Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: a6ClJ0gJsDJDykVQUrOt8uT+abXa+AEN/3RsvZ+ev/Q=
Subject key identifier: 62:40:AB:42:3D:CC:4D:6A:4D:CD:DA:6A:61:68:73:D2:9E:9F:3A:75
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 0193572DA5E408B6C32A2FD97FE22992CD0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 0139
Signing time: Sat 23 Nov 2024 04:00:29 +0000
Manifest this update: Sat 23 Nov 2024 04:00:29 +0000
Manifest next update: Sun 24 Nov 2024 04:00:29 +0000
Files and hashes: 1: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: AOKAQQRwMK0aSFcTa43VuXiZ2zvUYxRSPeGiMIYOq8A=)
2: kfA1pBRuMurREL2uNnQE9pP6t9I.roa (hash: DQroISSvS32xFgsqHJmPR49ErQwv3IdOFmDhSThIquo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:a5:e4:08:b6:c3:2a:2f:d9:7f:e2:29:92:cd:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Nov 23 04:00:29 2024 GMT
Not After : Nov 24 04:00:29 2024 GMT
Subject: CN=6240ab423dcc4d6a4dcdda6a616873d29e9f3a75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:de:2e:f9:28:58:5c:af:f0:90:bc:e9:9e:27:
29:67:20:59:77:bf:9f:c8:87:dd:75:9c:ab:b7:a9:
cf:f7:f5:f0:fb:9c:31:a1:de:96:45:e7:e7:90:1a:
1a:9c:ae:90:5a:05:63:52:44:d6:4b:39:6e:b6:9b:
11:1b:5f:61:36:02:17:9a:41:81:c1:a8:18:13:6d:
59:95:33:ad:b1:a6:95:2b:eb:22:f9:e9:1d:4a:c3:
50:b1:9a:a4:bc:ce:11:42:81:4a:77:0d:f2:fe:74:
cc:1a:74:03:0e:0f:0b:d8:33:28:0e:8e:2e:e4:34:
85:97:14:e6:1f:da:a7:4d:89:af:05:fd:1d:da:33:
1d:82:b8:7a:b7:2f:14:c9:64:af:f6:8b:56:75:bd:
e5:94:65:7b:6a:9c:6a:1e:8c:90:bb:cd:53:bf:91:
a9:47:b2:8a:9e:a4:00:69:a6:b1:e0:dd:96:cf:1a:
d0:17:84:c2:27:da:46:8b:3c:52:4a:78:7f:7b:6e:
28:50:e8:00:69:5a:d7:8c:ae:7b:ef:6d:50:7c:69:
60:09:02:97:fa:2b:ba:4b:ca:b9:18:aa:7f:18:7b:
19:3c:6f:f3:20:b1:7d:ad:4b:c0:1c:33:80:41:af:
9a:96:c6:34:ad:a2:b4:7c:7f:45:48:77:47:27:d5:
97:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:40:AB:42:3D:CC:4D:6A:4D:CD:DA:6A:61:68:73:D2:9E:9F:3A:75
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:25:57:9a:da:0f:c0:8e:5c:de:44:69:45:b4:04:17:7a:9a:
30:f8:80:69:70:5c:d8:7b:7b:8b:55:74:f4:87:20:99:65:d3:
45:94:e9:19:16:f9:0d:0f:e3:d6:a6:09:05:be:0e:c1:09:25:
5d:6f:c4:4b:29:2a:09:10:93:c5:8e:d7:6a:2c:78:fe:35:73:
44:eb:47:06:ac:d2:85:ed:39:52:0c:8c:33:d7:1e:b0:d7:8c:
3f:b0:65:50:90:ec:e3:39:ba:72:c4:ac:df:b1:8f:b4:98:ca:
ad:e1:52:cb:14:16:e1:89:36:4d:31:18:7c:f5:70:5c:9c:bd:
d4:93:5e:39:82:58:90:0b:82:6d:70:b6:30:34:8e:25:99:bf:
bc:1a:c7:93:46:9c:ca:55:9e:4b:69:48:2e:f4:98:52:69:85:
20:61:d7:8e:2c:27:db:cd:e1:2f:da:dc:d2:c3:3b:52:b5:ad:
e1:8c:21:8b:66:48:43:74:2a:fe:5c:62:7a:72:6c:fa:80:16:
c1:b7:6d:ac:fe:13:77:3b:37:f1:1f:62:ff:13:47:0c:5e:5e:
ee:e5:4a:c4:fd:fa:8d:95:84:96:e0:8d:dc:dd:0b:96:66:88:
6a:68:5c:8e:0b:6f:3e:bd:76:f3:a6:db:14:60:d2:a8:31:9a:
a4:4d:58:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:58:38 2024 by rpki-client on console-ams.rpki-client.org