Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
File: afAHCvh31rmGswe5vATvGcRAQz0.mft (raw, json)
Hash identifier: qafSQmaio3UAjs/Xav8kOmS9PdKKxufsTnOjWFtjuCs=
Subject key identifier: 7B:75:47:BC:90:37:16:29:0D:F2:8A:2E:8D:B5:08:6A:A4:09:F3:9A
Authority key identifier: 69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
Certificate issuer: /CN=69f0070af877d6b986b307b9bc04ef19c440433d
Certificate serial: 01936C35548767A5D8A03702BEBD4BB08CE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
Manifest number: 05B0
Signing time: Wed 27 Nov 2024 06:00:54 +0000
Manifest this update: Wed 27 Nov 2024 06:00:54 +0000
Manifest next update: Thu 28 Nov 2024 06:00:54 +0000
Files and hashes: 1: afAHCvh31rmGswe5vATvGcRAQz0.crl (hash: kWx2+Cdl6SqmNEaakvrrGABVSTIuXz3owoxPAtQq45U=)
2: yy5qsCuo4yiMAJn_Uvt_Y0XRwKU.roa (hash: VoBADLKiJ+ZyOMmnE5ffhReUUmMzjEtpURqfze+14vE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6c:35:54:87:67:a5:d8:a0:37:02:be:bd:4b:b0:8c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f0070af877d6b986b307b9bc04ef19c440433d
Validity
Not Before: Nov 27 06:00:54 2024 GMT
Not After : Nov 28 06:00:54 2024 GMT
Subject: CN=7b7547bc903716290df28a2e8db5086aa409f39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f8:11:09:11:8d:bb:6d:ef:10:6b:25:d4:22:
20:af:47:dc:70:fc:09:56:b6:29:e0:c3:be:c8:d7:
27:80:21:ab:6f:86:0e:b8:99:3d:35:29:39:33:0a:
ab:35:7d:4d:59:68:36:99:bf:e4:78:b3:61:26:e6:
86:7d:d9:db:37:2f:b3:a2:c5:cd:4b:69:67:1a:88:
42:f8:e1:72:ad:62:99:9d:fe:52:b2:11:2b:e3:13:
11:66:09:64:75:f8:91:d4:e1:ad:ff:2e:d0:1f:be:
64:26:9f:b7:ff:67:af:61:76:da:1e:32:1e:02:38:
d3:6f:cc:2f:53:a4:0b:83:fd:1c:89:7e:c0:1a:d3:
0f:b7:53:8a:a9:23:24:e1:65:b3:ef:a9:d1:05:3a:
2c:04:d2:22:95:bd:fe:2d:3e:93:2a:1a:b1:b5:6e:
b5:a1:f5:2e:0c:2a:60:97:98:7d:63:db:26:58:80:
a7:e3:83:bf:34:fd:2d:c1:21:51:f4:12:19:77:29:
a6:7f:51:7e:33:f9:f3:cb:af:a5:b9:07:53:5f:02:
13:a5:4b:7b:4b:83:49:47:96:6f:13:c1:59:06:4b:
4e:c5:e2:b0:03:bf:84:16:82:02:58:72:a2:76:92:
33:51:fd:ae:67:9c:b5:bb:17:8d:4e:fb:e9:da:fb:
55:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:75:47:BC:90:37:16:29:0D:F2:8A:2E:8D:B5:08:6A:A4:09:F3:9A
X509v3 Authority Key Identifier:
keyid:69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:9c:a8:e5:52:b8:16:fc:c7:89:a6:b8:95:65:3f:40:fa:00:
46:7e:c1:31:01:2e:b5:d1:f5:2a:ee:17:82:b2:61:f9:18:84:
