Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
File: HvpZajEmrOApxtcNUpJX4Hs4ugY.mft (raw, json)
Hash identifier: /vPA3QqKeQ7aYFoRB49jMay2WLS7dQ181TpC5C5fUhI=
Subject key identifier: 42:23:10:63:B4:44:63:F5:FB:AA:80:B5:3B:D4:ED:BA:C0:0A:C3:9D
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 019361B10E85906ACA83A93BE5CD778EABE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
Manifest number: 1379
Signing time: Mon 25 Nov 2024 05:00:13 +0000
Manifest this update: Mon 25 Nov 2024 05:00:13 +0000
Manifest next update: Tue 26 Nov 2024 05:00:13 +0000
Files and hashes: 1: 2LnROawt0tlL3N9W1IfVcRj7BjQ.roa (hash: 8wDotcztEkzc34NpjSHdA5/gcBiBKKeESLNNav77XbA=)
2: AjMhZ1IOEWzTMXzl8qMwRFNqLy4.roa (hash: udphLrplCGN19WYihOsssOOt+zaDjRwIq+toXD7iHBQ=)
3: HvpZajEmrOApxtcNUpJX4Hs4ugY.crl (hash: lQaaiPOfCVyGpjFV27+JFS6CmxtLZIcdKodMpb7lKko=)
4: P9xfvowjwUTJ1BeBZWftNJoTRTY.roa (hash: PCS3CVpHKLNPd59/He1D9rndMZygMly1wpKkhCi7M84=)
5: ZAOyjloMoilTGC3cc5ONiDQ2iyk.roa (hash: uhFQey8M5AHbP7wPLMsGw3U7IFHe6AZRHY7KF6OhOzw=)
6: _Flj-IUEdTePdYjt8aJVlZKYWh0.roa (hash: NPrIG5yLLfB1pXRt48DVhr1nKTlhfUN6vhkaIAw4zMA=)
7: eTvTNvGijATumtgKDvt8LQZZUsE.roa (hash: Az4OLcunN029KTFPR0B23PWUAOXVXdWLGjkBgBimcDc=)
8: sCAfZlaxrSgzwfCw6tKV5eiKrpU.roa (hash: ZalRWsrsecaukS+UbCuHZN7n1IDYm2r2cOKAwhXt76o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:61:b1:0e:85:90:6a:ca:83:a9:3b:e5:cd:77:8e:ab:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Nov 25 05:00:13 2024 GMT
Not After : Nov 26 05:00:13 2024 GMT
Subject: CN=42231063b44463f5fbaa80b53bd4edbac00ac39d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:81:4b:45:90:50:d4:65:a8:d0:48:5a:fb:2e:
4b:c9:67:e9:22:5c:b1:f5:e1:c9:7d:37:3c:75:72:
37:d5:19:8f:4b:17:7d:31:ea:9c:d3:7d:1d:41:24:
66:e4:27:a4:20:c0:37:9e:e2:56:ad:97:fb:c7:17:
8c:fe:ae:3e:88:c2:88:ad:46:b1:46:27:ca:c3:2b:
38:9e:47:89:e6:e7:9f:20:28:23:23:93:75:6b:44:
1b:45:2f:93:11:a3:74:fb:b5:44:28:21:23:ff:cf:
c2:d8:16:28:78:c6:21:35:48:27:d5:c8:2f:55:36:
af:37:69:19:5e:fc:2c:fc:54:11:79:6d:f3:df:b9:
33:4b:88:4f:72:06:03:f7:31:36:b5:c1:58:c8:09:
04:2f:0e:e3:2a:e7:07:2a:4b:fe:a7:35:56:17:62:
25:c9:30:3c:f5:7b:e8:6a:4c:bf:0f:46:7b:8d:1b:
6f:ba:6c:76:47:e7:6e:76:f3:e4:e5:34:2e:6c:5d:
e4:4d:55:9b:fc:8b:e0:b9:5c:93:34:ec:4a:c4:68:
b5:76:ab:32:de:82:db:7b:51:e7:39:67:6f:ef:ab:
1f:60:27:c4:50:7f:f8:21:02:38:25:ff:e9:7d:1d:
45:23:8c:80:f5:c9:85:e8:02:ce:5d:2e:e2:98:3f:
ee:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:23:10:63:B4:44:63:F5:FB:AA:80:B5:3B:D4:ED:BA:C0:0A:C3:9D
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:94:97:db:1d:ba:52:8b:b9:31:7e:1d:c7:03:ae:9e:1b:37:
40:e5:d4:b0:dc:ec:d5:38:01:c9:4a:05:ff:33:41:78:00:b5:
4f:44:bd:f2:14:8f:7a:1d:48:9a:e2:e3:f3:aa:61:fe:19:99:
a1:b1:ed:96:ef:90:a1:e3:d7:1a:93:ae:81:ab:21:8d:5a:85:
66:14:ed:f6:09:31:88:5b:76:a8:6e:cc:93:66:c7:f0:0f:fc:
aa:e8:1b:4e:b8:34:ec:cd:8a:2c:58:be:aa:ca:96:8a:0e:dc:
9f:c1:fa:93:04:6e:c6:e7:da:dc:06:41:b0:2c:ee:59:ee:d9:
56:f6:85:8d:a8:3e:58:eb:2b:13:ff:f0:ef:f5:03:aa:7f:a3:
d5:aa:5f:30:ad:d2:a7:83:88:8f:b5:89:fc:a2:2d:3b:53:ab:
88:77:61:ea:34:30:80:4b:a7:a4:de:b5:97:89:da:8f:fa:09:
62:6b:50:91:ca:c2:79:dd:14:d3:b3:19:18:b3:2c:12:53:82:
a3:26:35:8b:68:5b:6c:39:b4:67:4d:b8:bb:10:a1:12:ea:a5:
a6:88:39:0f:40:65:a5:5a:41:04:ad:33:f9:0a:91:e2:b3:07:
09:15:71:e0:53:97:c8:69:04:13:7a:22:a6:ae:ca:b7:ea:cc:
d5:08:2e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 11:29:05 2024 by rpki-client on console-ams.rpki-client.org