Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: nZ1Y3Tsk4moabXZQsCYyd7BN8hjHQ/ecHcz00IvYOOE=
Subject key identifier: 85:F5:7C:B1:FE:2B:8C:A3:3E:FA:BB:FC:FB:EA:40:EB:74:FE:F3:97
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 0193572E00322C067D28903457E40CE6C743
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0731
Signing time: Sat 23 Nov 2024 04:00:52 +0000
Manifest this update: Sat 23 Nov 2024 04:00:52 +0000
Manifest next update: Sun 24 Nov 2024 04:00:52 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: NX813L4hkRFFDfJYnhiZP8jC0jT1kmnCU1V3lbMEQPM=)
2: rGjKfx-60m9QlGagdA3P5wOr2QA.roa (hash: 83Or5BpFrwbByxmqxvy4oPVePwEc7rgaD9CqrgfUjEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2e:00:32:2c:06:7d:28:90:34:57:e4:0c:e6:c7:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Nov 23 04:00:52 2024 GMT
Not After : Nov 24 04:00:52 2024 GMT
Subject: CN=85f57cb1fe2b8ca33efabbfcfbea40eb74fef397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:78:ec:42:38:51:84:c9:32:24:63:c4:06:52:
4e:95:a4:67:b5:b9:ae:4f:67:b5:48:c1:f6:d7:52:
60:83:83:fd:5e:96:54:14:64:e9:fb:ce:01:3a:4e:
ea:bf:c7:d2:a3:aa:19:3e:19:22:eb:ca:88:83:19:
0b:95:b7:09:5c:a3:9c:ec:11:1c:b1:19:3a:f4:1a:
a9:0e:0e:bd:4d:13:78:fe:a5:95:c6:10:d7:b2:66:
86:64:5c:27:85:c4:a9:e7:1a:94:2b:42:31:31:98:
94:68:19:d1:11:97:5c:3e:ba:c1:a5:2c:8e:39:97:
38:83:e2:5c:fc:5a:6a:92:0a:84:41:49:dc:55:54:
51:4b:38:4c:2a:c2:c0:9d:d1:e5:f1:da:dc:56:1a:
ec:c4:40:14:3f:a6:10:c1:80:dc:c5:63:de:c9:63:
ab:95:4e:1c:cb:d9:3d:1e:aa:c1:ee:a3:61:3e:35:
0b:01:5d:f7:06:11:2d:65:fa:07:1f:e6:fe:75:3d:
7b:07:a5:dc:ef:07:6a:fd:7f:30:25:0d:e8:ef:f4:
dd:ab:60:5a:8e:27:ad:c1:3b:84:57:01:29:5a:3d:
11:da:2f:d4:d7:78:bd:bd:c1:f4:9b:33:84:2e:81:
fc:37:07:e7:21:27:39:e9:3b:65:73:1c:79:e4:9a:
d1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F5:7C:B1:FE:2B:8C:A3:3E:FA:BB:FC:FB:EA:40:EB:74:FE:F3:97
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:89:d4:5d:11:9e:dc:bc:ae:1c:ee:5f:f3:49:d4:c7:f1:c4:
c1:27:5d:95:67:3d:70:ac:92:2b:39:38:61:8b:e2:eb:11:37:
0a:90:5a:1f:e6:bd:fa:ab:66:e5:00:00:74:da:cc:8f:bc:4d:
73:74:eb:4c:ee:81:d3:72:b9:d6:69:a0:23:2e:51:b4:78:85:
4e:18:ae:c6:1d:08:8f:e8:43:d8:48:ea:be:f0:8d:13:6a:5f:
56:e1:48:31:e8:5d:97:a4:b8:91:20:36:1f:da:82:e8:97:2a:
9f:af:ff:62:5b:ef:bc:ce:0c:0f:1c:d0:05:95:b5:ff:2b:30:
5b:e0:ce:27:fb:bc:31:ff:64:c8:4a:10:b2:59:ed:6e:ba:5e:
d1:41:90:d1:f7:ce:2a:be:5b:34:68:37:00:33:3c:06:45:35:
e8:93:77:7c:c6:a1:01:37:ff:cf:b3:34:3d:80:d0:81:ce:45:
04:3f:d3:43:19:25:af:82:f1:00:61:31:9f:7e:2d:90:32:68:
0c:32:dd:b9:a5:e9:e8:f6:14:ca:55:d2:dc:52:f3:b8:c4:c1:
89:58:c6:fe:ff:78:29:cc:9c:86:2f:5b:c5:45:cb:b7:48:31:
01:cd:4e:28:43:e3:2b:34:eb:43:05:31:d5:e7:0b:bf:7d:01:
92:bc:46:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:10:48 2024 by rpki-client on console-fra.rpki-client.org