Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
File: MAVrA3XYlLk8sOJtm01koIxYNx4.mft (raw, json)
Hash identifier: u4hJ17caa6HrEIvnmCfkDRjyuNZ9qdOKxo2wV+TPJE4=
Subject key identifier: 70:39:4D:6C:F2:32:51:64:B0:25:BA:A4:74:69:E6:54:0E:08:E4:BC
Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Certificate serial: 0193512C0041B08C14403EEBCFFC9B6E6C15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
Manifest number: 08F7
Signing time: Fri 22 Nov 2024 00:00:58 +0000
Manifest this update: Fri 22 Nov 2024 00:00:58 +0000
Manifest next update: Sat 23 Nov 2024 00:00:58 +0000
Files and hashes: 1: Fi7SZcUGu06SKRZ19fcZSIsOmDI.roa (hash: VdyN5w5MVqNkqDOVXu1lj3umjOqN33Ra5x47OFocpXA=)
2: HDG7qNHEGWTSrQjWLeGZzCtQRFg.roa (hash: Dbdj+iLa6BznFabVJpoQj+HP21ak9l2CkTxCr8pJ5S4=)
3: MAVrA3XYlLk8sOJtm01koIxYNx4.crl (hash: 5GtF/BFPYa+rDaSUiMcH02aizHGv7KqOfnDERDtcCbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:2c:00:41:b0:8c:14:40:3e:eb:cf:fc:9b:6e:6c:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Validity
Not Before: Nov 22 00:00:58 2024 GMT
Not After : Nov 23 00:00:58 2024 GMT
Subject: CN=70394d6cf2325164b025baa47469e6540e08e4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c9:20:d8:c6:f1:56:30:e3:c3:48:a5:ac:6c:
ef:37:cd:54:ed:95:6b:af:1b:d9:72:3c:ea:51:0f:
6f:17:ad:d1:ac:71:b8:e7:2e:2e:45:ca:d1:95:88:
25:55:79:88:ad:74:a7:6a:a8:b4:c9:e1:20:b9:1d:
c2:1e:84:14:6a:92:9c:05:44:bc:0c:a7:69:fc:ad:
dc:a4:01:07:61:d2:f6:0c:8d:6b:22:23:c5:79:28:
63:13:cf:c9:de:f1:7c:63:81:46:37:b8:48:da:29:
1b:fd:ff:85:c9:5c:b2:bc:4d:5c:47:0c:d9:c4:fd:
63:89:3e:79:d5:4f:19:92:e7:da:7f:25:e4:81:4a:
f9:22:16:1a:07:7b:95:37:72:ba:0e:fd:e7:66:0e:
b6:25:f0:20:b2:42:0b:ad:37:d8:8e:4d:5e:a1:e3:
8e:db:9d:69:d4:ee:e3:ec:83:51:7f:09:5e:56:3f:
26:92:67:cd:33:33:d4:e2:82:e4:c7:90:b5:fb:a5:
8c:d9:05:4e:e2:a3:db:7a:95:45:7e:27:8c:f5:2b:
f9:0a:29:49:08:e0:3a:5d:f1:60:3e:24:3e:97:87:
d3:ba:a8:9f:a8:55:f8:23:4f:81:68:7b:52:ff:9c:
1f:32:1a:4e:2a:11:a7:d2:96:91:24:4e:c8:df:f4:
f6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:39:4D:6C:F2:32:51:64:B0:25:BA:A4:74:69:E6:54:0E:08:E4:BC
X509v3 Authority Key Identifier:
keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:7c:42:de:29:cf:a9:70:34:da:e6:24:d0:fd:3a:d6:cd:b6:
b7:b2:71:09:5f:73:44:45:48:8b:1b:a4:d2:5a:74:af:ba:6c:
af:1d:50:0c:5b:8b:e8:f6:8f:48:68:a2:a4:4e:86:c3:4a:87:
bc:7a:f8:2b:99:4c:4e:72:28:69:b6:8c:65:84:8c:92:ef:a4:
e0:ae:6c:fd:41:52:4e:cd:48:2a:c2:2d:8f:35:f3:a5:46:7d:
b3:29:55:0f:79:71:05:2c:e4:d9:a6:29:fd:13:fd:02:ef:df:
6d:2f:5d:cb:c6:eb:17:de:62:9e:88:34:a7:f2:d8:4f:1d:25:
7d:22:e2:70:48:6f:63:72:e8:71:c4:54:19:91:63:91:0e:60:
7d:43:24:9f:df:72:01:a2:a8:ec:af:45:5e:33:c2:6b:84:30:
c5:54:b4:a4:5e:a6:b0:32:7c:31:0a:17:e8:bb:a2:46:a7:28:
2b:f8:9d:95:24:03:a4:18:52:0a:bd:0f:83:b6:27:bd:54:1c:
fd:d8:5f:ec:5b:ef:d7:e6:43:e9:22:cf:3f:32:3b:39:c3:e5:
68:c1:f2:ac:bf:1f:3b:44:a3:c8:18:af:d0:a4:ce:33:b3:55:
d6:09:27:00:e3:60:a4:02:19:97:22:06:32:2d:26:0c:b9:f1:
e3:71:05:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:00 2024 by rpki-client on console-ams.rpki-client.org