Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
File: HGnHYzivyQhbj71mm4t0vXqS1DE.mft (raw, json)
Hash identifier: 7i3lx+H2R31bMvzZLbtEnR7vyOOuWMjt9ruKUlFxxQY=
Subject key identifier: 7D:C4:4B:E5:0C:B4:4C:DB:5F:27:04:6D:3A:BC:BA:6C:78:0F:36:AE
Authority key identifier: 1C:69:C7:63:38:AF:C9:08:5B:8F:BD:66:9B:8B:74:BD:7A:92:D4:31
Certificate issuer: /CN=1c69c76338afc9085b8fbd669b8b74bd7a92d431
Certificate serial: 018F51379E2DE07396BAAFA09797AF4FF04F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
Manifest number: 0E48
Signing time: Tue 07 May 2024 04:02:30 +0000
Manifest this update: Tue 07 May 2024 04:02:30 +0000
Manifest next update: Wed 08 May 2024 04:02:30 +0000
Files and hashes: 1: 2EJoKkZ69K5RmhY5gB86we8Shjg.roa (hash: VsVIqDufZXnqc37AC67OrYcli+xhq+A24tzS1rqkULI=)
2: HGnHYzivyQhbj71mm4t0vXqS1DE.crl (hash: HtT24q3fgSJtxxefyG5Cmql6N25r5sWMIROUP6bRiYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 04:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:37:9e:2d:e0:73:96:ba:af:a0:97:97:af:4f:f0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c69c76338afc9085b8fbd669b8b74bd7a92d431
Validity
Not Before: May 7 04:02:30 2024 GMT
Not After : May 8 04:02:30 2024 GMT
Subject: CN=7dc44be50cb44cdb5f27046d3abcba6c780f36ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fb:3b:24:9e:34:29:38:91:b1:f8:14:ba:e0:
17:c9:0a:08:29:e6:15:84:16:c2:05:81:e8:04:e7:
6d:11:8b:67:66:dd:f9:cf:8c:2d:34:1c:29:be:30:
b8:60:ec:6c:48:d2:39:c6:08:b8:c5:b1:e2:ef:7b:
23:81:07:e0:ad:92:9d:0a:21:05:de:bf:4e:39:ef:
d7:c5:7e:ce:fa:f5:7f:47:2e:b0:1c:5b:8a:23:ed:
8a:4d:16:ea:a4:39:b8:aa:4b:51:87:ca:4d:a7:11:
c3:53:ea:bf:90:14:a7:87:c0:2e:aa:53:19:1d:f5:
98:50:0c:4a:84:09:ba:ec:4e:0d:6c:03:90:ed:88:
c3:a6:f1:54:52:56:d9:20:a6:07:21:e4:7a:c1:db:
08:97:54:9b:29:46:f9:6b:8b:ac:11:d8:87:32:6b:
67:6c:a8:df:f0:12:b3:b7:86:d4:0a:b4:99:22:77:
05:03:d0:7b:5f:d8:13:12:27:a2:74:a7:36:2e:03:
8a:be:f2:34:61:a9:73:da:f0:6d:b0:9d:03:1f:9f:
0b:dc:87:6d:6d:2e:0e:5f:be:bf:7b:15:eb:8a:f0:
e0:10:43:0c:65:e3:50:7b:f0:28:60:97:91:9a:82:
d5:59:76:bd:50:63:a9:3d:c9:fd:0d:1e:73:d6:1b:
44:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C4:4B:E5:0C:B4:4C:DB:5F:27:04:6D:3A:BC:BA:6C:78:0F:36:AE
X509v3 Authority Key Identifier:
keyid:1C:69:C7:63:38:AF:C9:08:5B:8F:BD:66:9B:8B:74:BD:7A:92:D4:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:90:95:c4:31:60:68:f9:36:1b:bf:f7:ff:de:c6:52:f3:b2:
