Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
File: HhkRubtcij4eK4pRFl-KcaCSxo0.mft (raw, json)
Hash identifier: Q3hDF8jjaEGr4jRitc63UBMvx6CeHjEzSW9hXgn53Bk=
Subject key identifier: 96:AE:63:15:8B:54:F7:A8:FE:FB:52:4C:C3:4A:16:2B:A4:53:03:FF
Authority key identifier: 1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
Certificate issuer: /CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Certificate serial: 018F4EA37C8567C08771F4C4A1F40C4EE172
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
Manifest number: 0D13
Signing time: Mon 06 May 2024 16:01:28 +0000
Manifest this update: Mon 06 May 2024 16:01:28 +0000
Manifest next update: Tue 07 May 2024 16:01:28 +0000
Files and hashes: 1: HhkRubtcij4eK4pRFl-KcaCSxo0.crl (hash: u5R4+mnhQoBlv3kecCUOEiGi6m/eNhYQf5iDz3rToDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 16:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4e:a3:7c:85:67:c0:87:71:f4:c4:a1:f4:0c:4e:e1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Validity
Not Before: May 6 16:01:28 2024 GMT
Not After : May 7 16:01:28 2024 GMT
Subject: CN=96ae63158b54f7a8fefb524cc34a162ba45303ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3d:03:a8:9a:7b:7a:02:61:45:42:83:af:1f:
77:bf:2d:c3:30:6d:7f:35:6b:12:6a:9d:77:6d:98:
77:28:a3:06:76:f6:dc:26:da:74:b4:ff:ae:99:8f:
12:aa:52:6e:96:80:ee:0b:47:8a:49:ef:46:90:2e:
39:0a:a6:6a:74:07:69:74:a0:c1:d9:6d:32:a5:95:
16:20:09:5f:6f:2a:ea:74:47:bd:74:76:32:03:86:
7b:e9:59:9d:41:4c:57:9e:8e:7e:0e:e1:e6:93:a0:
01:a6:8f:e8:68:49:13:31:25:06:04:f4:c5:00:71:
d9:05:59:04:44:72:3b:99:a3:de:32:17:b5:55:56:
fc:a3:7b:ef:71:0a:f7:e3:7f:d8:1b:54:aa:33:41:
b1:1b:44:37:7c:bc:a6:b0:85:d6:4d:fd:8e:b3:76:
56:52:4a:44:dc:0c:e5:92:d1:81:2f:9b:e7:6a:d0:
c3:9d:9e:d0:53:24:77:d4:b4:ba:87:d8:f8:cc:32:
29:63:ea:4f:0a:dd:d4:49:e8:6c:07:8f:ba:bf:c2:
92:2f:8f:de:b9:b6:29:8b:bd:c7:e3:6a:85:a0:2c:
ae:86:69:26:5e:9b:d4:f4:2b:69:7b:97:4d:8a:c2:
a4:e7:4c:40:c3:7b:01:ff:72:57:44:f3:26:de:b4:
7a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AE:63:15:8B:54:F7:A8:FE:FB:52:4C:C3:4A:16:2B:A4:53:03:FF
X509v3 Authority Key Identifier:
keyid:1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:d8:8b:45:dd:83:0a:77:44:0f:8c:01:95:fc:77:ff:77:38:
fc:a5:65:47:5f:f2:41:f2:71:d0:58:6b:4f:0b:96:fb:b6:dc:
51:54:37:a0:f6:75:a4:c2:fc:1e:0d:49:ab:55:a0:40:26:fd:
