Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
File: aFeXIsOgywwzUcWV36PX6tgfFr8.mft (raw, json)
Hash identifier: h3ZpY7NI8dClkKDt6iieFEIX1gdpR9V6oMoqQAgLMAY=
Subject key identifier: 82:64:7E:F2:D6:19:5C:B3:BE:24:29:AE:DC:5C:22:33:26:02:27:83
Authority key identifier: 68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
Certificate issuer: /CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Certificate serial: 019356F694E182CC0AABE6A0CF97CE8CE1A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
Manifest number: 1376
Signing time: Sat 23 Nov 2024 03:00:20 +0000
Manifest this update: Sat 23 Nov 2024 03:00:20 +0000
Manifest next update: Sun 24 Nov 2024 03:00:20 +0000
Files and hashes: 1: L3g8IVnVziqn8e93RfyuXnHvOS0.roa (hash: Vwlv389/azoc6eqSH7ZOUEY5pusU9QqF7xCdf5wEPeU=)
2: aFeXIsOgywwzUcWV36PX6tgfFr8.crl (hash: qiueWxAmCjvgGXTKE3XuljmKY9poXIIo/b8kRHeeT8M=)
3: hUP90rVS4Bpdr3-_3xZFf6QV9CY.roa (hash: xYYw4KjNZ6tHKSTCPNMaONdgSy7RfQpmsYUoFxQNlio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:f6:94:e1:82:cc:0a:ab:e6:a0:cf:97:ce:8c:e1:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Validity
Not Before: Nov 23 03:00:20 2024 GMT
Not After : Nov 24 03:00:20 2024 GMT
Subject: CN=82647ef2d6195cb3be2429aedc5c223326022783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6b:fe:8d:5f:85:57:c5:a8:7c:c9:60:87:1c:
50:72:1e:50:a4:8e:32:0e:81:d8:21:cf:c6:f0:01:
05:62:ec:f9:9e:b0:db:31:4e:34:d3:fe:f0:e7:2f:
26:39:91:a5:66:03:cb:a2:b7:af:9c:76:02:e8:b6:
b4:55:c3:01:11:81:4a:4e:cd:73:e5:81:e5:14:df:
49:44:84:f7:87:ba:e4:02:a9:6c:4f:ca:32:18:4d:
12:35:c6:18:bd:f6:0f:09:2b:d6:1a:7b:22:21:44:
85:d7:68:58:20:8a:58:a6:a5:3c:18:54:67:0b:5c:
a6:e9:bf:bc:6b:0a:78:b1:35:51:af:91:0a:29:30:
0b:f2:2f:67:0c:b1:dd:ec:7a:51:67:0d:47:32:97:
a1:ec:5a:f3:b1:cc:27:d7:d4:7e:f8:c9:3e:98:49:
95:30:93:eb:e2:ed:5d:56:63:28:70:51:27:34:33:
8b:b0:db:10:13:81:23:ee:22:26:b7:7a:f4:05:af:
ed:3b:2a:04:e4:22:d2:d6:cb:ac:48:da:0a:32:76:
02:0e:ee:cd:b7:1b:2a:79:7b:23:2b:58:a6:fa:be:
79:8e:80:03:09:e8:e4:65:4e:c2:a6:b9:5a:c9:15:
44:72:ff:ac:9c:9f:d0:66:54:95:52:1c:37:d3:4e:
d8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:64:7E:F2:D6:19:5C:B3:BE:24:29:AE:DC:5C:22:33:26:02:27:83
X509v3 Authority Key Identifier:
keyid:68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:77:4d:83:a4:80:63:47:71:51:59:ce:ef:ea:23:14:1f:fc:
40:b4:22:a1:06:75:a0:ef:be:ac:00:24:c5:9a:28:5a:06:35:
