Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: 99NpDZgxopct4CfPNKQ701YGRkrfaq4HIaCjOPadzpg=
Subject key identifier: CA:59:00:EC:3D:0D:1F:63:C3:DB:9A:A9:0C:F6:BE:B6:3B:FE:08:D1
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 0193549A3E7A7ABE4766CC69C0F750B476DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0665
Signing time: Fri 22 Nov 2024 16:00:14 +0000
Manifest this update: Fri 22 Nov 2024 16:00:14 +0000
Manifest next update: Sat 23 Nov 2024 16:00:14 +0000
Files and hashes: 1: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: SQZq6ZTeDXORjR7nzV9X+vjoYKfJ4Z4pnt5H0rU4SKY=)
2: KYPk0fSy_lskfVNw_irurQNp9SY.roa (hash: htSigcwcW0+/VTyZ/DcMZKn9tGsf+9U5FTNZdoJ1VUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9a:3e:7a:7a:be:47:66:cc:69:c0:f7:50:b4:76:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Nov 22 16:00:14 2024 GMT
Not After : Nov 23 16:00:14 2024 GMT
Subject: CN=ca5900ec3d0d1f63c3db9aa90cf6beb63bfe08d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:dc:92:e7:1c:0f:d3:65:15:c8:7a:60:59:e0:
60:03:e6:5a:9e:f4:a0:3c:01:d0:d7:be:5a:6e:d8:
11:88:f4:aa:6b:0f:0a:8a:fb:50:3f:03:f8:1e:6b:
05:27:20:b2:f2:c8:be:27:19:23:cf:bd:23:b6:e8:
f1:72:e7:0a:45:64:39:3f:7d:09:d5:ff:70:7c:d8:
be:bd:44:30:ac:ef:bf:ff:96:6e:32:04:85:a6:f8:
f6:25:e3:e4:5c:67:d6:71:01:4e:c7:ae:37:b5:bd:
3e:9c:fd:6a:6f:30:56:a4:ea:81:0a:6b:52:b8:da:
f1:e4:b8:7e:06:cb:3e:04:33:97:0f:33:d4:2c:bd:
22:78:90:e4:82:e1:f2:d7:86:a8:77:e4:21:9b:3b:
7e:00:2c:9c:b7:1c:0b:81:06:63:05:eb:1b:a6:1f:
6b:c8:2d:ab:bc:1d:1b:63:93:0f:ab:f7:ea:a5:95:
96:84:74:af:5d:29:82:58:ab:2e:5f:49:4e:54:5b:
87:49:e3:76:6f:a4:0e:38:e8:5a:92:7c:25:b8:8a:
b8:1a:08:5d:07:ba:d4:a9:7a:ae:04:ba:b2:8a:4f:
ed:72:b2:56:00:33:75:8b:25:dc:29:06:f7:06:d1:
85:42:a6:90:97:76:fb:45:7d:88:56:dc:34:0f:1b:
a7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:59:00:EC:3D:0D:1F:63:C3:DB:9A:A9:0C:F6:BE:B6:3B:FE:08:D1
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:02:d7:f2:0a:85:f6:fe:43:1f:c1:b0:e1:92:bb:39:76:aa:
e0:ae:a0:30:67:fb:c3:27:53:20:d6:f7:d3:74:fe:20:ad:89:
ba:2b:cb:fd:23:57:0c:9e:1d:1c:4d:24:10:47:00:a0:3d:6a:
92:b6:77:11:ba:86:0f:ab:a6:e3:35:4a:26:2c:85:c5:3c:18:
0c:88:c7:bb:e7:d1:d0:3d:9c:3e:91:e8:21:8a:cc:24:4e:fb:
8d:0a:a6:04:d6:e5:55:a2:93:9f:97:6f:de:60:48:e7:96:ac:
3a:9b:da:9f:5d:c3:f3:07:d3:da:4c:63:25:7a:85:cc:e9:06:
a8:fc:ce:74:1a:93:2e:32:61:7b:e2:1a:88:bf:b5:53:c9:17:
39:73:9d:48:9f:ee:ee:7a:60:a3:dd:da:82:7c:01:75:b0:05:
79:38:68:05:aa:e6:b7:64:3b:54:a8:1a:43:1e:f4:29:0a:7a:
11:95:66:30:1d:d1:ef:6a:c8:e4:b4:03:c4:10:42:ef:eb:99:
a7:93:a3:1b:8e:89:1d:d8:c4:f8:f7:9b:70:6a:56:db:96:2e:
37:b5:18:7b:77:fd:61:56:8e:98:6c:c9:49:c2:d3:8b:7d:95:
e0:a4:8d:d5:46:42:bd:39:17:6f:07:f7:aa:d3:22:6c:41:45:
73:c1:d6:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:08:23 2024 by rpki-client on console-fra.rpki-client.org