91:8a:2e:23:b0:e5:a1:29:7e:bc:a4:da:91:fe:de:31:58:9f:
24:14:3c:63:0e:fa:c6:cc:26:78:91:a5:c4:e7:b7:d0:b4:7d:
11:74:66:b8:f1:ab:71:5c:ef:9a:e0:c8:2d:c4:15:70:61:87:
54:f8:0e:81:dc:91:50:5e:f1:8d:ce:7e:35:ae:fe:cf:cd:fe:
33:6a:e3:f3:36:11:f7:5b:a8:3f:14:9b:9f:90:60:db:6d:16:
0a:9c:11:9a:82:4a:67:d1:c1:3a:48:14:44:ff:0f:5b:b0:67:
dc:02:ee:a1:dd:90:8d:2c:af:e0:7c:02:02:04:9a:73:00:61:
b4:ce:44:ae:67:b1:4d:0e:4e:be:77:76:6d:95:74:c7:4f:4f:
af:8a:34:d4:13:c6:81:f9:51:e5:3e:01:21:a8:92:21:4f:f1:
d7:86:af:81:cb:c0:73:c7:fa:7c:d5:4c:f5:7c:ec:e2:6c:5c:
f7:b7:a5:bc:84:21:eb:b0:d1:41:52:ec:51:50:19:9f:54:a7:
5a:55:53:a0:40:9b:91:e0:55:05:78:6f:ae:b8:89:00:40:8a:
31:c9:5c:39:97:c3:0b:86:16:72:db:be:08:bd:61:40:32:c4:
0d:a0:d7:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9RN54t4HOWuq+gl5evT/BPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjNjljNzYzMzhhZmM5MDg1YjhmYmQ2NjliOGI3NGJkN2E5
MmQ0MzEwHhcNMjQwNTA3MDQwMjMwWhcNMjQwNTA4MDQwMjMwWjAzMTEwLwYDVQQD
Eyg3ZGM0NGJlNTBjYjQ0Y2RiNWYyNzA0NmQzYWJjYmE2Yzc4MGYzNmFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfs7JJ40KTiRsfgUuuAXyQoIKeYV
hBbCBYHoBOdtEYtnZt35z4wtNBwpvjC4YOxsSNI5xgi4xbHi73sjgQfgrZKdCiEF
3r9OOe/XxX7O+vV/Ry6wHFuKI+2KTRbqpDm4qktRh8pNpxHDU+q/kBSnh8AuqlMZ
HfWYUAxKhAm67E4NbAOQ7YjDpvFUUlbZIKYHIeR6wdsIl1SbKUb5a4usEdiHMmtn
bKjf8BKzt4bUCrSZIncFA9B7X9gTEieidKc2LgOKvvI0Yalz2vBtsJ0DH58L3Idt
bS4OX76/exXrivDgEEMMZeNQe/AoYJeRmoLVWXa9UGOpPcn9DR5z1htEcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH3ES+UMtEzbXycEbTq8umx4DzauMB8GA1UdIwQY
MBaAFBxpx2M4r8kIW4+9ZpuLdL16ktQxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9hMjA4OGItYTEyNi00YmE2LTg3MWMt
NTc1OWI0MjdmNGQxLzEvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi9hMjA4OGItYTEyNi00YmE2LTg3MWMtNTc1OWI0MjdmNGQx
LzEvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQpCVxDFg
aPk2G7/3/97GUvOykYouI7DloSl+vKTakf7eMVifJBQ8Yw76xswmeJGlxOe30LR9
EXRmuPGrcVzvmuDILcQVcGGHVPgOgdyRUF7xjc5+Na7+z83+M2rj8zYR91uoPxSb
n5Bg220WCpwRmoJKZ9HBOkgURP8PW7Bn3ALuod2QjSyv4HwCAgSacwBhtM5Ermex
TQ5Ovnd2bZV0x09Pr4o01BPGgflR5T4BIaiSIU/x14avgcvAc8f6fNVM9Xzs4mxc
97elvIQh67DRQVLsUVAZn1SnWlVToECbkeBVBXhvrriJAECKMclcOZfDC4YWctu+
CL1hQDLEDaDXxw==
-----END CERTIFICATE-----
Generated at Tue May 7 12:54:25 2024 by rpki-client on console-fra.rpki-client.org