Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
File: HnsuJD-KqVRZeTK83NmvZWDc5RY.mft (raw, json)
Hash identifier: yKG0HKkE9CBQvrS6HBT/Y0K4XnbLSbWtbibEXoTQ4ds=
Subject key identifier: EB:88:0A:94:2B:BC:5E:1F:D3:89:03:28:51:59:AC:C3:66:AE:0B:0E
Authority key identifier: 1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
Certificate issuer: /CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Certificate serial: 019356895DD7305C0B50C473097FF350203E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
Manifest number: 0834
Signing time: Sat 23 Nov 2024 01:01:03 +0000
Manifest this update: Sat 23 Nov 2024 01:01:03 +0000
Manifest next update: Sun 24 Nov 2024 01:01:03 +0000
Files and hashes: 1: HnsuJD-KqVRZeTK83NmvZWDc5RY.crl (hash: HsFPWoDhT+pgAN9iTF22/EgpjFv7x9LhXpYIuL+VcDc=)
2: dh2m9udZplSYWI4ck9mh49rhFBQ.roa (hash: gU1r13OkA09j+8Ulc+4kYftdQmoTvIgrP9ZW5HfM3Fw=)
3: wzkm0L8_KyK9vRV03vnGTCTahr4.roa (hash: DizCHZ0vw4qihAcDKoDGRH58S8RCd67+eyukBBFzXNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:5d:d7:30:5c:0b:50:c4:73:09:7f:f3:50:20:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Validity
Not Before: Nov 23 01:01:03 2024 GMT
Not After : Nov 24 01:01:03 2024 GMT
Subject: CN=eb880a942bbc5e1fd38903285159acc366ae0b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4f:ae:51:95:87:82:2b:f7:20:a3:53:e4:01:
22:d9:24:28:1e:b9:9f:64:0f:2d:6a:58:9b:ce:27:
0e:2f:30:3c:b3:f0:4c:8c:0e:15:c1:07:26:b6:89:
67:bf:80:c0:42:9a:ea:5f:71:c4:a1:51:62:c5:13:
3e:e5:93:eb:0a:5e:c3:dc:f2:8e:d1:fe:d3:f4:39:
47:c8:5c:4f:90:44:74:70:b8:ec:34:7d:42:cd:55:
49:1f:cd:e6:6c:83:48:4b:df:97:8a:0e:03:13:af:
e2:9c:3d:36:e3:58:09:77:ca:d1:b5:cc:8f:1a:4e:
58:73:43:b2:48:6b:53:37:8b:c4:93:54:3a:17:3d:
1a:17:62:27:28:38:42:6e:77:b6:ea:85:f9:b5:e0:
84:80:28:ba:bd:ca:98:1e:f9:17:9c:8b:21:38:de:
1f:39:71:da:10:ba:95:ec:6e:d0:bc:e0:f7:20:f2:
63:36:de:15:be:7c:c3:39:2b:42:d4:01:79:c7:86:
be:9b:b5:14:cd:31:6d:ac:c5:03:34:fd:d3:47:f6:
b9:b8:6a:d6:40:d1:12:66:34:cc:bc:45:d7:57:39:
c2:8c:bc:d9:a1:65:95:1e:aa:66:7d:e4:02:1c:1c:
b6:aa:bd:3f:07:c3:a6:65:0a:01:28:54:22:60:55:
89:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:88:0A:94:2B:BC:5E:1F:D3:89:03:28:51:59:AC:C3:66:AE:0B:0E
X509v3 Authority Key Identifier:
keyid:1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:9f:06:bd:85:70:1c:96:c4:b8:e7:93:3f:dc:57:75:15:db:
c3:a7:0a:d4:93:3f:ee:d3:60:1f:df:18:ec:db:7f:98:f0:f9:
3c:30:32:6a:fc:97:32:38:ca:68:10:de:50:25:33:e9:91:86:
97:e3:c1:41:5b:9c:53:9e:34:5f:4f:25:a3:f1:f2:c9:5b:40:
a7:29:cd:98:40:82:41:d4:05:0c:7e:8d:9a:d5:3c:9f:51:4b:
87:19:ee:d0:1c:0b:22:06:15:f6:3c:70:a1:d0:0d:6b:6b:a9:
5e:4e:54:89:13:a1:04:20:a2:04:f6:b1:98:ce:a0:bc:06:ec:
a3:35:ab:3e:8e:3c:bb:f3:b9:91:da:35:eb:1e:83:68:3b:19:
84:99:91:aa:33:98:b6:ef:6b:82:ac:21:db:70:4b:e7:94:4e:
76:63:17:7f:ff:87:1d:b4:58:5d:b3:23:6f:1c:0f:78:c0:bc:
e3:f0:d2:17:a1:59:3e:2f:89:c0:28:e5:de:b3:95:67:02:3b:
7a:5f:a4:38:03:fd:f0:f3:75:22:a3:77:d9:12:10:7e:93:7b:
a3:e3:3c:26:91:20:0d:df:9f:7f:dd:fe:0f:2e:8a:9f:ae:c8:
10:9c:70:42:88:a3:30:4e:f9:2e:a1:bf:5f:a6:1a:64:07:7c:
86:e7:cb:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:22:11 2024 by rpki-client on console-fra.rpki-client.org