Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
File: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft (raw, json)
Hash identifier: dEHAebRK1IGfiGsLWhbWdVKF4rYVzCdPda1Da6l1lRo=
Subject key identifier: B5:1F:B0:4F:F8:DE:7A:97:4C:7C:B7:0C:00:56:68:1E:A3:98:95:10
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 018F885B1914D4882867AC89A0A3FE03538F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
Manifest number: 1179
Signing time: Fri 17 May 2024 21:00:22 +0000
Manifest this update: Fri 17 May 2024 21:00:22 +0000
Manifest next update: Sat 18 May 2024 21:00:22 +0000
Files and hashes: 1: 9fqxxzfT7xnlLKQkGMOh4sYXs6c.roa (hash: jpzZ57ZTqptFND0dLUND3ZT28y2mItoT9DbmISDM5Mw=)
2: O_4hNGkkAJbwBC2s_bsfL6zhZlQ.roa (hash: V93RyaLYkWjv13bKE9pXYnVk+Cwb3NtoFAw3Jzce3wI=)
3: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl (hash: BErqkhMLxjgWS0Lem4lOA4WwNC4Y6gI9EyImcHW85p0=)
4: tsUKxkXbDUnKFb7hn-EB5mjDZs8.roa (hash: agRXjDoxQYWBx2iKOawPJHHIz5spWbn3L9uuBzgiAtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5b:19:14:d4:88:28:67:ac:89:a0:a3:fe:03:53:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: May 17 21:00:22 2024 GMT
Not After : May 18 21:00:22 2024 GMT
Subject: CN=b51fb04ff8de7a974c7cb70c0056681ea3989510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e2:fc:dd:ae:ad:32:be:b9:bb:58:5c:8d:b1:
61:2d:c3:56:72:74:8f:e4:75:c2:80:a0:95:89:17:
4e:6b:e5:77:d7:20:a6:4f:b0:c5:82:54:d0:f7:dd:
e6:03:34:85:b5:ba:e8:33:cc:9f:07:2a:8f:4a:37:
fa:5b:b8:ac:d3:89:df:46:2c:e7:85:66:51:a2:c9:
a6:04:21:be:a8:3e:72:b9:fd:22:33:2f:d9:36:fb:
bf:30:8c:92:55:be:af:0d:e2:a5:df:5c:7f:2e:26:
a8:8d:9a:a7:62:23:18:11:f0:a0:0b:c2:07:ed:19:
ad:41:3b:fb:2b:3e:dc:2c:c0:99:a3:d0:52:a1:b7:
00:00:c9:8b:2b:72:7d:48:78:2a:c8:4c:22:77:9a:
1a:ae:ed:ef:e8:46:aa:2a:83:23:9e:1e:6f:57:20:
f8:17:b5:a5:ca:0c:45:c5:bb:c4:85:23:16:b7:7a:
b9:9a:cf:01:29:b6:a8:7f:4d:d6:c7:6a:fb:9b:a7:
17:74:e1:9a:d1:a9:c0:f1:88:ec:a2:df:50:7c:c0:
c4:5e:fa:3a:75:29:68:d2:c8:24:12:ac:e4:26:fe:
c6:f3:7e:f5:81:11:66:1d:0b:cc:3c:a2:87:43:f5:
1a:fa:33:a7:b3:16:61:d0:95:4a:21:f0:89:d7:68:
79:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:1F:B0:4F:F8:DE:7A:97:4C:7C:B7:0C:00:56:68:1E:A3:98:95:10
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:53:e9:09:86:63:e8:4d:8a:59:6b:93:94:e4:51:1d:31:b6:
25:11:ea:52:8a:b6:0f:75:cc:64:36:74:a4:7a:7e:c7:5d:79:
57:4c:e0:0d:ef:66:fa:57:99:57:97:61:f7:c5:53:13:87:96:
b1:6d:fe:1c:27:0f:f7:e3:f4:90:93:53:6f:a3:9e:e8:79:3c:
b5:98:7a:45:8d:a1:50:d0:14:c6:07:3a:19:d3:12:16:e7:81:
ac:81:88:12:69:f4:d1:15:90:aa:56:40:63:93:49:d7:1a:01:
b8:50:81:18:50:25:68:c7:31:4a:2d:35:3e:6b:76:bf:77:a8:
56:95:4d:eb:d5:10:79:f6:d0:b7:62:52:d1:ba:5f:16:d2:09:
bc:2a:2e:04:9b:3f:22:34:4c:a6:e0:0a:45:b8:4f:2a:f9:87:
33:5b:2d:33:53:da:b7:70:2b:34:74:cd:74:94:23:3f:54:6c:
85:33:6d:b0:72:aa:ea:90:bc:75:24:1b:ce:5d:48:a6:70:0a:
f3:8c:6a:5c:f2:fc:4d:90:1c:10:40:b9:30:2e:bf:ec:88:8b:
31:ab:3a:44:ea:36:02:82:50:41:3c:71:12:0a:5a:1a:0b:cc:
35:9d:c7:5f:a0:e4:50:59:4c:3e:55:16:d1:c5:4a:63:af:2f:
c1:77:70:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:42:59 2024 by rpki-client on console-fra.rpki-client.org