b4:79:75:27:67:e4:56:c9:e7:04:93:9e:5c:b6:a9:5b:6f:e2:
08:ba:53:8e:cd:fe:fb:08:b3:58:30:d5:ad:5a:9b:d2:8e:9f:
05:9e:d7:3a:a9:44:d8:b8:84:09:cc:e8:ff:76:bd:87:6c:39:
c3:6a:21:54:3d:2f:00:ce:09:5b:db:dd:57:e5:69:32:29:0f:
19:0e:cd:3f:f3:07:65:41:4c:6d:05:c1:3b:02:85:81:0f:17:
f6:00:41:96:69:fa:e3:14:5d:60:d1:85:0e:97:37:95:86:9e:
9a:0d:60:49:ca:95:29:a6:ae:86:eb:df:0d:f1:f3:4a:ae:f0:
01:c6:bc:b6:e2:5f:52:2c:2b:aa:22:7a:b8:9e:3a:1c:48:a7:
d2:08:79:ae:3e:06:f6:07:ec:f9:63:8d:cd:19:e4:ff:d9:90:
aa:17:e3:47:29:17:b2:94:cf:70:7f:0d:a9:56:fb:a0:6b:41:
57:c4:c7:c5:0c:ad:b0:14:82:c1:b6:9c:32:5b:8e:4c:1f:72:
54:5a:5f:b5:86:b3:ea:e6:53:a3:08:b9:ab:a9:2f:a5:93:5b:
c7:62:de:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNsNVSHZ6XYoDcCvr1LsIznMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ZjAwNzBhZjg3N2Q2Yjk4NmIzMDdiOWJjMDRlZjE5YzQ0
MDQzM2QwHhcNMjQxMTI3MDYwMDU0WhcNMjQxMTI4MDYwMDU0WjAzMTEwLwYDVQQD
Eyg3Yjc1NDdiYzkwMzcxNjI5MGRmMjhhMmU4ZGI1MDg2YWE0MDlmMzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/gRCRGNu23vEGsl1CIgr0fccPwJ
VrYp4MO+yNcngCGrb4YOuJk9NSk5MwqrNX1NWWg2mb/keLNhJuaGfdnbNy+zosXN
S2lnGohC+OFyrWKZnf5SshEr4xMRZglkdfiR1OGt/y7QH75kJp+3/2evYXbaHjIe
AjjTb8wvU6QLg/0ciX7AGtMPt1OKqSMk4WWz76nRBTosBNIilb3+LT6TKhqxtW61
ofUuDCpgl5h9Y9smWICn44O/NP0twSFR9BIZdymmf1F+M/nzy6+luQdTXwITpUt7
S4NJR5ZvE8FZBktOxeKwA7+EFoICWHKidpIzUf2uZ5y1uxeNTvvp2vtV0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHt1R7yQNxYpDfKKLo21CGqkCfOaMB8GA1UdIwQY
MBaAFGnwBwr4d9a5hrMHubwE7xnEQEM9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWZBSEN2aDMxcm1Hc3dlNXZBVHZHY1JBUXowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9hYjlmYTYtYTkwNi00YWM0LWFjMGMt
NjM4OTIyMGIyNmM2LzEvYWZBSEN2aDMxcm1Hc3dlNXZBVHZHY1JBUXowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9hYjlmYTYtYTkwNi00YWM0LWFjMGMtNjM4OTIyMGIyNmM2
LzEvYWZBSEN2aDMxcm1Hc3dlNXZBVHZHY1JBUXowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQZyo5VK4
FvzHiaa4lWU/QPoARn7BMQEutdH1Ku4XgrJh+RiEtHl1J2fkVsnnBJOeXLapW2/i
CLpTjs3++wizWDDVrVqb0o6fBZ7XOqlE2LiECczo/3a9h2w5w2ohVD0vAM4JW9vd
V+VpMikPGQ7NP/MHZUFMbQXBOwKFgQ8X9gBBlmn64xRdYNGFDpc3lYaemg1gScqV
KaauhuvfDfHzSq7wAca8tuJfUiwrqiJ6uJ46HEin0gh5rj4G9gfs+WONzRnk/9mQ
qhfjRykXspTPcH8NqVb7oGtBV8THxQytsBSCwbacMluOTB9yVFpftYaz6uZTowi5
q6kvpZNbx2LeNA==
-----END CERTIFICATE-----
Generated at Wed Nov 27 12:55:15 2024 by rpki-client on console-fra.rpki-client.org