Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json)
Hash identifier: hJLsEPVAbI2iR5L5GFC/QdU7hS7MiZprNMvsQOk0i0o=
Subject key identifier: 56:78:2E:57:AF:39:D9:61:6E:8E:2C:39:38:CD:71:7B:F6:89:E0:39
Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Certificate serial: 019239940E906A05D568A471EC4655ED35DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
Manifest number: 01A8
Signing time: Sat 28 Sep 2024 17:00:57 +0000
Manifest this update: Sat 28 Sep 2024 17:00:57 +0000
Manifest next update: Sun 29 Sep 2024 17:00:57 +0000
Files and hashes: 1: 1-VMDVY4yPmA29PjQL1Ns7l3L9co.roa (hash: TrDkmA8AqzYN4JyZPcDpZyAQK2rxAVkI0pQsHGJEBno=)
2: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: lCND+9Lo3g7R4TQIOtSxR6y1h30M6JSCGyj55W8VvME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:39:94:0e:90:6a:05:d5:68:a4:71:ec:46:55:ed:35:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Validity
Not Before: Sep 28 17:00:57 2024 GMT
Not After : Sep 29 17:00:57 2024 GMT
Subject: CN=56782e57af39d9616e8e2c3938cd717bf689e039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f7:e8:2b:15:80:11:54:81:cb:b5:59:a4:ab:
9f:70:40:1a:17:fd:31:ed:8c:8e:0e:2c:65:ff:de:
c0:ef:e5:29:d7:81:19:30:6f:73:43:2a:8a:25:05:
8c:a7:ac:c9:3a:44:9d:5a:22:aa:25:d0:74:57:06:
f3:e2:0d:cd:1d:ee:fd:d0:02:07:80:73:d9:b2:61:
d7:14:c9:6d:6a:09:6e:ad:4c:fc:39:d5:a6:58:b6:
0f:27:04:be:97:8e:b5:2a:f0:b0:a0:e2:b3:da:ca:
7d:28:dd:99:8e:0e:ab:d6:fa:f8:be:cd:39:bc:e8:
a1:4e:7e:29:cb:86:76:38:71:c4:4a:9e:af:25:e1:
00:15:71:c5:74:b9:63:af:0f:e9:5c:63:18:c9:2c:
aa:86:13:3a:a8:c5:a4:f3:bc:d9:ac:f9:6e:75:7d:
0c:83:b2:be:98:5e:49:67:37:88:4f:95:5f:78:d9:
76:40:a5:e4:f7:66:19:af:64:54:45:7f:97:50:e7:
39:31:8c:8e:70:a7:e7:3c:cb:8f:9c:0c:7d:b7:81:
2f:78:09:9b:c9:eb:5f:00:94:3f:6d:9e:14:ce:f8:
bf:fa:b2:27:89:b4:1e:61:e9:93:ad:c8:e1:32:3b:
bb:38:1c:bf:e2:fc:dc:29:35:fb:af:cf:03:54:cd:
57:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:78:2E:57:AF:39:D9:61:6E:8E:2C:39:38:CD:71:7B:F6:89:E0:39
X509v3 Authority Key Identifier:
keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:ff:69:88:52:b3:89:0e:c6:e5:ed:9d:17:cb:b2:20:ce:ea:
f7:06:69:86:e2:75:70:63:15:19:4c:58:4f:b8:f5:0a:44:a9:
34:c9:16:c0:48:4b:a7:ab:4c:3c:89:1d:11:91:03:d2:1b:26:
a2:01:5a:22:d9:89:75:e8:fa:cb:91:5f:d1:fa:1f:a3:31:b1:
1d:72:86:f8:3e:d6:aa:01:08:89:6e:d9:d5:99:cd:5d:23:b4:
a1:03:37:c2:9b:50:8f:25:20:d7:d1:4e:c1:ad:f9:0b:c4:7a:
50:8f:32:92:4d:35:5d:f1:f9:8e:00:bd:25:2e:fc:38:a1:8e:
5e:7e:b8:38:66:69:ce:d5:da:29:5e:8c:44:da:8d:f7:25:c5:
ba:c3:80:36:62:42:bd:4a:c3:1f:9b:b0:a1:87:78:bd:af:ef:
61:96:ed:57:75:40:81:cc:ed:01:71:f3:f1:d0:f5:88:4b:32:
17:1b:d4:f4:1c:aa:f9:b8:75:52:b1:6f:bd:3e:6e:c1:fb:89:
56:56:90:14:9c:ac:54:b9:44:07:4f:f6:a8:ff:15:82:40:45:
ba:84:9c:97:ae:97:20:c2:06:31:ed:36:1c:20:52:bf:d1:b1:
09:5b:11:07:0d:46:67:4f:29:f0:a1:25:d0:bc:ae:fd:50:06:
6b:58:16:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 18:39:48 2024 by rpki-client on console-fra.rpki-client.org