Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json)
Hash identifier: nKXpULGVjTtReMPwPl7SLpgLCuOhV0/LLxHypS1v5I8=
Subject key identifier: 95:5D:CD:50:7D:F1:AA:02:71:22:EB:AA:9C:60:CE:93:98:72:4A:94
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 019511352BFC720934EE1624B4D37DAF05D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
Manifest number: 0F76
Signing time: Mon 17 Feb 2025 00:00:52 +0000
Manifest this update: Mon 17 Feb 2025 00:00:52 +0000
Manifest next update: Tue 18 Feb 2025 00:00:52 +0000
Files and hashes: 1: 1qEPEFv1rtnBwjLrj05KhcsiGsw.roa (hash: efBys1jy+DGmejYCRhYEDwHiZZBi2kJ2HO+RtvkHBG0=)
2: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: 2glOP23NhYvtZWhk8qdAukkHPW0BS3XU78EZ0x+VwQE=)
3: KSQbuvMpaNtmYtn-yiQgu6gs4Xg.roa (hash: rY+o5Ow6fjFdTk2as4zdZu/IZVXbQNeVsHdG3L6c1Us=)
4: ZOyHJ4Yqv0XVd9AATFKr91oKlKQ.roa (hash: UP88f3uzMOFhKaWDsZtlJomj/zgPQgChtV7gCg0+LOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:2b:fc:72:09:34:ee:16:24:b4:d3:7d:af:05:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Feb 17 00:00:52 2025 GMT
Not After : Feb 18 00:00:52 2025 GMT
Subject: CN=955dcd507df1aa027122ebaa9c60ce9398724a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f3:f2:fb:e7:70:71:d6:7f:dc:8f:5c:1e:a3:
c4:e5:1d:bc:e3:3e:f2:ca:3a:2f:99:db:da:a7:a6:
c4:15:4d:75:64:b2:a8:45:3e:a5:09:da:d7:a5:71:
25:a5:82:45:15:4b:51:9d:9a:45:13:6a:7a:69:cc:
45:d1:ec:a9:c7:2b:91:2f:46:1f:70:b8:79:97:da:
35:df:61:18:79:e0:fa:69:f8:c2:b6:0b:96:7d:09:
df:f9:d9:e7:fe:02:e3:45:2f:cb:b1:eb:ab:2c:9f:
f5:1c:ee:0f:e1:cc:e6:7b:87:5f:80:94:5a:2a:84:
8f:ae:ad:3e:52:79:71:a5:84:3e:b6:36:9e:0e:0b:
b2:c3:91:30:ce:fd:b9:18:cd:5e:52:fa:dc:af:a5:
1f:c0:70:b0:d1:f6:97:e8:35:6d:2d:83:e5:70:98:
4e:bd:cc:e0:3b:98:be:d9:3d:52:4d:ad:41:35:7e:
3d:46:ea:d3:f6:b5:b7:23:27:0a:7a:2a:90:c7:95:
a6:5f:29:73:22:d8:ed:3a:4b:72:73:a3:89:81:9c:
e1:0c:93:a4:95:3d:df:28:88:39:cc:f4:fe:15:b5:
26:ce:88:a1:73:4c:55:b5:7c:d1:96:43:65:e6:3d:
8c:83:9f:e2:17:a0:8c:57:7f:2d:ab:e0:28:e0:19:
a5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5D:CD:50:7D:F1:AA:02:71:22:EB:AA:9C:60:CE:93:98:72:4A:94
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:0b:27:a6:b7:28:ba:d0:a2:f2:32:3c:e0:b7:c8:11:63:78:
14:d4:01:7e:e3:bf:cb:c8:1c:3c:56:d1:d2:94:f8:63:e3:14:
3e:99:ab:b7:7a:8f:45:97:13:ba:78:f9:81:ce:f9:e7:a4:24:
54:b0:3f:08:af:c4:86:59:18:bf:3e:c8:9b:2b:94:b2:2f:3d:
0a:39:5e:a8:b0:0c:3b:c5:1c:c5:69:b2:47:2d:16:47:54:3b:
0f:b7:4f:f0:25:d4:14:11:57:df:fe:4d:72:fb:d5:12:5c:18:
5d:98:d7:1a:a3:29:61:34:45:ff:dd:c8:c6:1e:be:1a:8b:f9:
41:b8:ee:00:8a:b9:db:d0:64:80:eb:b2:f0:d1:56:5f:ca:30:
9f:eb:30:e3:e2:35:32:d4:9d:18:23:24:a8:08:34:8e:3d:81:
59:68:c8:1f:0d:59:92:11:e7:98:97:20:66:8d:dc:ad:06:42:
04:56:37:20:54:a0:70:6a:69:d2:b4:01:0a:22:ec:58:fa:c6:
a7:93:1c:e6:32:d8:41:ce:93:0f:c5:5c:d4:07:4a:01:19:ef:
d4:6c:35:ee:f7:d9:d6:8f:4b:23:df:b0:5e:f5:2c:e9:1a:06:
4f:d9:75:c4:0e:ee:5f:cd:9e:86:c3:fc:fc:aa:bc:e8:08:a7:
d4:be:98:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:48 2025 by rpki-client