0a:93:5c:72:dc:3e:4c:c7:3e:18:50:6e:f9:86:d7:49:46:ea:
c8:3f:5a:af:c3:9e:10:83:96:82:f9:3e:ce:19:1b:67:37:0b:
93:3d:a1:f2:6d:67:94:75:08:cd:db:78:29:b8:a5:69:79:51:
49:4c:cc:6d:f7:de:22:4f:04:ff:4d:c2:85:5e:35:6b:61:3b:
1e:a2:6e:34:2b:91:dc:81:0e:5c:64:00:1d:b6:ba:77:e0:ed:
25:d7:92:5b:40:37:5f:8f:47:52:8e:68:12:a5:56:b3:93:8d:
d0:34:79:6d:fa:f0:51:92:ca:47:a9:e7:47:7a:fe:fe:d9:86:
f0:c9:28:b5:61:85:89:b3:4d:33:db:83:56:9d:e4:d3:0a:9a:
72:82:b6:c0:ab:d5:df:be:27:17:05:d9:fa:4c:87:4c:44:47:
b2:8d:b9:be:76:48:24:3e:f2:1b:9b:66:1d:77:db:0c:de:1d:
57:72:6c:df:f4:99:d8:d5:9d:65:cd:a6:68:8e:a0:89:50:a6:
ee:92:e0:a4:5f:01:7a:7a:58:84:54:c1:9b:10:3a:60:b8:e9:
78:e3:41:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNW9pThgswKq+agz5fOjOGnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NTc5NzIyYzNhMGNiMGMzMzUxYzU5NWRmYTNkN2VhZDgx
ZjE2YmYwHhcNMjQxMTIzMDMwMDIwWhcNMjQxMTI0MDMwMDIwWjAzMTEwLwYDVQQD
Eyg4MjY0N2VmMmQ2MTk1Y2IzYmUyNDI5YWVkYzVjMjIzMzI2MDIyNzgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2v+jV+FV8WofMlghxxQch5QpI4y
DoHYIc/G8AEFYuz5nrDbMU400/7w5y8mOZGlZgPLorevnHYC6La0VcMBEYFKTs1z
5YHlFN9JRIT3h7rkAqlsT8oyGE0SNcYYvfYPCSvWGnsiIUSF12hYIIpYpqU8GFRn
C1ym6b+8awp4sTVRr5EKKTAL8i9nDLHd7HpRZw1HMpeh7Frzscwn19R++Mk+mEmV
MJPr4u1dVmMocFEnNDOLsNsQE4Ej7iImt3r0Ba/tOyoE5CLS1susSNoKMnYCDu7N
txsqeXsjK1im+r55joADCejkZU7CprlayRVEcv+snJ/QZlSVUhw3007YUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIJkfvLWGVyzviQprtxcIjMmAieDMB8GA1UdIwQY
MBaAFGhXlyLDoMsMM1HFld+j1+rYHxa/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUZlWElzT2d5d3d6VWNXVjM2UFg2dGdmRnI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9mYTgzNmMtMWNkMy00YmE3LWI1OTgt
OWY1NTk3YjU2Yjc2LzEvYUZlWElzT2d5d3d6VWNXVjM2UFg2dGdmRnI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9mYTgzNmMtMWNkMy00YmE3LWI1OTgtOWY1NTk3YjU2Yjc2
LzEvYUZlWElzT2d5d3d6VWNXVjM2UFg2dGdmRnI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXndNg6SA
Y0dxUVnO7+ojFB/8QLQioQZ1oO++rAAkxZooWgY1CpNcctw+TMc+GFBu+YbXSUbq
yD9ar8OeEIOWgvk+zhkbZzcLkz2h8m1nlHUIzdt4KbilaXlRSUzMbffeIk8E/03C
hV41a2E7HqJuNCuR3IEOXGQAHba6d+DtJdeSW0A3X49HUo5oEqVWs5ON0DR5bfrw
UZLKR6nnR3r+/tmG8MkotWGFibNNM9uDVp3k0wqacoK2wKvV374nFwXZ+kyHTERH
so25vnZIJD7yG5tmHXfbDN4dV3Js3/SZ2NWdZc2maI6giVCm7pLgpF8BenpYhFTB
mxA6YLjpeONBGA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:12:12 2024 by rpki-client on console-fra.rpki-client.org