Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
File: HqvXZaBQUv7FmmonPV70v8ekA1o.mft (raw, json)
Hash identifier: 0w1GiC1qaZeuicPuDreK4XctIRsRwzv+EKdiSEubQqY=
Subject key identifier: 01:69:42:A1:77:8E:EE:29:01:E6:A7:21:CA:27:A8:D2:1E:3A:A7:1B
Authority key identifier: 1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
Certificate issuer: /CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Certificate serial: 0191FA47231CA94D892EBF318E0ADF180A4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
Manifest number: 12BC
Signing time: Mon 16 Sep 2024 10:00:51 +0000
Manifest this update: Mon 16 Sep 2024 10:00:51 +0000
Manifest next update: Tue 17 Sep 2024 10:00:51 +0000
Files and hashes: 1: GxRZXjJGnA37mj5lbry9OstzPSA.roa (hash: 5x03qkhOGBcR+wdIpN7qn8MhGEOdLMVF9P50igP1lHE=)
2: HqvXZaBQUv7FmmonPV70v8ekA1o.crl (hash: Q1x5P1cb9wau/5LPs7y0o3Bx3vVaXpaAPv/BFhkQdps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 10:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:47:23:1c:a9:4d:89:2e:bf:31:8e:0a:df:18:0a:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Validity
Not Before: Sep 16 10:00:51 2024 GMT
Not After : Sep 17 10:00:51 2024 GMT
Subject: CN=016942a1778eee2901e6a721ca27a8d21e3aa71b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f5:54:9a:4f:08:b3:f6:e7:7a:14:c2:51:13:
db:98:29:e3:e2:15:c8:dc:f7:e2:79:2d:c6:a6:d7:
cd:dc:96:f8:18:8e:52:7d:5b:cc:ad:64:ce:c1:4f:
61:7d:ce:1a:ad:bd:dd:a9:99:2b:ee:f0:f4:47:36:
bb:6a:c4:30:38:78:ac:42:b1:91:1c:2f:6e:9b:ca:
4d:f1:4d:1e:c3:5f:9c:e1:e8:6f:6b:ee:85:7f:ab:
51:dd:10:25:56:2e:50:83:1a:46:89:7b:59:35:a2:
aa:13:38:d6:1b:5c:90:b4:65:49:73:66:cb:64:90:
6c:46:9d:b0:5c:d8:b1:83:01:b1:57:bc:8d:7d:fd:
2f:2a:04:3f:01:c8:15:3f:e8:cf:44:ce:68:54:f2:
0d:c7:3e:d6:df:f7:f0:fd:ab:6f:a5:30:f8:f9:56:
8e:82:8c:44:f5:cf:79:fa:21:c0:22:dd:25:2e:97:
a1:65:05:f5:96:88:63:3a:b0:d8:d6:61:3f:50:a4:
cc:e9:02:50:4d:26:db:f6:bb:b3:54:ad:13:26:92:
92:77:18:51:89:6b:f3:6f:58:ec:51:1d:60:8e:e5:
43:4d:d0:15:bd:4f:c3:e4:4b:90:75:8a:34:9f:04:
80:02:df:b0:fc:3b:0f:33:55:d2:30:d8:15:78:47:
e7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:69:42:A1:77:8E:EE:29:01:E6:A7:21:CA:27:A8:D2:1E:3A:A7:1B
X509v3 Authority Key Identifier:
keyid:1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:25:76:41:c2:fa:4c:7b:e5:2a:b0:af:7f:ff:49:9c:70:05:
6d:21:11:ad:28:07:d5:f2:d3:18:cf:b1:b0:16:63:c6:75:dc:
2d:50:f8:54:d1:ac:2a:d0:19:55:24:f0:b3:15:90:bb:d2:e9:
85:03:c9:e2:b8:88:30:1c:04:af:82:69:04:47:e5:66:14:a3:
d8:ee:80:75:2e:ea:50:31:58:ea:35:c3:be:d2:de:26:7a:a8:
89:91:fc:12:5a:ab:b2:0e:02:51:29:53:00:50:fb:ce:09:1c:
65:16:e4:24:3e:ca:bf:45:ff:d4:37:34:64:28:1b:7c:11:b6:
cc:98:65:52:7f:37:2d:9f:34:cc:05:de:3b:4e:66:90:93:20:
b6:11:43:e9:d9:42:94:b0:27:ab:8f:49:83:de:09:7f:85:4e:
72:e7:9c:a2:d9:b4:6a:a2:a7:1c:f0:f7:34:99:25:4b:2b:e4:
d3:f3:2d:f5:e3:c4:56:10:54:3d:7e:06:ff:d2:4a:dd:4e:76:
6e:96:b2:c2:71:5b:2d:ef:0d:b5:b2:f7:99:3d:08:93:95:85:
79:bb:cb:85:45:de:f9:5d:67:21:89:d8:e6:c3:ba:ba:c6:c9:
e8:19:5a:27:88:d6:79:54:aa:ac:5f:d2:30:4b:e1:27:bd:84:
46:7d:11:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZH6RyMcqU2JLr8xjgrfGApOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYWJkNzY1YTA1MDUyZmVjNTlhNmEyNzNkNWVmNGJmYzdh
NDAzNWEwHhcNMjQwOTE2MTAwMDUxWhcNMjQwOTE3MTAwMDUxWjAzMTEwLwYDVQQD
EygwMTY5NDJhMTc3OGVlZTI5MDFlNmE3MjFjYTI3YThkMjFlM2FhNzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovVUmk8Is/bnehTCURPbmCnj4hXI
3PfieS3GptfN3Jb4GI5SfVvMrWTOwU9hfc4arb3dqZkr7vD0Rza7asQwOHisQrGR
HC9um8pN8U0ew1+c4ehva+6Ff6tR3RAlVi5QgxpGiXtZNaKqEzjWG1yQtGVJc2bL
ZJBsRp2wXNixgwGxV7yNff0vKgQ/AcgVP+jPRM5oVPINxz7W3/fw/atvpTD4+VaO
goxE9c95+iHAIt0lLpehZQX1lohjOrDY1mE/UKTM6QJQTSbb9ruzVK0TJpKSdxhR
iWvzb1jsUR1gjuVDTdAVvU/D5EuQdYo0nwSAAt+w/DsPM1XSMNgVeEfnLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAFpQqF3ju4pAeanIconqNIeOqcbMB8GA1UdIwQY
MBaAFB6r12WgUFL+xZpqJz1e9L/HpANaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHF2WFphQlFVdjdGbW1vblBWNzB2OGVrQTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9lMTA3MjItZGFiYi00YTQxLTg5MjMt
YjFiNjgyZTIwNjBmLzEvSHF2WFphQlFVdjdGbW1vblBWNzB2OGVrQTFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9lMTA3MjItZGFiYi00YTQxLTg5MjMtYjFiNjgyZTIwNjBm
LzEvSHF2WFphQlFVdjdGbW1vblBWNzB2OGVrQTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADCV2QcL6
THvlKrCvf/9JnHAFbSERrSgH1fLTGM+xsBZjxnXcLVD4VNGsKtAZVSTwsxWQu9Lp
hQPJ4riIMBwEr4JpBEflZhSj2O6AdS7qUDFY6jXDvtLeJnqoiZH8Elqrsg4CUSlT
AFD7zgkcZRbkJD7Kv0X/1Dc0ZCgbfBG2zJhlUn83LZ80zAXeO05mkJMgthFD6dlC
lLAnq49Jg94Jf4VOcuecotm0aqKnHPD3NJklSyvk0/Mt9ePEVhBUPX4G/9JK3U52
bpaywnFbLe8NtbL3mT0Ik5WFebvLhUXe+V1nIYnY5sO6usbJ6BlaJ4jWeVSqrF/S
MEvhJ72ERn0RNA==
-----END CERTIFICATE-----
Generated at Mon Sep 16 16:19:24 2024 by rpki-client on console-fra.rpki-client.org