ef:51:53:5b:bc:49:5d:9c:b5:e5:cc:4e:5b:a8:0c:aa:8d:7f:
1f:8e:e8:ef:5f:b4:a1:85:a5:02:10:b6:99:08:3b:f4:46:d9:
e5:e6:51:60:4a:8e:d8:0a:e1:35:f1:e7:17:09:5b:3e:b0:d4:
26:01:07:79:95:31:ba:a2:d6:06:1d:4f:ae:f9:4f:7f:87:49:
23:9b:8d:b7:8c:24:ad:53:6b:08:94:67:4a:a4:96:90:64:f4:
58:af:1e:83:0c:60:e4:3b:90:f0:6d:f4:d2:42:67:82:73:6e:
cb:9c:09:37:3b:85:61:fd:ee:ba:16:00:37:fb:d1:8d:bc:a6:
f8:27:d6:d7:00:64:9a:d3:8d:3b:af:75:b1:42:89:56:a1:a1:
5a:23:65:49:65:d7:7e:20:39:cb:96:04:45:c5:4c:86:22:50:
69:73:aa:81:55:be:3e:da:8d:c6:23:77:ac:8e:cf:9a:90:2e:
4e:51:0d:19:42:cd:74:90:5d:b4:40:c7:71:18:fd:b3:b0:f0:
10:d3:11:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9Oo3yFZ8CHcfTEofQMTuFyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlMTkxMWI5YmI1YzhhM2UxZTJiOGE1MTE2NWY4YTcxYTA5
MmM2OGQwHhcNMjQwNTA2MTYwMTI4WhcNMjQwNTA3MTYwMTI4WjAzMTEwLwYDVQQD
Eyg5NmFlNjMxNThiNTRmN2E4ZmVmYjUyNGNjMzRhMTYyYmE0NTMwM2ZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtD0DqJp7egJhRUKDrx93vy3DMG1/
NWsSap13bZh3KKMGdvbcJtp0tP+umY8SqlJuloDuC0eKSe9GkC45CqZqdAdpdKDB
2W0ypZUWIAlfbyrqdEe9dHYyA4Z76VmdQUxXno5+DuHmk6ABpo/oaEkTMSUGBPTF
AHHZBVkERHI7maPeMhe1VVb8o3vvcQr343/YG1SqM0GxG0Q3fLymsIXWTf2Os3ZW
UkpE3AzlktGBL5vnatDDnZ7QUyR31LS6h9j4zDIpY+pPCt3USehsB4+6v8KSL4/e
ubYpi73H42qFoCyuhmkmXpvU9Ctpe5dNisKk50xAw3sB/3JXRPMm3rR6awIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJauYxWLVPeo/vtSTMNKFiukUwP/MB8GA1UdIwQY
MBaAFB4ZEbm7XIo+HiuKURZfinGgksaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGhrUnVidGNpajRlSzRwUkZsLUtjYUNTeG8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83NjFhYjEtZDU3Mi00OTZlLWFkYWQt
Yjc2ODZiOTA2MWE1LzEvSGhrUnVidGNpajRlSzRwUkZsLUtjYUNTeG8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS83NjFhYjEtZDU3Mi00OTZlLWFkYWQtYjc2ODZiOTA2MWE1
LzEvSGhrUnVidGNpajRlSzRwUkZsLUtjYUNTeG8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACdiLRd2D
CndED4wBlfx3/3c4/KVlR1/yQfJx0FhrTwuW+7bcUVQ3oPZ1pML8Hg1Jq1WgQCb9
71FTW7xJXZy15cxOW6gMqo1/H47o71+0oYWlAhC2mQg79EbZ5eZRYEqO2ArhNfHn
FwlbPrDUJgEHeZUxuqLWBh1PrvlPf4dJI5uNt4wkrVNrCJRnSqSWkGT0WK8egwxg
5DuQ8G300kJngnNuy5wJNzuFYf3uuhYAN/vRjbym+CfW1wBkmtONO691sUKJVqGh
WiNlSWXXfiA5y5YERcVMhiJQaXOqgVW+PtqNxiN3rI7PmpAuTlENGULNdJBdtEDH
cRj9s7DwENMRPA==
-----END CERTIFICATE-----
Generated at Mon May 6 23:44:03 2024 by rpki-client on console-fra.rpki-client.org