Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.mft
File: H1KEKQNNz7oB9__1x8yIVtTQbhs.mft (raw, json)
Hash identifier: XJidF0f0cV/oTna9uz9TxhtMtRInG6VA7/iCZINlv2U=
Subject key identifier: E7:9F:B4:FA:51:71:8B:67:27:3E:DD:4B:0D:D1:95:07:1C:F5:AA:1B
Authority key identifier: 1F:52:84:29:03:4D:CF:BA:01:F7:FF:F5:C7:CC:88:56:D4:D0:6E:1B
Certificate issuer: /CN=1f528429034dcfba01f7fff5c7cc8856d4d06e1b
Certificate serial: 0194064657368814F06102B57B1F85064166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H1KEKQNNz7oB9__1x8yIVtTQbhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.mft
Manifest number: 0924
Signing time: Fri 27 Dec 2024 04:01:00 +0000
Manifest this update: Fri 27 Dec 2024 04:01:00 +0000
Manifest next update: Sat 28 Dec 2024 04:01:00 +0000
Files and hashes: 1: 4bSnWZ2ImoeZKeRExyc35ba3rBU.roa (hash: VsUTknZJnoUFsI9tOv6h3EHOK3+urwT8clXKjvg1KBg=)
2: H1KEKQNNz7oB9__1x8yIVtTQbhs.crl (hash: ZEawXET6yuiWrH916Q/MEf9FOWBNi3ogOmKHO3UkOQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/H1KEKQNNz7oB9__1x8yIVtTQbhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:46:57:36:88:14:f0:61:02:b5:7b:1f:85:06:41:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f528429034dcfba01f7fff5c7cc8856d4d06e1b
Validity
Not Before: Dec 27 04:01:00 2024 GMT
Not After : Dec 28 04:01:00 2024 GMT
Subject: CN=e79fb4fa51718b67273edd4b0dd195071cf5aa1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:de:e1:55:2d:07:a0:34:26:5a:4d:d0:58:2f:
6c:b8:d8:20:b4:26:b3:14:8f:98:d7:e3:7a:a8:25:
bf:be:96:fb:9e:76:2f:56:c6:51:5b:42:ba:bc:d4:
8c:0f:2d:61:fe:61:22:cf:ef:3a:1f:ac:a9:74:bc:
e8:24:ed:e3:3e:33:d4:78:f6:be:6e:0e:58:0a:3b:
bd:cd:43:e0:94:76:9c:62:f3:42:ec:4c:2a:42:01:
68:42:c6:c3:b3:cd:29:54:85:72:dc:bc:88:04:15:
c4:4c:9b:5a:e7:12:ee:4b:d6:0d:6f:1c:13:16:c2:
b7:c7:c2:d0:db:5b:8f:08:91:b3:04:cd:7a:49:b2:
26:1e:76:ef:43:86:be:b6:dc:77:04:07:8d:7e:10:
78:4c:19:49:31:fe:dc:46:b8:21:e6:be:57:6c:e0:
c8:34:c4:17:2c:40:b9:c6:97:d8:93:b3:e0:35:6a:
d0:a0:c7:2e:bf:d3:7e:87:7c:55:d9:e3:9f:1e:8d:
4e:43:14:f6:c3:82:55:c3:98:5f:f1:8d:de:be:ba:
31:77:3b:02:a1:d6:7d:18:fa:5b:aa:05:0b:3a:62:
26:f7:70:6f:c8:d6:68:50:54:50:61:49:36:b8:8e:
a8:b0:ec:81:ac:67:c0:df:bd:c6:f9:53:6a:b3:8e:
3c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:9F:B4:FA:51:71:8B:67:27:3E:DD:4B:0D:D1:95:07:1C:F5:AA:1B
X509v3 Authority Key Identifier:
keyid:1F:52:84:29:03:4D:CF:BA:01:F7:FF:F5:C7:CC:88:56:D4:D0:6E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H1KEKQNNz7oB9__1x8yIVtTQbhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:a7:72:c1:f1:e0:b3:90:f4:fe:93:4b:d3:b9:e7:6a:12:65:
e9:33:06:10:85:2b:55:ac:0a:3a:54:6e:fd:3a:98:49:cd:c3:
53:85:4d:27:10:cd:97:68:f1:e8:df:65:c0:da:7a:73:64:40:
1a:0e:f6:7a:7f:0d:8d:a3:7e:4e:84:c5:26:01:08:ba:cc:43:
a5:8d:1f:b4:05:db:4c:5c:53:19:27:fa:73:42:a8:2a:88:31:
ca:e8:fb:fb:ac:af:8d:8d:f3:f2:57:a3:5e:5f:41:39:1e:c0:
a3:b7:bd:f1:9e:56:f2:a0:e9:ad:21:34:e2:ba:bd:9b:67:bc:
e9:f5:3f:4e:a6:c0:19:51:29:f6:09:38:85:3e:56:5d:b5:0f:
d8:ad:d0:c2:13:16:14:85:28:ed:39:95:10:1e:9b:85:65:1c:
97:53:0d:e3:92:73:10:ea:16:02:3d:a2:2f:f7:8b:ab:3a:a2:
4d:f9:24:1b:05:b4:38:2c:43:d4:74:8d:2b:86:fe:2d:60:d3:
fb:40:f4:13:fb:24:75:a7:5f:80:72:6b:a9:5d:5e:b5:13:02:
ae:0b:4c:55:cf:22:f9:ad:d0:97:24:a8:d1:cf:37:c0:f5:7e:
1c:0a:ee:0d:32:a9:82:d0:51:53:11:51:5d:79:9f:1f:eb:ed:
15:86:52:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 09:59:59 2024 by rpki-client on console-ams.rpki-client.org