Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
File: aa24Jfn9vKDNfHkB3reiKuF5fAY.mft (raw, json)
Hash identifier: nr+IgcsSHfJEQudHAJdzAkg9CjUsBr1Yyym5LUcrlQs=
Subject key identifier: E3:FD:47:EF:21:99:FB:2B:DC:B6:6C:CC:0F:11:9D:D7:94:66:15:1F
Authority key identifier: 69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
Certificate issuer: /CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Certificate serial: 019369D8BF274B9376745056610F3D2D7DA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
Manifest number: 1095
Signing time: Tue 26 Nov 2024 19:00:32 +0000
Manifest this update: Tue 26 Nov 2024 19:00:32 +0000
Manifest next update: Wed 27 Nov 2024 19:00:32 +0000
Files and hashes: 1: 0btjNwXMOg386xN4V-OABm0K364.roa (hash: lvhZ1hXam0Ay8cLczkMQQz+BA7RfBTRI13G8jeOCeyk=)
2: aa24Jfn9vKDNfHkB3reiKuF5fAY.crl (hash: giMprh/k5aCCfmcXzdXLYk4yXn+yulCD9yBg8eZlCtw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d8:bf:27:4b:93:76:74:50:56:61:0f:3d:2d:7d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Validity
Not Before: Nov 26 19:00:32 2024 GMT
Not After : Nov 27 19:00:32 2024 GMT
Subject: CN=e3fd47ef2199fb2bdcb66ccc0f119dd79466151f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:58:5a:5b:dc:25:1b:b8:90:4c:af:8f:c2:c7:
89:f2:84:54:e1:2e:d7:e7:49:96:9f:2f:2c:0c:b6:
85:ee:91:93:48:f9:af:0e:ea:c5:e8:43:c0:a3:77:
bb:f1:20:a2:cd:85:f5:72:35:5b:03:7a:9b:43:22:
1f:e9:41:ef:83:1a:5c:25:87:46:35:3b:97:49:6c:
17:3b:e0:db:e8:9a:9d:ea:a0:cc:15:5d:4c:f1:5d:
04:ff:8f:5c:3d:01:3a:b0:4b:51:6d:8e:dd:0b:6e:
22:cb:76:50:6c:ca:55:ff:ad:65:f9:80:eb:e2:99:
03:92:0c:1c:2b:d5:3b:6f:77:2f:75:4c:63:71:42:
e4:a5:59:70:2e:f5:c6:57:7c:ab:d9:4d:60:44:c4:
48:28:d2:8d:b0:3d:01:ec:d8:91:ec:9f:76:97:66:
a9:98:49:83:d1:f6:3a:be:ae:74:04:93:a1:18:65:
9f:24:61:46:83:bb:11:84:e2:bf:bf:05:e1:55:0d:
f3:86:6c:a9:90:13:a4:77:18:40:29:07:9f:37:a8:
14:26:5c:09:f0:09:e1:d4:33:27:3e:a0:59:0e:2f:
19:8c:93:76:d4:40:50:19:61:b1:bf:4d:29:c6:86:
f0:14:92:bc:05:d1:68:82:92:ad:46:f1:38:1d:c4:
23:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FD:47:EF:21:99:FB:2B:DC:B6:6C:CC:0F:11:9D:D7:94:66:15:1F
X509v3 Authority Key Identifier:
keyid:69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:fa:e7:a3:c0:fb:41:f2:9f:77:6e:d9:64:41:72:a0:ce:79:
1d:3f:c6:e1:d4:bc:e2:41:6c:28:83:3e:f7:4b:ce:64:07:a8:
