Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
File: HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft (raw, json)
Hash identifier: UIVO+WKUeNEyXovXCqSzqz0FflBzdB07gyWbYrJQLkU=
Subject key identifier: E9:F6:1F:45:03:B9:31:9B:1A:84:2E:9D:26:AC:B5:0F:BB:DF:77:87
Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Certificate serial: 0193572D8695095E09F82F4B7E89850A4063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
Manifest number: 0F96
Signing time: Sat 23 Nov 2024 04:00:21 +0000
Manifest this update: Sat 23 Nov 2024 04:00:21 +0000
Manifest next update: Sun 24 Nov 2024 04:00:21 +0000
Files and hashes: 1: 4HGsqSXDicxQcWWFpHRdr_LfRhg.roa (hash: ZX4oi/fjz5eAFeZVMiZBMHhS8q7SKTC4SiN8mNZAzAw=)
2: HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl (hash: Oqy23T/uEgCLGSO9ujlJ/invc4VjzKuWbkHr1CHDghM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:86:95:09:5e:09:f8:2f:4b:7e:89:85:0a:40:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Validity
Not Before: Nov 23 04:00:21 2024 GMT
Not After : Nov 24 04:00:21 2024 GMT
Subject: CN=e9f61f4503b9319b1a842e9d26acb50fbbdf7787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f5:b6:9b:86:fb:b2:1f:f6:a7:e6:ac:ba:a1:
d7:86:fb:1a:92:f3:00:f7:bc:e7:78:00:97:44:39:
02:75:7d:f9:2b:1e:05:7c:ed:f6:cb:ed:d5:38:e7:
45:5c:f5:07:6f:50:fc:c1:07:b5:3c:12:73:f4:9a:
c1:00:87:2a:e2:b6:5e:69:51:2c:a9:f1:f9:13:03:
ab:b0:06:41:83:af:f0:97:1c:59:fe:93:da:c5:d9:
18:cb:27:e5:c5:4b:6a:a6:98:7c:ef:55:83:28:85:
cd:8b:79:3a:25:06:72:50:52:20:2c:69:94:cb:5c:
78:7c:fb:06:1c:67:0c:60:fc:b0:73:60:b6:ca:bc:
f8:b9:f5:ce:1b:11:56:ea:86:8a:ee:f5:26:9a:9b:
9c:48:64:b8:0d:98:a9:b5:59:fe:86:90:1b:f6:d5:
1e:7f:7a:1d:bb:6c:50:26:6f:2f:ca:27:51:f4:f0:
a9:d1:e8:45:fb:0b:9c:93:7d:d0:fb:c6:0d:96:5d:
fe:ad:98:8c:60:61:98:0e:20:dc:6a:1f:68:0b:e6:
f0:0f:b5:c2:78:c5:26:d6:2a:99:90:69:18:d1:13:
98:a5:3a:66:e6:0b:6e:3a:d1:55:3c:ca:03:93:5d:
d7:12:f1:55:11:be:1f:14:f7:f3:5c:53:8e:68:1b:
7d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F6:1F:45:03:B9:31:9B:1A:84:2E:9D:26:AC:B5:0F:BB:DF:77:87
X509v3 Authority Key Identifier:
keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:6e:7f:02:e1:4b:9d:bc:45:dc:c4:eb:67:46:f6:aa:4a:0d:
99:3b:7b:e1:e7:dd:5a:44:67:41:b8:c4:c5:ee:fd:d6:5e:75:
c4:fe:53:8e:ba:ac:41:65:f4:4a:bc:6a:76:b0:c3:74:a5:9e:
f7:54:4a:64:70:58:14:76:aa:52:35:66:05:e6:e2:e9:8a:5c:
1d:6e:44:3c:d8:af:42:1c:d3:c8:4d:65:66:a1:f6:87:ef:60:
64:ca:f9:b3:de:fa:a2:47:86:80:3c:13:cf:40:60:4f:84:6b:
7b:4f:36:de:d4:c2:6d:de:06:ad:a3:f7:43:4a:19:d1:84:b0:
a3:c6:cb:74:c4:cc:cb:11:c8:db:0a:75:22:35:1f:77:76:5f:
cd:86:61:af:5d:d6:05:e2:b7:c4:9b:79:8d:50:06:52:2c:26:
db:fd:da:71:ea:22:b4:46:e7:87:f6:9b:2e:7d:71:c3:de:8f:
c4:26:17:02:65:30:7e:92:44:47:3e:df:f1:f9:69:62:64:f1:
23:05:e9:68:cc:14:0d:1c:c6:91:34:cf:25:02:84:19:88:c7:
7f:c8:f8:47:35:cd:e7:be:5a:84:79:39:1a:b0:b7:2b:7f:60:
9b:99:d9:e1:7c:1e:a9:c4:d1:c8:dd:bd:ba:0d:52:52:ea:a9:
be:df:b5:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNXLYaVCV4J+C9LfomFCkBjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkOWMwNzJmMmRiM2VmMWYyNjA1MDViYmZhMGVmZWExOGMy
OTcwYjEwHhcNMjQxMTIzMDQwMDIxWhcNMjQxMTI0MDQwMDIxWjAzMTEwLwYDVQQD
EyhlOWY2MWY0NTAzYjkzMTliMWE4NDJlOWQyNmFjYjUwZmJiZGY3Nzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvW2m4b7sh/2p+asuqHXhvsakvMA
97zneACXRDkCdX35Kx4FfO32y+3VOOdFXPUHb1D8wQe1PBJz9JrBAIcq4rZeaVEs
qfH5EwOrsAZBg6/wlxxZ/pPaxdkYyyflxUtqpph871WDKIXNi3k6JQZyUFIgLGmU
y1x4fPsGHGcMYPywc2C2yrz4ufXOGxFW6oaK7vUmmpucSGS4DZiptVn+hpAb9tUe
f3odu2xQJm8vyidR9PCp0ehF+wuck33Q+8YNll3+rZiMYGGYDiDcah9oC+bwD7XC
eMUm1iqZkGkY0ROYpTpm5gtuOtFVPMoDk13XEvFVEb4fFPfzXFOOaBt9wwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOn2H0UDuTGbGoQunSastQ+733eHMB8GA1UdIwQY
MBaAFB2cBy8ts+8fJgUFu/oO/qGMKXCxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9jNTUwZTMtZjAyNC00NmI4LTg3ZWMt
NDUwZTI0ZTA4OTFkLzEvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9jNTUwZTMtZjAyNC00NmI4LTg3ZWMtNDUwZTI0ZTA4OTFk
LzEvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKm5/AuFL
nbxF3MTrZ0b2qkoNmTt74efdWkRnQbjExe791l51xP5TjrqsQWX0SrxqdrDDdKWe
91RKZHBYFHaqUjVmBebi6YpcHW5EPNivQhzTyE1lZqH2h+9gZMr5s976okeGgDwT
z0BgT4Rre0823tTCbd4GraP3Q0oZ0YSwo8bLdMTMyxHI2wp1IjUfd3ZfzYZhr13W
BeK3xJt5jVAGUiwm2/3aceoitEbnh/abLn1xw96PxCYXAmUwfpJERz7f8flpYmTx
IwXpaMwUDRzGkTTPJQKEGYjHf8j4RzXN575ahHk5GrC3K39gm5nZ4XweqcTRyN29
ug1SUuqpvt+1Fg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:09 2024 by rpki-client on console-ams.rpki-client.org