Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.mft
File: HHOn_DBLwC2AdEdtB121zc0tq94.mft (raw, json)
Hash identifier: 8l02aipCnYeWHVXq4sBGEX1sUu9wor3nVvZrmgFQT98=
Subject key identifier: 53:EA:39:20:63:BF:93:FC:E1:A2:B0:E0:91:DB:2E:5C:BF:D1:5C:05
Authority key identifier: 1C:73:A7:FC:30:4B:C0:2D:80:74:47:6D:07:5D:B5:CD:CD:2D:AB:DE
Certificate issuer: /CN=1c73a7fc304bc02d8074476d075db5cdcd2dabde
Certificate serial: 01935A6619CDE3AA093B7B613967BE03D428
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHOn_DBLwC2AdEdtB121zc0tq94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 19:01:00 +0000
Manifest this update: Sat 23 Nov 2024 19:01:00 +0000
Manifest next update: Sun 24 Nov 2024 19:01:00 +0000
Files and hashes: 1: HHOn_DBLwC2AdEdtB121zc0tq94.crl (hash: /FkmfxMVs21iACckuCj9fESW0Nr/RRWXsBg7JjuZu6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.mft
rsync://rpki.ripe.net/repository/DEFAULT/HHOn_DBLwC2AdEdtB121zc0tq94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5a:66:19:cd:e3:aa:09:3b:7b:61:39:67:be:03:d4:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c73a7fc304bc02d8074476d075db5cdcd2dabde
Validity
Not Before: Nov 23 19:01:00 2024 GMT
Not After : Nov 24 19:01:00 2024 GMT
Subject: CN=53ea392063bf93fce1a2b0e091db2e5cbfd15c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:14:21:7c:f7:84:f8:76:08:ab:da:46:5d:df:
6d:d3:a4:ba:bc:33:ae:92:07:34:f7:de:55:3d:35:
f8:02:7f:06:ae:9a:21:d3:10:47:50:cf:64:55:b0:
18:cf:66:98:f2:47:32:47:23:f8:1f:4a:bb:f6:0c:
9f:2c:9e:93:48:26:e5:ab:6e:6f:f9:04:f3:0d:e3:
57:18:b8:1a:e2:d5:7f:86:5e:51:01:b9:c2:8c:8a:
2e:43:25:28:9a:3d:b8:74:26:ef:76:0a:05:c5:33:
ed:7e:b1:73:f7:a8:66:de:f5:7f:85:25:09:88:b9:
90:48:43:e2:38:38:dd:87:93:51:e2:89:19:c3:6a:
c1:5c:3d:56:7d:38:3d:5d:19:c8:d9:b2:bb:ab:23:
01:e5:77:58:6f:fa:89:69:8d:45:4d:14:c6:80:a8:
c3:13:25:d2:f9:ae:0e:bf:e2:0d:91:9a:3a:fb:49:
32:ff:0f:a3:24:5b:6c:c1:8c:90:cd:a7:f8:3f:89:
ea:fa:ea:2b:3f:6b:25:86:b0:24:ac:57:07:1d:48:
e2:e9:97:33:68:d7:09:1b:41:10:24:72:d2:6b:33:
e5:2c:5e:3f:5c:dc:b4:05:5c:4c:8c:62:55:c6:b6:
59:9a:8b:75:8a:05:21:8a:ad:b2:97:5d:e5:a9:b6:
37:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:EA:39:20:63:BF:93:FC:E1:A2:B0:E0:91:DB:2E:5C:BF:D1:5C:05
X509v3 Authority Key Identifier:
keyid:1C:73:A7:FC:30:4B:C0:2D:80:74:47:6D:07:5D:B5:CD:CD:2D:AB:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHOn_DBLwC2AdEdtB121zc0tq94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:d2:ed:bd:da:18:0f:e3:eb:20:67:29:cb:05:b6:56:70:30:
96:8e:db:16:bb:3f:30:4c:9a:fa:c5:cf:e4:e9:f6:d1:b5:5f:
57:84:cf:d3:1c:68:fa:c0:d7:2b:de:68:eb:9c:14:f8:90:2f:
48:de:47:a4:74:3f:6a:8a:be:7f:d8:91:6e:af:b1:e5:7c:dc:
b4:df:db:53:a4:3f:68:db:55:02:87:a9:2a:ab:da:67:54:be:
0a:cb:3d:5c:54:7f:34:2b:c4:1e:e2:d3:c1:71:df:de:e6:e5:
e5:d5:ee:c8:15:df:1d:58:04:0a:d7:b5:04:9c:2c:dd:73:bc:
58:63:b3:80:71:90:8c:ac:1e:4a:61:19:65:0a:7d:4f:53:c8:
77:08:80:02:f7:f5:42:3f:db:c2:09:f2:b2:8b:4c:30:ee:f9:
a6:da:86:fa:6d:c8:27:5e:09:f4:0e:46:f5:cf:85:b0:c4:b3:
28:13:12:84:a5:12:fb:ac:26:d4:a6:28:16:7c:df:0f:77:a6:
af:2b:8b:6d:b9:a2:ba:0c:f7:f4:c8:0d:fd:34:d5:f9:99:20:
0d:4a:3a:82:8a:68:3e:d8:b7:9a:00:db:9a:b5:3d:16:1f:52:
24:df:cf:f8:44:38:b6:94:b4:1a:f9:9b:a8:ad:7e:0f:d0:72:
e5:b1:9b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:57:12 2024 by rpki-client on console-ams.rpki-client.org