5d:ed:ad:0f:4b:a2:12:45:9d:0c:21:f0:a1:a8:85:be:9f:4d:
4b:4c:e9:96:b2:6a:bb:aa:9b:90:9d:9e:bf:3c:75:11:d3:eb:
7f:69:a4:74:ed:8b:f2:f0:00:3e:06:0e:06:0a:8a:46:db:32:
b7:26:8c:3e:1b:d5:33:91:96:7e:e6:3b:ac:3b:18:a2:f2:36:
33:43:fc:7f:7e:dc:93:11:97:a7:01:99:96:76:da:77:a1:9d:
cf:2b:a9:73:25:4a:ee:23:a3:67:53:4a:b0:d7:dd:7a:f7:d9:
5f:c2:82:3c:38:70:57:f9:e5:d0:62:62:69:87:b8:d9:4b:72:
38:7c:11:0a:bc:88:c7:51:84:4a:f9:eb:2e:5e:4f:e8:a6:66:
2f:9e:10:c2:20:b0:9b:55:62:72:5b:29:25:bc:01:a2:d3:02:
00:02:c2:12:76:cd:5d:7b:9d:b1:45:89:4c:43:f1:1f:31:ee:
8e:c9:8f:a7:4f:83:ea:15:c1:29:5f:b5:80:91:94:e2:9a:26:
21:27:61:de:66:4c:50:54:b7:34:e0:a4:8f:e3:66:d2:4c:94:
46:ed:ac:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2L8nS5N2dFBWYQ89LX2oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5YWRiODI1ZjlmZGJjYTBjZDdjNzkwMWRlYjdhMjJhZTE3
OTdjMDYwHhcNMjQxMTI2MTkwMDMyWhcNMjQxMTI3MTkwMDMyWjAzMTEwLwYDVQQD
EyhlM2ZkNDdlZjIxOTlmYjJiZGNiNjZjY2MwZjExOWRkNzk0NjYxNTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVhaW9wlG7iQTK+PwseJ8oRU4S7X
50mWny8sDLaF7pGTSPmvDurF6EPAo3e78SCizYX1cjVbA3qbQyIf6UHvgxpcJYdG
NTuXSWwXO+Db6Jqd6qDMFV1M8V0E/49cPQE6sEtRbY7dC24iy3ZQbMpV/61l+YDr
4pkDkgwcK9U7b3cvdUxjcULkpVlwLvXGV3yr2U1gRMRIKNKNsD0B7NiR7J92l2ap
mEmD0fY6vq50BJOhGGWfJGFGg7sRhOK/vwXhVQ3zhmypkBOkdxhAKQefN6gUJlwJ
8Anh1DMnPqBZDi8ZjJN21EBQGWGxv00pxobwFJK8BdFogpKtRvE4HcQjYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOP9R+8hmfsr3LZszA8RndeUZhUfMB8GA1UdIwQY
MBaAFGmtuCX5/bygzXx5Ad63oirheXwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWEyNEpmbjl2S0ROZkhrQjNyZWlLdUY1ZkFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9hZjZiN2EtOWE3MC00OTRlLThhOTAt
MzIzNjI2N2M4Nzk5LzEvYWEyNEpmbjl2S0ROZkhrQjNyZWlLdUY1ZkFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9hZjZiN2EtOWE3MC00OTRlLThhOTAtMzIzNjI2N2M4Nzk5
LzEvYWEyNEpmbjl2S0ROZkhrQjNyZWlLdUY1ZkFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACvrno8D7
QfKfd27ZZEFyoM55HT/G4dS84kFsKIM+90vOZAeoXe2tD0uiEkWdDCHwoaiFvp9N
S0zplrJqu6qbkJ2evzx1EdPrf2mkdO2L8vAAPgYOBgqKRtsytyaMPhvVM5GWfuY7
rDsYovI2M0P8f37ckxGXpwGZlnbad6GdzyupcyVK7iOjZ1NKsNfdevfZX8KCPDhw
V/nl0GJiaYe42UtyOHwRCryIx1GESvnrLl5P6KZmL54QwiCwm1ViclspJbwBotMC
AALCEnbNXXudsUWJTEPxHzHujsmPp0+D6hXBKV+1gJGU4pomISdh3mZMUFS3NOCk
j+Nm0kyURu2sNg==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:28 2024 by rpki-client on console-fra.rpki-client.org