75:25:90:72:e9:35:63:10:a1:
51:6b:4a:eb:b2:42:56:8a:c7:61:17:de:8f:4d:1b:a4:8c:b6:
eb:a7:3c:4f:dc:ef:ae:c9:46:f1:c9:b3:12:51:07:9f:1c:a5:
3f:b3:b8:bd:6b:c4:11:89:b2:86:ae:d3:f0:c9:21:0d:82:43:
2d:06:41:2e:93:3c:17:0d:a4:dd:0a:68:b4:52:7b:58:3d:81:
a8:11:29:4a:dc:d5:b3:4a:5b:1e:19:58:74:ac:8c:7d:e9:5d:
3b:e5:3a:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNV5DXd6atb7tJC/Wqj/5OGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYWIwMTI5M2M5ZGJkMWE5ZDZhZGM4NjE4MmI1MjBjZDE3
NmMwMDcwHhcNMjQxMTIyMjIwMDM5WhcNMjQxMTIzMjIwMDM5WjAzMTEwLwYDVQQD
Eyg2N2VkMTI5MjE0NjJkNzVjM2M3MjA1YTY4MDIyODljNDQ1MTQyMTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2x6aoIuMUv2plbQZY8mHHV84QCQ
j1EP4UbbRNU6vhSJSI0NMjf5w+yvkh51LwgjLkyxml4Z8EdSr7gJ44akONaEVDj7
YZxQt3WhfPHxNhDnEMN4mublvChULd2+RvjvjxkQi0dvhipjkN/eG8F9OHDKjto/
k/U2dRwi1ry9noo4z+ML/LIKi3CDWyfaqBrpVME8GDq+moj6NMQnVQj+zuVjttOy
O1AXC5DKexlm+VSnI/SyM2oCr7kTcF6obaNiYFMOkif7g57TVTCWh7ewjPH+3Xfe
62YiTMqeNrkfsfuWLMZlMybBb0kEDYJ2PqKJq91V5cCNWL5ezsMe38YakQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGftEpIUYtdcPHIFpoAiicRFFCGWMB8GA1UdIwQY
MBaAFB6rASk8nb0anWrchhgrUgzRdsAHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHFzQktUeWR2UnFkYXR5R0dDdFNETkYyd0FjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9jMDBjMTMtNzkxYS00ZTE1LWJhZjct
ZTAzYWM1ODlhMDNmLzEvSHFzQktUeWR2UnFkYXR5R0dDdFNETkYyd0FjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9jMDBjMTMtNzkxYS00ZTE1LWJhZjctZTAzYWM1ODlhMDNm
LzEvSHFzQktUeWR2UnFkYXR5R0dDdFNETkYyd0FjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARmK8KqKq
ONJXlXk/ICcXuagH2IAhhGc42LEqMV27HZOiDNbtRTGo8jhrhl4qfcoj1071y4bx
XJVFM4nqLCvsYJ9Hsq93V5uctsFaoqcqZD6GugXS/hugnyi+umMSuhPIctvptGf7
uIrgaPbEtoxsGApvzW1N3g5xLgVYT6PnyL0LyHHhIYjhYuDIR8HMGFLlwCpRMC6K
wCtudSWQcuk1YxChUWtK67JCVorHYRfej00bpIy266c8T9zvrslG8cmzElEHnxyl
P7O4vWvEEYmyhq7T8MkhDYJDLQZBLpM8Fw2k3QpotFJ7WD2BqBEpStzVs0pbHhlY
dKyMfeldO+U6hQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 23:41:01 2024 by rpki-client on console-fra.rpki-client.org