Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json)
Hash identifier: mBA/QCVEDe1akK75CFKxjGLkrw0wbithVuzA5/P297Q=
Subject key identifier: 5F:A9:A9:40:1D:C3:4A:BC:88:F3:69:3B:32:6B:08:2D:F5:E2:AD:FB
Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Certificate serial: 019076C160B4356545D0CB4C834EE16DFF7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
Manifest number: 099F
Signing time: Wed 03 Jul 2024 04:01:42 +0000
Manifest this update: Wed 03 Jul 2024 04:01:42 +0000
Manifest next update: Thu 04 Jul 2024 04:01:42 +0000
Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: Ynso6p0/BKfUcjkzHNrQVFvSRwW+p3xq4qrS61AweLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:76:c1:60:b4:35:65:45:d0:cb:4c:83:4e:e1:6d:ff:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Validity
Not Before: Jul 3 04:01:42 2024 GMT
Not After : Jul 4 04:01:42 2024 GMT
Subject: CN=5fa9a9401dc34abc88f3693b326b082df5e2adfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:14:34:5b:3d:84:d5:87:b1:7e:f8:6e:e5:73:
e8:dc:5e:4a:71:98:70:e3:eb:2a:c1:be:24:54:65:
b1:4b:13:44:06:51:e2:2c:12:3e:49:9d:da:ac:fc:
60:d6:52:b3:6d:1f:a1:cb:28:a6:2a:35:09:a4:6d:
49:7e:d4:dc:25:1a:5d:77:e6:de:06:16:08:8d:72:
e8:f2:57:7a:84:a3:70:e9:76:40:b8:e9:9b:6f:9a:
9a:d2:93:dd:90:74:b9:93:12:fb:13:79:a0:3a:41:
7c:8f:a0:2e:95:14:3d:e0:85:a1:b4:04:8c:77:d9:
d9:d3:22:02:a8:91:be:69:40:5d:a8:f9:0a:60:2d:
02:72:88:94:cc:ce:f3:a5:af:7c:46:c6:37:39:50:
88:f5:40:8d:e3:21:1d:a5:c4:10:08:2b:13:0c:79:
8a:4b:c2:9e:d6:53:96:06:f7:a8:c8:a7:62:f5:e9:
a8:97:42:f1:e8:be:5a:4b:31:41:bf:94:02:3e:a5:
fe:fd:33:50:d2:65:09:f7:ff:af:d0:3d:7c:51:a1:
21:cc:bd:bd:20:2a:01:ce:8b:40:de:26:08:ad:62:
93:8e:8f:21:9a:07:e2:50:d2:ad:3b:85:8e:70:5f:
51:3a:34:f6:f1:b7:a4:08:86:b8:6b:23:37:4d:e8:
37:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A9:A9:40:1D:C3:4A:BC:88:F3:69:3B:32:6B:08:2D:F5:E2:AD:FB
X509v3 Authority Key Identifier:
keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:c7:8a:05:87:35:9d:d9:9e:4c:58:bf:8e:72:97:f1:1d:9e:
42:5f:61:13:b5:a3:bf:31:04:1f:8d:51:11:a4:33:22:fc:8b:
8c:91:e7:dd:ab:73:24:50:0e:aa:3b:ea:21:6f:e3:10:2d:fa:
fe:2d:e2:b7:43:67:87:18:9c:ae:11:d6:19:b3:02:07:f9:d6:
d1:e0:af:bf:e2:0f:e9:5b:c8:b2:e0:a5:98:21:a6:c2:7f:41:
d5:11:a9:4b:ea:80:a8:e9:f8:39:5c:c1:64:b1:ae:ba:96:b6:
3d:1b:5b:a0:15:57:7b:6b:ae:4d:29:04:a1:5a:c1:35:ab:34:
5a:93:fc:4d:89:85:f9:1d:5e:50:7d:d0:57:b3:f1:03:ca:83:
b2:8e:da:be:5a:e4:1d:2e:ec:f6:b0:d9:5c:4d:f2:3d:76:3e:
c7:bf:3d:be:7c:66:9f:7d:16:fb:11:74:87:84:ae:2c:6d:d7:
6b:48:28:9c:5a:11:5d:34:65:61:1b:d7:0e:44:47:a2:dc:75:
b9:f3:48:3f:fa:18:d4:82:3c:67:64:77:b3:2a:e3:aa:74:cd:
43:46:48:c2:64:06:7b:15:83:77:64:8b:75:00:f8:d2:90:d5:
10:65:a2:a0:4a:40:05:05:05:5a:17:5a:01:05:74:98:ad:9b:
2e:49:cf:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZB2wWC0NWVF0MtMg07hbf96MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNTAzNDhjZjYwNjQyZjU0ZWM5MDcyNGRlNzhhYWEwM2Rj
ZDM4ZTEwHhcNMjQwNzAzMDQwMTQyWhcNMjQwNzA0MDQwMTQyWjAzMTEwLwYDVQQD
Eyg1ZmE5YTk0MDFkYzM0YWJjODhmMzY5M2IzMjZiMDgyZGY1ZTJhZGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBQ0Wz2E1Yexfvhu5XPo3F5KcZhw
4+sqwb4kVGWxSxNEBlHiLBI+SZ3arPxg1lKzbR+hyyimKjUJpG1JftTcJRpdd+be
BhYIjXLo8ld6hKNw6XZAuOmbb5qa0pPdkHS5kxL7E3mgOkF8j6AulRQ94IWhtASM
d9nZ0yICqJG+aUBdqPkKYC0CcoiUzM7zpa98RsY3OVCI9UCN4yEdpcQQCCsTDHmK
S8Ke1lOWBveoyKdi9emol0Lx6L5aSzFBv5QCPqX+/TNQ0mUJ9/+v0D18UaEhzL29
ICoBzotA3iYIrWKTjo8hmgfiUNKtO4WOcF9ROjT28bekCIa4ayM3Teg3QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+pqUAdw0q8iPNpOzJrCC314q37MB8GA1UdIwQY
MBaAFABQNIz2BkL1TskHJN54qqA9zTjhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mMTI0YjItNDc0ZS00NWEwLWI3M2Et
ZTU0YjA2YTkzNTI2LzEvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9mMTI0YjItNDc0ZS00NWEwLWI3M2EtZTU0YjA2YTkzNTI2
LzEvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk8eKBYc1
ndmeTFi/jnKX8R2eQl9hE7WjvzEEH41REaQzIvyLjJHn3atzJFAOqjvqIW/jEC36
/i3it0NnhxicrhHWGbMCB/nW0eCvv+IP6VvIsuClmCGmwn9B1RGpS+qAqOn4OVzB
ZLGuupa2PRtboBVXe2uuTSkEoVrBNas0WpP8TYmF+R1eUH3QV7PxA8qDso7avlrk
HS7s9rDZXE3yPXY+x789vnxmn30W+xF0h4SuLG3Xa0gonFoRXTRlYRvXDkRHotx1
ufNIP/oY1II8Z2R3syrjqnTNQ0ZIwmQGexWDd2SLdQD40pDVEGWioEpABQUFWhda
AQV0mK2bLknPrQ==
-----END CERTIFICATE-----
Generated at Wed Jul 3 07:11:53 2024 by rpki-client on console-fra.rpki-client.org