Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: 6W1eAHnUATPykEZkewYDvpV976oLqYruTutXxqi1MvM=
Subject key identifier: 9E:20:17:49:47:93:BB:6A:34:12:CF:F6:2C:CE:DE:7D:90:4C:D4:BD
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019350BDFC17FB88263CDC3125DDF7056A68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1238
Signing time: Thu 21 Nov 2024 22:00:48 +0000
Manifest this update: Thu 21 Nov 2024 22:00:48 +0000
Manifest next update: Fri 22 Nov 2024 22:00:48 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: Smht8BQMXAJ3VV4MSoc1h3QIG4s72pGHBlWujJAc59U=)
2: abPR2jmYCGCdM2g_MuKwKH53ACQ.roa (hash: 5zk3AFPYv3C1J5Na4d0KqgTcctvCOKWFtY3MD7GkRIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:50:bd:fc:17:fb:88:26:3c:dc:31:25:dd:f7:05:6a:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Nov 21 22:00:48 2024 GMT
Not After : Nov 22 22:00:48 2024 GMT
Subject: CN=9e2017494793bb6a3412cff62ccede7d904cd4bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:23:cd:82:3a:92:ae:bb:f6:db:79:08:45:65:
43:42:29:94:bb:97:d3:9c:31:ad:4a:80:b8:4c:05:
51:19:ea:5f:12:fa:c4:28:71:3c:a1:42:cb:8c:35:
0f:aa:cd:88:8f:eb:6c:1a:5f:8a:74:77:f3:92:5f:
fa:c6:4c:84:aa:2e:69:22:de:6e:41:49:6e:3c:fe:
67:0a:be:28:5c:75:18:55:c0:c3:3b:56:c6:6b:37:
f7:a3:60:79:a5:9e:18:97:2b:c9:12:88:41:55:f1:
c1:02:9e:52:b9:c6:51:17:ed:7b:bf:51:b6:0e:2b:
ad:7c:be:d0:b5:0d:ed:85:04:ee:56:5c:03:dd:b2:
ab:36:1e:ea:53:20:96:48:d9:dd:7c:a0:f3:96:14:
ac:9e:0b:89:32:f6:13:0e:3b:08:34:f7:00:84:31:
d2:e7:38:7a:89:78:4f:88:06:bd:65:b2:e4:df:11:
ba:db:03:c7:01:cb:3f:aa:a9:82:f0:3e:70:7e:cb:
08:7b:8a:25:3e:e0:3a:13:f1:5c:76:90:b1:d9:8d:
e9:c0:da:f6:50:87:c9:95:e2:eb:79:80:fc:90:be:
88:81:29:93:29:74:d1:8a:25:39:38:4f:77:c0:ce:
d6:37:2b:2a:85:3f:fc:f5:88:74:a1:b3:54:1e:14:
02:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:20:17:49:47:93:BB:6A:34:12:CF:F6:2C:CE:DE:7D:90:4C:D4:BD
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:0c:58:b4:64:a3:db:00:49:d8:de:fb:a4:8d:a3:93:4e:45:
ea:97:64:d6:35:dd:e3:bd:cb:23:71:af:0b:26:b8:6d:23:96:
49:d4:ce:45:89:f0:83:82:94:4f:0b:94:61:fb:89:71:1b:af:
e1:36:4e:b2:f5:0a:e4:32:23:cb:ed:80:5c:2a:97:6a:78:92:
77:7e:15:0f:78:1e:e2:50:1e:8d:94:92:c8:bd:89:fb:74:93:
ab:68:fd:32:fa:dc:31:43:07:25:96:7a:7b:09:bf:e4:a5:52:
54:ac:03:e6:c6:d2:3b:22:9c:23:32:24:77:c1:22:e1:b2:97:
ba:a6:c0:3f:24:3a:bb:d0:fc:fe:da:32:d6:e7:11:83:c8:f5:
7a:84:e4:c9:e1:78:cc:15:7c:df:fe:74:b5:f4:b3:8b:56:bb:
52:e4:0c:4c:98:5b:9a:84:fb:ec:69:0f:33:01:b7:97:b6:26:
ed:31:44:e9:6e:b9:82:1b:ba:a0:3e:87:9c:84:c4:fb:20:17:
68:8b:34:df:f8:ca:21:53:81:dd:5b:b0:ce:1d:5b:82:d5:97:
70:d0:5e:3b:1d:fe:57:1b:0a:9a:51:6a:77:b2:b0:d9:21:f9:
a1:86:05:32:5d:47:54:c4:4f:a6:64:c5:8e:b2:83:2b:1d:83:
46:4b:c4:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNQvfwX+4gmPNwxJd33BWpoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYWI0ZTAwYzBkOTJjYjUwMWJiYjIyM2FjZjAzOWUyNzA5
MWRiNGUwHhcNMjQxMTIxMjIwMDQ4WhcNMjQxMTIyMjIwMDQ4WjAzMTEwLwYDVQQD
Eyg5ZTIwMTc0OTQ3OTNiYjZhMzQxMmNmZjYyY2NlZGU3ZDkwNGNkNGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCPNgjqSrrv223kIRWVDQimUu5fT
nDGtSoC4TAVRGepfEvrEKHE8oULLjDUPqs2Ij+tsGl+KdHfzkl/6xkyEqi5pIt5u
QUluPP5nCr4oXHUYVcDDO1bGazf3o2B5pZ4YlyvJEohBVfHBAp5SucZRF+17v1G2
DiutfL7QtQ3thQTuVlwD3bKrNh7qUyCWSNndfKDzlhSsnguJMvYTDjsINPcAhDHS
5zh6iXhPiAa9ZbLk3xG62wPHAcs/qqmC8D5wfssIe4olPuA6E/FcdpCx2Y3pwNr2
UIfJleLreYD8kL6IgSmTKXTRiiU5OE93wM7WNysqhT/89Yh0obNUHhQC/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ4gF0lHk7tqNBLP9izO3n2QTNS9MB8GA1UdIwQY
MBaAFB6rTgDA2Sy1AbuyI6zwOeJwkdtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMt
MTliYTg0ZDg0YWYwLzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMtMTliYTg0ZDg0YWYw
LzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZwxYtGSj
2wBJ2N77pI2jk05F6pdk1jXd473LI3GvCya4bSOWSdTORYnwg4KUTwuUYfuJcRuv
4TZOsvUK5DIjy+2AXCqXaniSd34VD3ge4lAejZSSyL2J+3STq2j9MvrcMUMHJZZ6
ewm/5KVSVKwD5sbSOyKcIzIkd8Ei4bKXuqbAPyQ6u9D8/toy1ucRg8j1eoTkyeF4
zBV83/50tfSzi1a7UuQMTJhbmoT77GkPMwG3l7Ym7TFE6W65ghu6oD6HnITE+yAX
aIs03/jKIVOB3Vuwzh1bgtWXcNBeOx3+VxsKmlFqd7Kw2SH5oYYFMl1HVMRPpmTF
jrKDKx2DRkvE8A==
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:49:22 2024 by rpki-client on console-fra.rpki-client.org