Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft
File: r433xPeRM3MP4-aJR3enlgSly3k.mft (raw, json)
Hash identifier: JVU0D3LW1aS2APoFdfI1Q6pRmQyIBpiktFg9IJzdIHw=
Subject key identifier: B0:F7:60:01:81:89:4D:94:A3:D8:6B:3A:5A:AE:3B:9E:93:58:6B:00
Authority key identifier: AF:8D:F7:C4:F7:91:33:73:0F:E3:E6:89:47:77:A7:96:04:A5:CB:79
Certificate issuer: /CN=af8df7c4f79133730fe3e6894777a79604a5cb79
Certificate serial: 01938B1B29959FEF36BC5C6F93543CDE84A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft
Manifest number: 138B
Signing time: Tue 03 Dec 2024 06:00:33 +0000
Manifest this update: Tue 03 Dec 2024 06:00:33 +0000
Manifest next update: Wed 04 Dec 2024 06:00:33 +0000
Files and hashes: 1: LHjKha_RsaSHTfaY8k1mJ1nm1rc.roa (hash: lbjOFjUgm5+g/g4DuE2jsmOq4aRPwkg4aqu/yVwmrbI=)
2: r433xPeRM3MP4-aJR3enlgSly3k.crl (hash: zpzVmohlEAjni2n7dHD76mCMcqeTXd7Do8BPBi9ux0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8b:1b:29:95:9f:ef:36:bc:5c:6f:93:54:3c:de:84:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8df7c4f79133730fe3e6894777a79604a5cb79
Validity
Not Before: Dec 3 06:00:33 2024 GMT
Not After : Dec 4 06:00:33 2024 GMT
Subject: CN=b0f7600181894d94a3d86b3a5aae3b9e93586b00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:67:38:25:a7:b2:8a:94:49:e9:3c:77:5b:f5:
53:cc:e2:e0:ff:a9:26:ee:c0:77:c9:46:fc:a0:15:
f0:39:f5:13:03:32:a0:6f:23:74:29:fa:71:4e:3d:
c9:a2:c6:5c:8f:6c:0d:76:bf:52:2a:10:11:de:43:
04:fb:07:46:bf:46:3a:48:42:d6:27:4d:75:5b:79:
47:5b:58:1d:0a:fd:06:5e:6f:56:75:46:7c:8f:ea:
ac:e8:57:b2:ed:87:a5:8c:79:5e:8c:e8:34:9e:44:
19:5f:9f:78:ff:dd:69:aa:80:64:16:47:43:28:4d:
c3:f6:ef:f9:4e:5f:20:d5:00:4f:1b:43:0a:79:51:
23:44:a6:8a:76:6d:46:f2:1c:23:45:08:ef:40:45:
34:3d:6c:fe:e0:d2:64:8d:70:1d:37:61:8a:9b:3c:
e3:0b:7d:be:79:2c:59:42:a4:0d:86:35:27:ef:0b:
79:1e:aa:ba:0f:42:8e:54:e8:01:7c:60:a5:91:e0:
37:88:39:18:27:6f:a5:2e:6c:f8:4a:fd:f4:1e:fa:
58:fd:9d:c6:8c:b1:89:05:66:dc:31:f3:21:90:90:
48:b1:a8:82:04:78:a6:c1:79:33:33:e2:b6:de:c8:
5e:32:4a:82:55:6b:b0:ae:e8:60:68:03:97:41:d9:
fd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F7:60:01:81:89:4D:94:A3:D8:6B:3A:5A:AE:3B:9E:93:58:6B:00
X509v3 Authority Key Identifier:
keyid:AF:8D:F7:C4:F7:91:33:73:0F:E3:E6:89:47:77:A7:96:04:A5:CB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r433xPeRM3MP4-aJR3enlgSly3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/50ff00-777a-411d-938b-f4d60ecdf2b2/1/r433xPeRM3MP4-aJR3enlgSly3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:5f:ac:e2:65:49:13:a6:81:c9:5b:6b:69:3f:99:d7:a8:87:
b0:41:51:54:b3:73:cf:5e:6c:31:a3:d8:52:c7:30:75:85:e0:
0b:34:9e:7e:c0:e1:7f:2a:8c:46:87:6b:7a:7a:37:64:40:46:
1e:cb:76:98:f4:0e:53:cb:d2:99:65:9d:32:5e:f8:aa:27:bd:
da:8e:42:09:09:75:58:4a:aa:74:a9:3a:43:bc:4b:85:72:6d:
27:69:10:33:7c:c7:16:58:37:b9:9d:60:25:fb:6b:77:fd:db:
43:b8:f1:9e:fd:66:f1:6f:37:de:3c:49:98:3c:82:18:66:f5:
bd:e4:94:f6:1a:6d:85:ce:bc:02:55:09:21:b4:fb:e5:06:1c:
2c:5b:13:bf:27:6f:2d:93:a2:a5:60:8f:16:67:ff:50:8f:88:
af:f3:ec:99:81:52:da:ae:6a:3d:6a:8e:1e:43:80:f6:f4:3b:
9c:53:e6:21:c0:be:ad:50:85:b5:67:d0:02:f7:53:fd:82:e6:
56:56:98:1a:b8:ce:fc:32:b9:4f:09:77:21:0a:6e:44:64:1d:
0b:a0:be:5e:af:3a:4d:87:08:55:a0:6e:da:85:12:e7:bc:3d:
bc:e3:fe:64:c7:8c:de:f8:bf:2a:bd:6b:8f:ec:df:7a:0d:f5:
77:66:f0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 17:38:28 2024 by rpki-client on console-ams.rpki-client.org