Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
File: HEwmJz2igh_OJgdaoKbiMB7ISSc.mft (raw, json)
Hash identifier: OF/nViKm/PHkmNV9+EQUbi1tu6PPgOCTJaTNKRnnCDk=
Subject key identifier: 14:40:79:C1:6E:64:C8:3F:E2:81:28:F0:70:55:2F:D3:22:00:7B:E9
Authority key identifier: 1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
Certificate issuer: /CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Certificate serial: 0193568B5ED2AD62FDDA4F9744FC29E11A3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
Manifest number: 1301
Signing time: Sat 23 Nov 2024 01:03:14 +0000
Manifest this update: Sat 23 Nov 2024 01:03:14 +0000
Manifest next update: Sun 24 Nov 2024 01:03:14 +0000
Files and hashes: 1: HEwmJz2igh_OJgdaoKbiMB7ISSc.crl (hash: 5iUKCranBcbyyN5pHDgojrka8ShX1W9fjiVg9ZZgMEU=)
2: RxnAA5jZzVMxxT76aomejmMoqk8.roa (hash: 8+FFQk19Y/OopKOyldstbYTe8oZ3Jq/HGdI6o7QiLTM=)
3: tBnzRD1UPfJdzs1g_50bjNVPunc.roa (hash: AuW0+eurExbcHbhg+ufRSeVT4XhWJxrh51ekrVWF0sM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8b:5e:d2:ad:62:fd:da:4f:97:44:fc:29:e1:1a:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Validity
Not Before: Nov 23 01:03:14 2024 GMT
Not After : Nov 24 01:03:14 2024 GMT
Subject: CN=144079c16e64c83fe28128f070552fd322007be9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7d:1c:1e:d0:05:f9:e0:48:66:d9:4b:51:1e:
0e:fa:a3:d0:9d:b3:95:87:cd:e8:fb:ec:9b:c4:74:
9c:53:be:d9:4d:30:9a:ed:68:c6:cb:b6:eb:7d:35:
b9:c8:18:43:13:61:b4:9a:b5:c4:84:27:70:eb:8e:
1b:39:49:f5:5c:be:a5:18:22:f7:23:11:70:7c:a1:
b4:a6:30:9c:23:fa:19:0d:30:02:86:bb:4e:52:8a:
37:40:2e:1d:3a:fc:2e:c1:44:08:c3:22:ce:95:67:
bb:e4:51:fe:eb:5b:c0:1e:47:46:d5:64:94:a0:77:
77:d1:2f:d8:e1:80:74:ab:76:c9:02:19:ba:67:34:
9d:7d:2f:c4:3a:86:b4:46:f4:5a:5c:f7:d7:e5:57:
1c:c2:d7:f3:d6:21:91:c3:ca:96:8b:f7:4b:86:4a:
4d:9b:08:a8:e9:40:47:b3:95:2f:3f:e8:0a:99:e8:
49:ec:8d:e8:6f:7c:ef:35:4a:1d:53:cd:4f:de:ea:
82:78:97:03:df:fe:20:49:a0:4b:00:1f:4d:82:46:
8f:b4:04:23:ad:f2:34:d8:ce:d0:ce:ee:ff:61:b8:
08:f5:1c:d4:8e:24:13:b8:d7:e9:19:b9:05:a9:20:
cf:5b:8d:f3:32:7e:08:a7:5e:39:30:07:95:92:7a:
50:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:40:79:C1:6E:64:C8:3F:E2:81:28:F0:70:55:2F:D3:22:00:7B:E9
X509v3 Authority Key Identifier:
keyid:1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:92:14:7d:88:1b:4c:13:c4:03:da:40:0b:8f:27:03:14:eb:
e5:03:37:83:6d:16:2a:89:6c:d0:8e:29:0d:b0:ce:1e:33:2c:
70:e2:a0:18:84:35:a7:bf:f1:be:55:e4:1c:6b:64:c9:8d:9a:
b2:07:33:fb:d6:47:aa:54:a2:b5:1c:4a:34:8f:54:9f:ea:3d:
25:52:11:d2:ea:e9:e4:70:94:1f:9f:97:e6:09:5e:d4:3e:4c:
43:88:1c:e3:62:24:63:2e:5f:90:77:46:59:24:79:97:29:1f:
6e:1d:ff:5c:24:02:0f:a2:6e:7a:99:06:cd:c3:5f:2f:86:33:
2c:7d:16:e8:5b:4b:4f:df:bd:d5:ff:51:88:9a:9e:b6:5c:44:
9c:ac:ec:21:b2:ef:76:16:70:5c:dd:e5:6f:9f:42:75:dd:ee:
76:dd:c1:27:98:aa:53:0b:26:00:42:2e:40:20:73:1f:63:60:
65:e5:aa:ef:fd:37:75:34:09:f4:05:89:09:10:1d:f9:94:9d:
9e:5d:02:fe:23:33:53:e7:5f:3d:75:a0:31:59:dd:d5:2b:b6:
cf:5e:f6:9a:0c:fd:15:ec:67:c0:3a:5c:8b:0f:3f:78:b4:ca:
73:38:c6:fe:eb:34:1b:51:ba:f1:9a:68:d8:2d:2f:f8:ee:54:
aa:6f:38:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:39:36 2024 by rpki-client on console-fra.rpki-client.org