Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
File: htqvTmjTIiSCMFRM2NspVo5s8AM.mft (raw, json)
Hash identifier: Agn0KlYH5HrLoaqnI13hJtFS89TL+A+TfpOqBLCnz18=
Subject key identifier: B6:86:9A:A6:0B:46:93:98:92:0A:C4:8A:19:E1:D5:10:E6:8C:29:EF
Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003
Certificate serial: 019358788C2BCA0B389E3A86BADA01D087D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 10:01:55 +0000
Manifest this update: Sat 23 Nov 2024 10:01:55 +0000
Manifest next update: Sun 24 Nov 2024 10:01:55 +0000
Files and hashes: 1: htqvTmjTIiSCMFRM2NspVo5s8AM.crl (hash: NHQgigcWpdWEbb/+FIFHZnt7gwobwyxgoTHS23xqWx0=)
2: tMgG9IZZ_AY2QXFrFgikmH_tb0I.roa (hash: 9sGV5pBXamcQ1Vym05LXxfssd99QZGwLY2Gaw9fyQtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:8c:2b:ca:0b:38:9e:3a:86:ba:da:01:d0:87:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003
Validity
Not Before: Nov 23 10:01:55 2024 GMT
Not After : Nov 24 10:01:55 2024 GMT
Subject: CN=b6869aa60b469398920ac48a19e1d510e68c29ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a2:05:e6:0c:95:8d:2a:68:da:d5:9c:32:9c:
5b:c2:c8:e8:3c:fe:1c:16:11:f2:48:75:bd:b1:54:
64:93:16:a1:47:32:63:80:e2:1a:f8:c2:ae:3a:7c:
df:ba:50:a7:79:cd:64:8f:e1:bb:53:b4:53:5a:63:
79:a7:e8:35:16:13:2e:91:cd:9d:e9:36:02:8b:dc:
5f:7c:4c:c7:01:b0:e7:aa:d8:8b:78:cd:47:f1:d4:
90:89:41:a3:dc:7f:65:e9:71:3e:3b:54:06:b9:cd:
fa:62:9c:8c:ff:0f:5e:71:d3:49:86:a6:22:cc:89:
b0:d8:16:a8:97:5d:a1:c9:b0:9b:58:26:3a:c3:cc:
da:a3:34:84:1a:1e:bb:0f:8d:e6:1e:b9:b5:7c:fa:
66:d1:69:43:91:3f:46:a4:8e:b4:20:6d:2d:35:8d:
08:95:d0:b8:4f:78:97:21:ef:a4:2d:5e:55:69:32:
37:24:d3:16:91:f8:de:b5:ac:70:80:58:10:41:6d:
b9:ee:e5:a5:38:4c:c7:84:79:6a:7f:03:48:b7:35:
2b:9c:ef:dc:f7:4b:fe:8c:0f:78:94:18:13:d1:37:
26:18:d6:99:5e:87:d4:6d:7b:ce:c3:ab:c9:4b:09:
10:3e:ab:77:25:9c:d8:19:50:a5:96:4e:f2:f5:fc:
ee:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:86:9A:A6:0B:46:93:98:92:0A:C4:8A:19:E1:D5:10:E6:8C:29:EF
X509v3 Authority Key Identifier:
keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:d8:e3:b2:d7:f4:18:f7:97:f6:7d:61:40:1a:d8:e9:fe:f0:
2e:6e:3d:bf:43:a7:60:e0:d7:07:b2:a4:58:56:57:c5:4b:e5:
5e:66:a3:35:f1:92:ec:e7:12:0e:7f:1f:2c:cb:f6:66:3e:4c:
49:3b:a1:be:50:7b:a1:a9:1e:03:b8:1a:c1:dc:2e:ce:89:4c:
c5:73:20:58:92:bf:39:1b:9d:f7:de:bc:65:37:93:7e:1d:54:
a5:e2:0a:b9:64:42:42:f3:20:00:17:e3:f6:41:42:02:b0:9a:
15:e2:8f:d8:cd:b8:fb:90:b8:88:5b:5f:bc:82:90:d0:50:95:
e8:5d:b8:e8:6b:68:3e:ac:91:c6:33:56:c1:24:5a:48:93:6c:
0c:a8:b6:67:c0:2c:62:25:7c:29:29:cf:f0:f2:ab:e4:d9:ba:
70:28:5e:46:00:86:6e:9c:22:d9:e1:04:31:4c:58:6c:46:6a:
7b:2f:58:f3:94:c3:3e:e0:f1:75:cd:38:a9:f0:73:b4:a6:b2:
f3:26:ed:5d:f0:28:19:af:4b:50:2a:a3:da:8a:59:b4:31:b0:
d2:18:be:2b:e4:1e:ff:99:98:23:ae:fc:7f:3d:f1:4b:b9:2d:
ba:59:eb:ef:ad:38:fc:d3:f1:06:84:7c:75:79:97:dc:2c:6c:
a4:15:ac:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:03:55 2024 by rpki-client on console-fra.rpki-client.org