Manifest
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.mft
File: ksorQe7D4BoZOJ4iIIisP8OhSO0.mft (raw, json)
Hash identifier: G8Vht+MkqfhQ7yjLddlmTLNFCFjG2mla9XmUrjLHHgw=
Subject key identifier: 54:DD:B7:8E:1E:E7:8F:44:BA:71:D7:0A:0C:28:53:B8:31:E6:FD:18
Authority key identifier: 92:CA:2B:41:EE:C3:E0:1A:19:38:9E:22:20:88:AC:3F:C3:A1:48:ED
Certificate issuer: /CN=F3624132AF/serialNumber=92CA2B41EEC3E01A19389E222088AC3FC3A148ED
Certificate serial: 1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ksorQe7D4BoZOJ4iIIisP8OhSO0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.mft
Manifest number: 1A
Signing time: Wed 05 Feb 2025 03:23:07 +0000
Manifest this update: Wed 05 Feb 2025 03:23:07 +0000
Manifest next update: Fri 07 Feb 2025 03:23:07 +0000
Files and hashes: 1: ksorQe7D4BoZOJ4iIIisP8OhSO0.crl (hash: iPdfWVE2CRdHTylPeOtm1MsN9Q/ISborssWang8oTkQ=)
2: 2C6E0438D1B111EFAE9F9072762E951A.roa (hash: B0CbiM/bAowuKqrYGTi8MxK8c+r/1xQQXbcFOdolRIY=)
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.crl
rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.mft
rsync://rpki.afrinic.net/repository/afrinic/ksorQe7D4BoZOJ4iIIisP8OhSO0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3624132AF
Validity
Not Before: Feb 5 03:23:07 2025 GMT
Not After : Feb 7 03:23:07 2025 GMT
Subject: CN=67a2d99b-0690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0e:66:05:23:5b:2f:d2:05:ce:e7:5f:8f:7e:
26:5d:6e:f6:c4:8a:f4:64:62:81:1d:8b:94:69:4a:
30:7a:c6:46:99:93:79:1e:f3:c6:c9:f8:fb:39:34:
33:2e:12:e1:4f:d0:39:8f:7a:5d:d2:d6:02:75:42:
fb:cd:a2:ad:a7:40:2b:2d:21:70:7b:d9:77:e2:39:
be:ad:e6:67:1e:00:e0:81:26:6e:e1:4f:e2:f9:cf:
9b:3d:0a:d6:e5:33:88:06:ea:5c:aa:21:49:3c:e4:
97:5b:9c:09:c3:a2:2a:03:c8:a9:8e:71:c3:77:c4:
1d:cf:ec:de:22:ac:76:69:7b:49:9f:a7:88:bd:1c:
0b:09:73:a7:3b:86:ea:96:b1:2c:98:8a:c1:1f:a9:
61:9b:04:ad:c3:88:75:98:67:22:42:fa:20:8d:aa:
db:64:59:33:f6:cb:a0:aa:31:35:df:69:68:05:a3:
eb:4a:87:58:33:cd:a8:33:06:25:49:40:d2:79:1c:
c5:eb:f0:38:93:f5:3a:c0:4b:28:d2:e9:c3:51:4f:
3b:e3:0f:8f:a5:d7:c1:93:cf:7b:53:22:e8:52:74:
25:cd:a9:cb:dc:1e:fd:cb:c2:e8:3e:22:b2:a0:e1:
2b:88:93:a6:ae:fe:25:83:3b:39:1b:a5:c0:33:07:
e0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DD:B7:8E:1E:E7:8F:44:BA:71:D7:0A:0C:28:53:B8:31:E6:FD:18
X509v3 Authority Key Identifier:
keyid:92:CA:2B:41:EE:C3:E0:1A:19:38:9E:22:20:88:AC:3F:C3:A1:48:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ksorQe7D4BoZOJ4iIIisP8OhSO0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3624132/8BFBD952D1AC11EFA5D11655762E951A/ksorQe7D4BoZOJ4iIIisP8OhSO0.mft
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
cb:79:1e:49:3a:49:f4:90:e9:47:ef:35:9b:7e:4e:ef:ca:b1:
4a:c5:96:9b:3d:d4:9b:86:49:49:75:50:b9:d7:e1:48:e4:17:
eb:3b:68:ac:56:bb:38:0e:a2:02:5d:71:5b:9d:f6:39:f4:22:
ae:37:f4:e0:da:66:2e:c1:8c:2f:35:a1:81:7b:6d:f8:38:d2:
36:ef:c7:2d:bd:ba:99:6d:4b:9d:61:77:60:5a:d6:dd:3a:b0:
08:7f:d8:57:69:da:e5:1a:0c:c6:b2:fb:4d:2f:5f:2a:ea:7d:
da:39:fb:c4:22:25:68:53:1d:bb:a9:39:a8:69:92:9b:7a:71:
fa:b8:d1:5c:36:76:a8:6f:6c:05:2f:19:7a:0d:92:30:bb:57:
e8:5e:5f:4d:51:cb:ad:f1:94:fa:f5:b6:0d:87:6c:0f:3d:ae:
0e:b4:8f:17:ed:27:3f:4e:48:a8:de:a6:c9:a8:ef:db:99:0f:
d6:14:b3:80:26:d3:5b:2b:38:c5:4a:f1:e0:4c:10:28:cf:65:
f2:95:3c:bd:62:b6:3a:f5:f7:74:51:f2:9a:fe:c9:82:f0:be:
fa:d5:bf:6b:5f:d7:3f:a4:f5:c8:fd:79:7a:e2:15:c4:b3:59:
71:e5:d3:46:5a:1f:17:8b:9d:c9:c1:c5:9f:de:39:9c:14:1d:
fa:c7:8c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 12:52:48 2025 by rpki-client