Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
File: HqVZ2L9qwtho0GZa1X0sasFHIZM.mft (raw, json)
Hash identifier: SKmsCDcx+PH2SsRPNWxcRNT2dxobpu9Cgc1GjiiXhlM=
Subject key identifier: 7F:CB:F8:8A:71:9C:B2:56:28:65:76:D0:69:35:CF:83:B0:69:EA:CE
Authority key identifier: 1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
Certificate issuer: /CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Certificate serial: 019362FB2562A7AF7C6F3A88CB497AEC3EE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
Manifest number: 1308
Signing time: Mon 25 Nov 2024 11:00:46 +0000
Manifest this update: Mon 25 Nov 2024 11:00:46 +0000
Manifest next update: Tue 26 Nov 2024 11:00:46 +0000
Files and hashes: 1: F9SKllDv50VIlUGPCb7KEQSYeoQ.roa (hash: zqewPwrovajMq/eaLfr5dl96c6Kc5zLTezRv4M81sF0=)
2: HqVZ2L9qwtho0GZa1X0sasFHIZM.crl (hash: FKOOsuDvh8Y0m2JAbXJ+QgQaxV8eXuMcjoyNyag1Zjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:fb:25:62:a7:af:7c:6f:3a:88:cb:49:7a:ec:3e:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Validity
Not Before: Nov 25 11:00:46 2024 GMT
Not After : Nov 26 11:00:46 2024 GMT
Subject: CN=7fcbf88a719cb256286576d06935cf83b069eace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5f:fe:f7:5a:e9:c9:d8:90:78:e0:67:20:b1:
d4:17:e9:5b:ef:28:f3:ef:e6:8b:35:60:da:4b:b2:
e4:71:9a:9c:56:78:01:ac:a7:08:fd:30:8b:c0:dc:
0f:55:9f:62:e6:c1:1f:84:15:25:2b:79:c9:76:08:
9a:12:72:08:49:73:29:0d:d1:92:3c:83:d9:25:d9:
86:c2:66:1e:4b:d2:28:84:94:7e:2c:c8:b9:7b:ea:
fc:b5:95:89:d2:8f:bc:65:8a:0c:7e:45:c2:c3:55:
e2:ea:29:ce:0d:d4:32:25:db:a9:35:53:54:b1:77:
25:6f:05:0e:b7:11:d3:b2:66:93:70:6d:00:e6:96:
08:4d:b4:4a:54:f7:84:fc:57:01:48:b3:a4:bb:d5:
43:c1:4a:9a:bc:ab:18:72:09:13:67:c4:d0:c2:94:
a8:73:5a:27:58:60:5d:77:23:1b:77:06:38:28:0c:
0c:b1:24:b3:2a:63:b2:08:5e:65:76:f2:b9:df:60:
ff:da:ad:78:08:5c:e9:42:ef:95:61:cf:9a:a8:e3:
05:a8:07:5a:8b:6c:12:d8:2c:29:98:c1:da:0d:79:
94:ec:88:f1:17:fe:34:f2:c9:a5:4b:50:c8:21:30:
c1:c1:c0:6e:38:38:73:6e:b2:f2:b1:9d:2d:8f:bc:
0f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:CB:F8:8A:71:9C:B2:56:28:65:76:D0:69:35:CF:83:B0:69:EA:CE
X509v3 Authority Key Identifier:
keyid:1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:aa:c5:19:16:38:ee:41:22:4d:a8:15:50:a1:08:64:e9:8c:
4c:72:5f:04:c1:c9:5e:bd:61:42:3f:cd:3f:3a:0b:bf:90:83:
16:94:2e:6f:4b:3d:c6:84:75:6c:85:b9:27:11:5a:c1:44:de:
5d:36:5b:cc:aa:95:3c:00:59:bc:c1:49:a5:67:28:bb:d2:80:
0c:9c:d3:f0:e0:04:3f:ef:c0:4a:78:69:ea:16:44:28:be:b4:
8a:57:25:9d:ee:1d:a3:d0:be:76:b6:2b:a9:b0:21:23:9d:11:
89:8a:c1:76:55:cc:87:f7:16:b6:ee:4a:ac:f8:3a:d9:aa:5a:
5e:c1:55:49:b2:7f:cb:1c:c7:05:cb:2f:23:b6:18:7f:50:27:
32:d1:36:37:12:2a:81:f5:77:ef:bf:0c:2c:b2:a7:a7:ad:11:
ff:1e:50:6b:28:02:60:a7:cd:18:d9:c2:09:0a:8d:a7:b8:82:
8f:77:0f:71:cf:21:91:08:00:95:b4:81:62:73:f9:d1:cc:4e:
06:97:ad:14:8b:5a:1c:42:3b:59:a8:00:2d:d5:aa:77:9b:e5:
0a:fe:92:6c:c2:5c:41:0e:df:d4:25:9b:b4:90:61:78:fd:7b:
78:f5:68:78:df:bb:7e:f3:da:bf:c5:70:4d:d0:cf:fc:46:bd:
4f:f9:39:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNi+yVip698bzqIy0l67D7mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYTU1OWQ4YmY2YWMyZDg2OGQwNjY1YWQ1N2QyYzZhYzE0
NzIxOTMwHhcNMjQxMTI1MTEwMDQ2WhcNMjQxMTI2MTEwMDQ2WjAzMTEwLwYDVQQD
Eyg3ZmNiZjg4YTcxOWNiMjU2Mjg2NTc2ZDA2OTM1Y2Y4M2IwNjllYWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuF/+91rpydiQeOBnILHUF+lb7yjz
7+aLNWDaS7LkcZqcVngBrKcI/TCLwNwPVZ9i5sEfhBUlK3nJdgiaEnIISXMpDdGS
PIPZJdmGwmYeS9IohJR+LMi5e+r8tZWJ0o+8ZYoMfkXCw1Xi6inODdQyJdupNVNU
sXclbwUOtxHTsmaTcG0A5pYITbRKVPeE/FcBSLOku9VDwUqavKsYcgkTZ8TQwpSo
c1onWGBddyMbdwY4KAwMsSSzKmOyCF5ldvK532D/2q14CFzpQu+VYc+aqOMFqAda
i2wS2CwpmMHaDXmU7IjxF/408smlS1DIITDBwcBuODhzbrLysZ0tj7wPCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH/L+IpxnLJWKGV20Gk1z4OwaerOMB8GA1UdIwQY
MBaAFB6lWdi/asLYaNBmWtV9LGrBRyGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEt
NWZmY2M0NmFlN2I1LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEtNWZmY2M0NmFlN2I1
LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJqrFGRY4
7kEiTagVUKEIZOmMTHJfBMHJXr1hQj/NPzoLv5CDFpQub0s9xoR1bIW5JxFawUTe
XTZbzKqVPABZvMFJpWcou9KADJzT8OAEP+/ASnhp6hZEKL60ilclne4do9C+drYr
qbAhI50RiYrBdlXMh/cWtu5KrPg62apaXsFVSbJ/yxzHBcsvI7YYf1AnMtE2NxIq
gfV3778MLLKnp60R/x5QaygCYKfNGNnCCQqNp7iCj3cPcc8hkQgAlbSBYnP50cxO
BpetFItaHEI7WagALdWqd5vlCv6SbMJcQQ7f1CWbtJBheP17ePVoeN+7fvPav8Vw
TdDP/Ea9T/k52Q==
-----END CERTIFICATE-----
Generated at Mon Nov 25 19:52:14 2024 by rpki-client on console-ams.rpki-client.org