Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
File: APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json)
Hash identifier: nY2sR/v92VxhQLDGDf9+1/z8AjusD3iUHe27OJ0dhoY=
Subject key identifier: 4D:59:B0:6F:D9:D1:6E:91:56:AF:AC:75:DC:3D:1E:42:54:54:F6:DD
Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
Certificate issuer: /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Certificate serial: 0193572DAB9C1D6244FB3C563137DEBC2F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
Manifest number: 12C6
Signing time: Sat 23 Nov 2024 04:00:30 +0000
Manifest this update: Sat 23 Nov 2024 04:00:30 +0000
Manifest next update: Sun 24 Nov 2024 04:00:30 +0000
Files and hashes: 1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: cMZfk6/uO5cRX4IISK+KDagUT8O4SfugBZpRTYD6hsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:ab:9c:1d:62:44:fb:3c:56:31:37:de:bc:2f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Validity
Not Before: Nov 23 04:00:30 2024 GMT
Not After : Nov 24 04:00:30 2024 GMT
Subject: CN=4d59b06fd9d16e9156afac75dc3d1e425454f6dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:4d:31:33:4e:cd:56:b1:37:23:cc:49:19:
c5:a0:3f:2a:d7:96:e2:05:81:1d:53:14:ba:1b:ab:
1a:6b:fe:c6:25:32:1c:10:1d:5b:e1:b3:fc:c8:53:
c2:82:d8:04:9d:80:80:36:2b:24:a9:86:b0:9b:03:
e1:3d:7f:32:6f:98:4a:54:87:eb:ed:a2:ff:8e:28:
4a:ba:06:f2:0e:f9:1b:d1:f5:da:79:4d:4f:0b:c6:
d2:00:57:06:ce:f5:73:98:4a:59:95:c5:8f:9b:ff:
5e:12:da:54:78:2f:71:c5:60:4a:d4:4f:fe:3b:b7:
27:f7:5e:b1:bf:57:fd:da:45:3d:5d:24:19:15:3e:
4c:4e:04:3c:a2:71:86:9b:cf:78:71:77:7b:69:e5:
56:c8:d3:3e:8c:3e:05:e9:b8:40:26:e0:7b:48:73:
2f:bc:c1:3d:6a:2f:97:7c:64:ff:48:72:64:8a:95:
29:7d:ab:55:a5:32:36:21:42:cb:1d:bb:5b:cc:c3:
b2:8f:41:15:f9:1b:48:67:2a:e9:13:73:1d:43:7c:
f8:a1:2b:80:af:6b:3e:d1:ac:9d:0d:62:06:cf:2e:
73:19:78:e1:ee:44:28:a8:d5:2d:19:4c:ba:c2:e5:
04:1b:ee:25:a5:ed:04:61:48:a7:c3:d7:17:fe:fd:
d2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:59:B0:6F:D9:D1:6E:91:56:AF:AC:75:DC:3D:1E:42:54:54:F6:DD
X509v3 Authority Key Identifier:
keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:6b:30:2a:73:07:45:2b:cf:94:b1:9b:b4:a1:d7:36:74:02:
92:06:16:32:2e:a5:52:0d:97:94:16:7e:01:53:08:1e:8f:49:
96:f3:2d:2a:3c:40:3c:cd:93:f0:17:0b:fc:af:8e:b9:e0:71:
fb:58:ee:dd:ee:73:85:87:50:38:0c:bd:20:1d:7c:b4:17:c3:
18:e3:c9:f4:e8:02:ad:47:c4:57:bf:8c:24:dd:62:52:59:78:
83:79:e7:ae:e3:db:5a:60:93:36:6b:59:ce:e3:7e:46:3f:0d:
b1:b8:b7:31:d6:fc:d6:52:af:35:4e:64:88:eb:62:86:7a:16:
02:44:f4:f3:b0:af:a1:8f:af:a4:3c:31:09:68:be:f7:45:62:
91:e5:7e:37:61:2e:b9:b6:55:f6:2d:ab:a3:40:5c:e5:f9:21:
53:67:a9:88:d6:ce:41:43:ca:e8:ff:cd:87:3c:d1:3b:c9:cb:
08:8e:af:56:3a:34:29:0f:2c:fd:19:d5:a7:cf:0c:6a:87:88:
1e:21:90:6a:9d:05:99:bc:cc:ab:60:4e:5b:d9:60:7b:0f:04:
1b:3a:9f:5b:4a:d3:1f:1e:ab:95:c9:84:86:7c:6c:9c:6f:53:
35:83:dc:50:a6:7c:aa:7b:6f:53:09:b9:7e:1d:9c:a8:61:cd:
e2:c6:49:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:16:02 2024 by rpki-client on console-ams.rpki-client.org