Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
File: hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft (raw, json)
Hash identifier: 2yrRr6XkmPWtt4u1bUCW7FHp6NJRUhv3oFRnQ4NltWw=
Subject key identifier: FA:95:B7:69:3E:0A:FF:DD:CD:E5:C3:24:56:EE:5A:A6:08:15:34:E5
Authority key identifier: 86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
Certificate issuer: /CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Certificate serial: 01935274E702C9BD503F2EB7FA9EFF15062A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
Manifest number: 136F
Signing time: Fri 22 Nov 2024 06:00:13 +0000
Manifest this update: Fri 22 Nov 2024 06:00:13 +0000
Manifest next update: Sat 23 Nov 2024 06:00:13 +0000
Files and hashes: 1: Vo_zlFx31ELDhU1rWqH_bUOJUcs.roa (hash: sDDxVwO8dxHssGN4BzryPGykgej1BUAWsgtBjEn1Clg=)
2: hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl (hash: Li5Xn9CGog0FZ+U2N/WPvNN3N5XvPhdqoTDJgN9Uky8=)
3: kpLt1oB6Q9zfjcxxEE_ITqjZGKI.roa (hash: yF68vHtN0vWxNPUXKz3rhJkczSu4tgXHqMX997aPDUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:74:e7:02:c9:bd:50:3f:2e:b7:fa:9e:ff:15:06:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Validity
Not Before: Nov 22 06:00:13 2024 GMT
Not After : Nov 23 06:00:13 2024 GMT
Subject: CN=fa95b7693e0affddcde5c32456ee5aa6081534e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:43:0e:63:91:a8:ba:f1:b5:6d:35:db:32:cc:
ef:61:25:8c:8e:e4:0f:82:74:b3:82:00:bf:a5:e5:
23:b1:53:d7:d8:87:24:48:4b:64:56:f2:c1:fe:92:
74:71:82:3c:41:9b:7d:a0:4f:1b:a7:db:2f:3b:71:
15:69:05:ab:71:e4:9a:47:2c:7d:31:b2:e4:32:f8:
9f:a5:aa:13:f6:6d:bc:c8:53:eb:94:bf:70:98:af:
ce:86:46:f8:5c:a4:38:07:a4:2d:b1:f6:55:ec:e5:
a7:9a:da:5e:86:bf:3a:36:d4:28:1f:f9:20:23:6d:
05:18:53:1a:67:0c:51:d3:5a:d9:30:80:84:82:e1:
39:bc:1c:54:9c:62:df:1a:e7:51:8d:9b:46:93:35:
9f:17:b9:b8:66:6b:13:33:22:7d:b1:0a:0c:21:d3:
47:9a:38:a9:30:5e:78:09:a8:e6:7d:d1:44:d9:c4:
3a:b8:06:aa:fc:0d:3d:0e:c3:e5:cd:ab:82:f6:d3:
ed:cf:b9:fc:53:55:ed:cd:9c:d0:66:2f:04:39:07:
f6:9a:7a:59:cf:04:10:a4:1b:b1:12:c0:30:6d:a7:
36:ab:61:b1:5b:33:ad:82:99:43:d6:b6:d7:0a:3f:
8c:93:3f:ff:c5:e3:ed:c4:52:85:6b:20:0b:a3:ee:
6d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:95:B7:69:3E:0A:FF:DD:CD:E5:C3:24:56:EE:5A:A6:08:15:34:E5
X509v3 Authority Key Identifier:
keyid:86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:0d:bb:de:79:e8:09:c3:1c:9e:36:65:ef:c5:b3:98:76:bb:
38:cc:bc:f1:21:d1:73:b7:7e:b5:97:f1:e0:39:cc:c1:e0:f7:
6f:b0:cb:fe:03:7b:e0:93:5c:35:5a:8a:42:49:a8:85:a0:a5:
8d:dc:a4:25:85:bc:87:28:bd:56:67:42:43:80:b4:40:87:10:
e5:1b:68:f5:7c:2d:3f:8d:2d:4a:ba:84:68:5a:60:17:55:10:
35:35:20:76:df:65:d7:1f:6d:67:3e:f7:e5:0f:50:82:83:c6:
a2:ce:cf:88:2a:6e:7b:fb:68:31:df:23:bd:f1:12:2d:81:a1:
ad:ea:f5:e8:3e:4f:70:e9:c8:aa:09:df:20:bf:93:40:91:20:
b6:6a:eb:55:32:36:6b:2f:56:0b:75:be:b7:aa:30:08:ff:52:
a0:c3:08:96:58:a7:d0:5f:31:30:5b:72:ec:ef:b5:a7:2c:bc:
53:43:1d:d6:fd:e1:d2:03:9c:c9:c5:41:a7:66:77:1b:fb:55:
eb:e0:93:6b:c5:db:06:45:7d:49:d6:68:dc:71:d5:52:64:89:
40:40:a7:45:82:27:b2:85:8a:50:cc:63:44:dc:de:b9:36:bf:
c0:80:13:9e:80:fc:4c:d1:9f:20:f2:c5:68:68:ab:d3:ee:db:
ea:22:59:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:44:52 2024 by rpki-client on console-ams.rpki-client.org