Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: RVcmiGu5XCC92eYVlu6HLi7fNnGjKgxBwyBvKbLecS0=
Subject key identifier: 9B:38:C3:23:93:72:F1:F1:10:2C:3B:3B:72:09:F3:3B:B1:92:02:8E
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 018F42D5E9F6FA91FCEAED7478F115D85F18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1155
Signing time: Sat 04 May 2024 09:01:06 +0000
Manifest this update: Sat 04 May 2024 09:01:06 +0000
Manifest next update: Sun 05 May 2024 09:01:06 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: GtTuEDE3PwoAwJoMcEZXbAlaIYoCoofD/bOhtPysD98=)
2: vQ5CG6arfMM5etGi0OK5TsR58xE.roa (hash: O1YQHBI+srgf43ZjPaWXEjlUEDWR+/G9UC3V+eWxxEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:42:d5:e9:f6:fa:91:fc:ea:ed:74:78:f1:15:d8:5f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: May 4 09:01:06 2024 GMT
Not After : May 5 09:01:06 2024 GMT
Subject: CN=9b38c3239372f1f1102c3b3b7209f33bb192028e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:45:96:d5:ed:3d:b3:be:db:3e:03:74:12:0b:
bf:5e:bf:85:d6:b0:25:c2:69:bb:c7:18:9a:f3:03:
1f:99:1e:0f:58:54:c4:64:9a:75:cd:78:33:1a:80:
8b:c3:1f:56:b7:01:ce:aa:c5:2b:94:59:e0:1a:ee:
ec:28:0e:77:1c:96:40:6d:a8:8b:b5:1d:f0:ae:ab:
fe:cb:37:4c:00:c7:73:6e:f9:e5:35:47:1e:fb:fe:
29:20:cb:61:3b:c5:24:09:b2:a1:00:e5:8b:21:9f:
1c:17:57:30:bb:0a:64:7a:c3:9c:b7:37:1f:55:cc:
a1:29:42:1e:71:22:fd:db:b4:92:d9:a5:f3:a7:26:
ab:c6:aa:17:e0:1f:8a:1c:6b:7a:27:b6:07:42:83:
9b:fd:c8:83:e6:5a:88:98:89:0f:98:b7:a6:40:0c:
42:7b:94:42:5e:4b:b1:f1:7c:1e:c8:30:e0:0d:1c:
f4:87:c5:7b:7e:18:03:4f:cb:32:f3:3a:de:a0:a5:
70:b9:33:37:67:97:44:02:bf:a3:db:45:94:29:1a:
eb:b7:52:16:23:03:08:d7:b4:dd:d4:e0:0e:17:db:
61:6f:5c:bd:20:8f:dc:65:e3:1e:7b:e1:be:a8:d0:
bf:06:e4:32:4a:2b:3e:e7:70:2d:c3:42:57:55:9b:
37:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:38:C3:23:93:72:F1:F1:10:2C:3B:3B:72:09:F3:3B:B1:92:02:8E
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:25:9f:17:42:43:10:e2:da:da:23:53:06:a6:52:b8:1d:4a:
6d:c8:23:86:ec:ad:5c:2e:9f:13:3a:04:dd:29:c9:a4:97:8a:
c8:b8:54:39:d1:27:11:6e:14:f9:21:32:a5:76:21:d2:0f:65:
23:3a:85:9c:4a:3b:0a:ff:6e:9f:07:c1:bb:85:f8:aa:88:c2:
08:b4:c5:bf:36:01:7e:1c:b9:7f:73:61:36:07:5d:35:9e:09:
5f:d5:7c:85:b4:9e:ca:a4:7b:b8:39:ce:d9:ca:50:3b:26:75:
6f:0b:13:99:e1:7f:ba:45:6c:c4:70:5b:ee:dd:51:82:97:c1:
ed:8d:1c:4c:00:28:7e:c2:fd:19:6d:06:00:4c:18:2f:c5:63:
0f:19:c9:e3:cc:a9:eb:d3:90:c4:4e:87:58:dd:21:f8:74:39:
8b:6d:51:49:6c:c9:a6:d5:94:37:c3:f7:db:47:ab:c0:10:e3:
73:f0:0c:14:c6:35:f8:28:35:4c:7f:bd:7f:62:cf:ec:02:ba:
2d:97:1d:7c:a0:27:30:7a:e8:a3:19:88:c6:28:7c:32:de:dd:
56:2a:97:83:23:68:4c:dd:6c:cc:6e:07:1b:58:91:2c:fd:d0:
4d:25:d3:c3:e9:59:94:4f:59:b7:f7:41:ae:07:15:e1:4c:ae:
6e:07:ee:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9C1en2+pH86u10ePEV2F8YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlMzVjMDZhOGMwNmQ1ZGQ2NGZlNzZiMDkwYTNlMWUyYTQ5
OTZkYzgwHhcNMjQwNTA0MDkwMTA2WhcNMjQwNTA1MDkwMTA2WjAzMTEwLwYDVQQD
Eyg5YjM4YzMyMzkzNzJmMWYxMTAyYzNiM2I3MjA5ZjMzYmIxOTIwMjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUWW1e09s77bPgN0Egu/Xr+F1rAl
wmm7xxia8wMfmR4PWFTEZJp1zXgzGoCLwx9WtwHOqsUrlFngGu7sKA53HJZAbaiL
tR3wrqv+yzdMAMdzbvnlNUce+/4pIMthO8UkCbKhAOWLIZ8cF1cwuwpkesOctzcf
VcyhKUIecSL927SS2aXzpyarxqoX4B+KHGt6J7YHQoOb/ciD5lqImIkPmLemQAxC
e5RCXkux8XweyDDgDRz0h8V7fhgDT8sy8zreoKVwuTM3Z5dEAr+j20WUKRrrt1IW
IwMI17Td1OAOF9thb1y9II/cZeMee+G+qNC/BuQySis+53Atw0JXVZs3XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJs4wyOTcvHxECw7O3IJ8zuxkgKOMB8GA1UdIwQY
MBaAFB41wGqMBtXdZP52sJCj4eKkmW3IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGpYQWFvd0cxZDFrX25hd2tLUGg0cVNaYmNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9hYjQ1ZTQtNmVhMC00OTVmLThiNzgt
OWI1ZDc2YTk0OWY0LzEvSGpYQWFvd0cxZDFrX25hd2tLUGg0cVNaYmNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9hYjQ1ZTQtNmVhMC00OTVmLThiNzgtOWI1ZDc2YTk0OWY0
LzEvSGpYQWFvd0cxZDFrX25hd2tLUGg0cVNaYmNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATyWfF0JD
EOLa2iNTBqZSuB1KbcgjhuytXC6fEzoE3SnJpJeKyLhUOdEnEW4U+SEypXYh0g9l
IzqFnEo7Cv9unwfBu4X4qojCCLTFvzYBfhy5f3NhNgddNZ4JX9V8hbSeyqR7uDnO
2cpQOyZ1bwsTmeF/ukVsxHBb7t1RgpfB7Y0cTAAofsL9GW0GAEwYL8VjDxnJ48yp
69OQxE6HWN0h+HQ5i21RSWzJptWUN8P320erwBDjc/AMFMY1+Cg1TH+9f2LP7AK6
LZcdfKAnMHrooxmIxih8Mt7dViqXgyNoTN1szG4HG1iRLP3QTSXTw+lZlE9Zt/dB
rgcV4UyubgfuHw==
-----END CERTIFICATE-----
Generated at Sat May 4 11:28:49 2024 by rpki-client on console-ams.rpki-client.org