Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: ISYJFQ86Ybpc6aDefvtONo+ziQtXuR6IFER607kIgCg=
Subject key identifier: D2:3C:4D:20:CD:57:88:8F:E9:77:50:F4:41:22:F9:5C:B0:D9:B1:7E
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 01935877F4CECE4DA3AC4913D195E27A09F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 1305
Signing time: Sat 23 Nov 2024 10:01:16 +0000
Manifest this update: Sat 23 Nov 2024 10:01:16 +0000
Manifest next update: Sun 24 Nov 2024 10:01:16 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: 4/T1Wn+eYo+//JO1IkQXgKJhCAjnXIgJxWzD0xqd6/U=)
2: eslv8uAl8GrHJm6zRkjM4o4I8Fo.roa (hash: AhGLjbkivIvKiyJBY8bZR41y7G9BWCXdRzR5HLr5SoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:f4:ce:ce:4d:a3:ac:49:13:d1:95:e2:7a:09:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Nov 23 10:01:16 2024 GMT
Not After : Nov 24 10:01:16 2024 GMT
Subject: CN=d23c4d20cd57888fe97750f44122f95cb0d9b17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bd:55:0a:84:67:be:af:4a:1c:a8:41:d4:ba:
49:ae:38:00:78:13:d1:b2:fc:96:f3:84:f8:ad:87:
d1:1d:cb:7c:e7:42:ed:c6:f8:73:f3:18:7b:83:12:
85:e9:32:33:f0:57:cc:b1:14:6b:47:7f:3e:c2:4a:
29:96:30:4d:b5:6b:ad:16:0d:64:f0:05:b6:11:12:
65:69:83:a4:9b:39:a6:41:98:23:bb:3c:4b:80:dd:
64:54:84:69:7a:7b:47:fd:4b:d8:1e:08:48:ef:52:
6e:36:42:7d:0d:63:f2:8c:eb:fe:06:66:c0:6c:55:
f9:58:27:74:2d:07:b7:84:3d:dd:b9:53:23:da:65:
42:27:5a:e7:24:d8:c7:35:d2:cd:e5:f9:28:8e:a2:
fa:a0:43:a1:75:bd:48:43:e4:1b:52:fb:19:46:fd:
c9:f7:2c:4f:b3:97:40:53:c5:c2:ae:1a:67:d9:2f:
1c:52:19:f0:6d:77:29:4b:5f:eb:7c:c1:90:0a:42:
29:bb:59:77:cf:f6:86:8e:8c:f2:33:e3:c2:72:27:
f0:a6:ec:7c:3b:54:69:7e:16:80:31:bd:74:07:df:
8c:51:0f:08:f8:4a:39:fd:10:50:d4:11:d2:43:db:
4a:ac:e3:4f:8a:24:5b:c0:cb:c0:7f:44:09:72:b0:
56:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:3C:4D:20:CD:57:88:8F:E9:77:50:F4:41:22:F9:5C:B0:D9:B1:7E
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:4a:06:d6:1c:25:c8:f8:f8:0d:81:4c:63:cc:0d:79:38:f5:
01:72:fe:81:48:47:44:73:87:ef:f5:e9:7f:30:16:13:f5:85:
13:19:3e:da:3f:86:1a:4f:58:e0:50:5b:f1:14:14:ad:a4:6b:
ab:3d:ae:ed:9b:ca:ea:2c:2a:a0:06:2a:6b:d6:5b:41:a8:e2:
9c:fa:eb:2d:a3:31:2f:70:29:cb:6f:89:7e:48:4d:e9:1a:de:
a2:92:a9:e1:12:81:52:7f:c9:0b:7f:89:4e:45:5f:5b:cc:4b:
be:ed:f2:43:20:c1:65:42:9e:56:2f:40:3d:60:a3:35:c2:6f:
2e:4b:b6:75:3e:00:1c:79:4a:d0:82:12:f9:ec:08:67:40:43:
f4:2f:ba:e0:d1:87:63:98:af:b4:dd:40:e1:67:e0:68:37:6e:
44:1e:5b:1f:d1:aa:97:c3:23:ab:6f:16:22:28:f0:92:de:44:
4d:20:8c:bb:f6:49:41:05:ff:93:bc:7e:10:2e:ae:64:d7:9d:
ab:c0:9e:c2:3b:f0:88:e7:b1:5f:dd:15:75:93:5d:9a:81:41:
dc:8c:ee:7b:3e:2d:76:99:4a:35:df:57:d9:b8:85:d8:b1:77:
48:65:32:0d:85:d8:06:40:01:c0:17:4b:03:5f:7c:18:14:fe:
aa:b6:93:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:12:27 2024 by rpki-client on console-ams.rpki-client.org