Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
File: mSAfYJ56iT2obPDrvKS79HJ51hc.mft (raw, json)
Hash identifier: xCzxh+TM/Ao2S+I5HY0Nb48vSeW1msGLjTlZED9DiWE=
Subject key identifier: C5:EE:5E:B7:87:5C:D5:9F:B8:FE:75:1B:8D:64:A6:E7:60:D5:A5:74
Authority key identifier: 99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
Certificate issuer: /CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Certificate serial: 0191FA4787DAF7B2C4F5B5752D3A8D2788E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
Manifest number: 0151
Signing time: Mon 16 Sep 2024 10:01:17 +0000
Manifest this update: Mon 16 Sep 2024 10:01:17 +0000
Manifest next update: Tue 17 Sep 2024 10:01:17 +0000
Files and hashes: 1: BmwxDKMDOr9tjqJCJDcJJ4kkwqw.roa (hash: 0GxV+ap4FTQTyYN3aqW3GnP6/ahzgyqRMYxr69eGapI=)
2: HfHLmT1T8g0NNpCmZTL8nuxvvVA.roa (hash: 53I+KjVDWB/6X5O5GtPp9UeTo4DQH7YRAtTBiJgd3/8=)
3: mSAfYJ56iT2obPDrvKS79HJ51hc.crl (hash: PatvNrSVqvH966kj7o3uqvt7gsgOPv+8cBfiovHTOZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 10:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:47:87:da:f7:b2:c4:f5:b5:75:2d:3a:8d:27:88:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Validity
Not Before: Sep 16 10:01:17 2024 GMT
Not After : Sep 17 10:01:17 2024 GMT
Subject: CN=c5ee5eb7875cd59fb8fe751b8d64a6e760d5a574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:52:fe:9f:0a:ca:07:76:54:0c:c5:69:00:6c:
d5:5a:82:fd:e6:f8:e3:2c:ae:a1:b3:d9:77:6c:13:
6f:79:e0:49:4d:0c:28:77:03:e0:5f:d2:b4:4a:97:
90:4f:ff:fd:9d:e0:00:66:2f:be:2c:32:9f:3e:e1:
b5:30:cf:13:67:d8:07:1b:06:da:10:44:75:69:ae:
be:28:ba:ca:4b:8c:13:5f:37:e1:34:d6:ae:0b:20:
11:8c:f0:b3:36:7b:1e:7d:cc:6c:77:eb:d8:88:51:
09:8f:e7:c8:b0:11:02:74:09:c4:47:d3:cf:95:83:
67:df:33:5b:c9:cd:27:ee:64:3b:58:14:07:f6:9e:
39:f8:9d:b7:07:f2:8a:35:f6:ad:08:61:1e:30:e2:
47:78:93:77:87:56:b0:68:eb:ce:60:6e:11:cf:10:
33:9d:b2:23:74:e9:04:6d:a5:b5:50:8d:83:bb:9f:
86:eb:f1:e5:b3:88:28:6b:84:73:83:63:95:ed:f0:
a3:8c:7a:c6:af:b4:27:90:fa:1b:8d:24:a6:15:e1:
2f:ab:b7:c4:9d:f8:3d:14:0d:c2:f6:6c:c8:3d:10:
68:4e:06:b6:0f:d6:b3:ec:01:72:3d:1e:0e:4e:ae:
5a:7b:dc:8f:47:49:b2:54:3d:cd:65:e8:92:d9:a4:
58:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:EE:5E:B7:87:5C:D5:9F:B8:FE:75:1B:8D:64:A6:E7:60:D5:A5:74
X509v3 Authority Key Identifier:
keyid:99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:12:f9:e2:39:f0:7c:3c:cb:65:59:f0:57:05:e1:0d:11:f7:
04:9b:54:b7:92:b7:0d:5a:ca:40:63:c1:43:bf:dd:7f:ef:cb:
73:dc:47:21:ac:5a:93:f6:e7:e4:c0:b9:47:fd:e4:5c:aa:32:
ff:4e:5a:02:62:11:d7:9c:e2:1e:3c:e0:ff:75:4e:ee:30:e7:
0f:25:b6:68:02:c9:4c:ba:2e:0c:f5:4d:11:5c:84:57:63:99:
43:7d:6f:2d:93:33:b5:ce:9c:da:9e:0b:d3:90:93:5b:04:91:
0e:de:f9:62:5c:e4:95:01:48:7e:5e:73:f9:ae:19:7d:aa:e3:
20:1b:29:b0:c3:5c:18:31:34:ed:4c:8d:a2:08:8d:0d:71:ba:
02:39:d7:a9:8f:0e:f0:4d:eb:f7:a8:17:0b:71:b4:08:71:a6:
72:a1:8e:3d:cb:23:0c:48:30:5a:39:33:8d:2d:70:66:9f:ca:
b9:51:7c:2e:b3:63:24:20:82:9f:6a:5b:52:ca:78:46:1c:cc:
b6:e9:61:65:da:d1:26:a5:7d:25:a9:91:2e:c9:60:dc:cc:28:
2a:d4:c7:c5:3c:1f:07:38:ad:f2:4c:2a:6a:7c:26:83:5b:75:
67:96:60:3d:3b:e4:81:ad:97:21:b2:cb:c3:40:40:a9:5b:98:
a0:d8:02:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:17:24 2024 by rpki-client on console-ams.rpki-client.org