Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft
File: HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft (raw, json)
Hash identifier: Vl2hdFQqJyv9l2L9jAjH2KGDrlS+vCSALDXe8u2Ngvg=
Subject key identifier: 04:46:2A:A7:3A:5A:47:12:F1:D1:38:DD:A3:4C:14:43:4E:8D:F0:A2
Authority key identifier: 1C:39:D5:79:36:DD:2D:15:21:44:3E:68:DA:DD:9D:09:49:CD:E3:3F
Certificate issuer: /CN=1c39d57936dd2d1521443e68dadd9d0949cde33f
Certificate serial: 019356889090BC95E0D7C88826EF73F5346A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 01:00:10 +0000
Manifest this update: Sat 23 Nov 2024 01:00:10 +0000
Manifest next update: Sun 24 Nov 2024 01:00:10 +0000
Files and hashes: 1: 6clpqeiHnqv16wGxZ56jRVwg8YA.roa (hash: vTbyh6y44QbvkGrkAUypX+IuNCC/uhGzAnmYU3iMkm0=)
2: HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl (hash: 0WNrOe7VOED3I4j1LL/yY7Do0W204C5harpxgj21wTI=)
3: PGbrVJPSCqjWKwLD1Gwn1kQpaHQ.roa (hash: kz7YcpnBr+ZKGjX28+myg0kxYts35bBeJ8JZhrqluuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:90:90:bc:95:e0:d7:c8:88:26:ef:73:f5:34:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c39d57936dd2d1521443e68dadd9d0949cde33f
Validity
Not Before: Nov 23 01:00:10 2024 GMT
Not After : Nov 24 01:00:10 2024 GMT
Subject: CN=04462aa73a5a4712f1d138dda34c14434e8df0a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:71:4e:85:39:81:fb:57:eb:33:7f:59:6b:7f:
e0:e6:e6:27:51:9d:cb:1c:4d:e1:66:ae:26:b7:0a:
c9:84:b2:f7:f1:13:de:a8:22:5b:15:d2:54:a8:ad:
c4:7f:e5:dc:66:c6:03:43:40:fe:01:9e:2a:78:d3:
13:3b:1e:0f:91:14:97:61:ba:12:5a:10:19:61:43:
1b:bc:00:84:1f:a0:e7:92:32:8e:de:c4:39:a7:40:
1a:f9:f6:0a:5a:2a:30:94:b4:ea:9f:7b:17:43:a9:
6d:85:23:63:db:27:ec:af:b6:d3:dc:34:aa:9b:0d:
0c:04:ec:54:9e:6e:40:46:80:d3:94:40:a7:7e:a6:
3e:1b:34:8b:6e:89:6b:6d:88:36:7b:cb:b9:01:4c:
f1:84:77:29:06:7a:ed:39:53:c5:93:d5:38:2e:b2:
a6:3d:a7:77:a2:f5:da:d0:6f:a9:28:0d:92:6e:30:
ad:79:dc:0e:01:d6:5a:c0:ab:67:4c:a1:c5:1b:e1:
4e:41:65:63:bd:ee:e3:9a:92:e4:65:19:ac:78:70:
65:6b:b4:10:b9:10:2e:76:ad:95:2e:68:c3:8a:eb:
0e:f1:8c:63:6b:36:d3:46:be:7d:9b:0b:54:22:15:
1a:4f:d2:4c:51:3a:f7:1b:dc:79:a1:fb:d1:fc:d2:
d1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:46:2A:A7:3A:5A:47:12:F1:D1:38:DD:A3:4C:14:43:4E:8D:F0:A2
X509v3 Authority Key Identifier:
keyid:1C:39:D5:79:36:DD:2D:15:21:44:3E:68:DA:DD:9D:09:49:CD:E3:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e2:00:b0:cf:d1:77:2a:db:40:d2:42:5a:ad:58:d1:22:6b:
85:d8:d6:ee:c7:30:81:61:02:df:5f:23:52:ed:93:cc:f2:6d:
d4:c6:91:3a:28:ef:74:88:89:c4:f3:74:36:d6:b2:42:c3:2f:
31:cf:ea:23:fd:0e:d7:46:a6:fc:73:e2:00:58:64:7c:6a:fb:
34:6a:fc:e6:64:e8:2b:2d:a7:92:cd:7e:5a:99:51:70:11:82:
b1:cf:f2:3f:82:fa:45:39:9a:fd:ea:77:34:ce:62:ce:0c:16:
26:cb:ab:3c:21:f0:de:cf:ea:6a:10:a2:4c:63:55:26:f4:47:
2b:10:0c:89:df:56:53:fd:d1:bd:71:2d:94:2a:e7:ed:68:01:
ed:bc:bd:0d:31:75:1e:19:88:ce:28:79:8e:4e:92:cd:58:19:
09:f5:58:32:89:d4:83:39:f6:17:51:1b:b2:e4:a1:a6:2a:dd:
b6:78:f3:10:1b:e9:d8:58:82:b6:cf:37:3c:bd:e8:bc:33:47:
bd:99:0a:74:85:e1:88:7b:2d:cd:8a:81:ac:9e:b4:3d:2a:85:
92:f5:fb:b1:26:76:02:7d:bb:72:20:39:a5:b2:46:af:e3:af:
95:56:ac:94:25:1e:cd:d6:bc:04:2e:8e:7e:c9:47:0a:ac:8d:
4a:17:72:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:40:25 2024 by rpki-client on console-ams.rpki-client.org