Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
File: hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft (raw, json)
Hash identifier: TIUpUWLRLWMCOWctwTyBmOZGqnJhAcDZgTSX126WEY0=
Subject key identifier: F5:9E:53:44:5E:BC:8A:6B:B0:44:CD:AE:E0:D3:46:2C:D4:04:35:2D
Authority key identifier: 85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
Certificate issuer: /CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Certificate serial: 01935688FCD80B0B815C80F0431AE62CF760
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
Manifest number: 1373
Signing time: Sat 23 Nov 2024 01:00:38 +0000
Manifest this update: Sat 23 Nov 2024 01:00:38 +0000
Manifest next update: Sun 24 Nov 2024 01:00:38 +0000
Files and hashes: 1: 531yUaqmvnRQXArtZxsVLTfrWOA.roa (hash: 38uNSZ7f9JAPLBqCMHitV0FZ+Toz22KHvHBYOwQ3+TU=)
2: hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl (hash: 7WLeXJRWBluO37zBnQ8njf5w6/Jl2tATZGgomhXlCI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:fc:d8:0b:0b:81:5c:80:f0:43:1a:e6:2c:f7:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Validity
Not Before: Nov 23 01:00:38 2024 GMT
Not After : Nov 24 01:00:38 2024 GMT
Subject: CN=f59e53445ebc8a6bb044cdaee0d3462cd404352d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:63:0d:6a:59:fd:6b:6f:8c:88:ca:54:b9:64:
9d:29:ef:55:ec:c0:d3:06:26:ea:77:88:e3:73:ec:
ac:49:dd:6a:d8:9d:03:af:4d:5d:71:80:79:07:e7:
9d:6a:fd:7c:a3:5f:63:e3:ce:3d:e1:da:6d:36:04:
d0:0b:7a:ee:f7:d4:07:1d:2e:2e:d3:9b:0a:90:e0:
61:99:f8:f0:17:ef:2f:8d:a6:98:31:c9:e5:17:ea:
2a:8d:ff:61:5a:75:78:94:ef:5b:ba:22:c8:28:bc:
c1:cb:59:0a:1c:78:f5:9e:d5:e7:e3:83:30:4b:f8:
6e:51:9c:71:95:fd:1e:f1:39:f5:7e:38:82:a0:0a:
94:3b:14:64:9c:52:61:b1:24:14:6d:2d:17:ee:a8:
11:72:e3:f5:d4:16:87:a5:4b:4c:db:6c:a9:f4:dd:
8c:98:86:02:f2:d3:64:e4:82:33:be:73:42:b2:44:
b2:2d:d5:90:63:11:87:20:46:90:cd:3c:16:31:fb:
64:8a:e0:86:ac:57:fc:a8:55:2a:9f:49:ca:f4:d5:
b2:13:99:56:76:9c:d9:5f:80:28:b8:c3:8b:ea:b1:
3f:cb:ad:e5:c7:ba:5c:90:66:c4:5c:07:fb:a2:27:
80:c3:d1:3b:94:8f:30:87:9e:08:b6:c9:6d:f2:9e:
f4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9E:53:44:5E:BC:8A:6B:B0:44:CD:AE:E0:D3:46:2C:D4:04:35:2D
X509v3 Authority Key Identifier:
keyid:85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:32:f6:ef:c9:0b:87:f8:23:59:93:69:6e:ab:d4:b1:45:8e:
7f:79:5a:52:c1:19:a9:6f:64:8d:38:c6:fd:bf:9b:16:7d:e9:
1b:23:94:9e:f0:30:ed:95:99:57:5c:cc:7b:ca:fb:fc:e9:84:
7a:86:21:92:7b:1c:40:ad:84:27:a9:b5:aa:15:b7:46:76:e9:
80:ce:22:f4:2b:75:77:13:74:d0:9a:8a:34:e8:33:13:8b:f4:
3a:b9:75:ce:61:18:e8:b5:7c:46:38:60:c1:1e:3c:96:54:4e:
21:ab:64:e1:5c:95:2d:d2:40:5b:e6:f2:66:ed:30:46:36:40:
0e:71:e2:13:d7:d7:37:37:3d:2b:19:58:aa:e0:c5:9c:df:f6:
b9:90:73:57:62:a3:72:d4:b7:0c:6a:da:8d:31:de:78:8b:02:
61:2c:62:29:46:d1:c6:23:40:21:2e:18:24:b3:cb:a1:a5:a7:
aa:a6:f5:c1:23:43:86:3c:b1:19:2b:14:7c:16:02:71:fe:c6:
f5:58:b4:96:57:13:08:9f:f9:7e:54:20:b9:74:65:76:26:68:
cc:69:84:31:f3:eb:3a:31:bb:1e:7c:c8:41:b4:08:9d:5d:f5:
10:a9:37:d8:b1:19:b8:43:7b:1b:d8:b9:25:9e:10:e4:3a:e7:
26:78:8c:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:39:42 2024 by rpki-client on console-fra.rpki-client.org