Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft
File: af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft (raw, json)
Hash identifier: TqAvd4UK0GEfc+u0ZgpX4stQPs1FakIBB0/5rZPZ7q0=
Subject key identifier: 8E:A7:CF:52:AB:3C:BC:B5:3B:CC:2D:D1:53:C5:41:49:FA:BE:C8:DC
Authority key identifier: 69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
Certificate issuer: /CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Certificate serial: 01935989E6CE8A154CFB77DA680AE3DCF18E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 15:00:29 +0000
Manifest this update: Sat 23 Nov 2024 15:00:29 +0000
Manifest next update: Sun 24 Nov 2024 15:00:29 +0000
Files and hashes: 1: 84VQswCBuB148vEFTfifm-H4ako.roa (hash: lwTJBRvS0/kAi7lrVMOhyaLWkxLgr01Rnv8LhhXGjrc=)
2: AJydNPItEaXITGqm5SXvlro4rqA.roa (hash: mXQTld5E3ujK1c2SY3bBKYHIpkfPVmxiuGm1zg51ovY=)
3: af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl (hash: z678EYVKtxnawrAs0DobPVAguuqz0cvwjiiI5pNDbo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:89:e6:ce:8a:15:4c:fb:77:da:68:0a:e3:dc:f1:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Validity
Not Before: Nov 23 15:00:29 2024 GMT
Not After : Nov 24 15:00:29 2024 GMT
Subject: CN=8ea7cf52ab3cbcb53bcc2dd153c54149fabec8dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:13:67:1d:bb:fc:4c:d9:2a:65:de:da:d0:97:
f4:49:8d:80:43:5b:45:20:36:8c:4c:06:68:2b:9a:
d7:87:ba:ac:d2:e3:94:ac:58:7b:45:b0:69:bf:98:
21:e2:d5:af:25:0f:ff:35:9d:39:ab:6e:0d:0b:d0:
2f:56:43:c0:9b:43:ce:b8:6b:b1:63:3a:04:d1:85:
c2:90:45:9e:1d:be:c3:d1:8b:b4:41:fa:38:ee:39:
cb:4d:3f:1b:11:1e:67:b1:47:07:7c:15:df:4d:88:
c6:bc:ce:5e:e3:d1:7e:a7:7f:6b:89:e2:ef:31:7f:
e0:13:7d:bc:25:0c:31:0c:f1:f0:8f:23:0f:3b:02:
9c:b6:57:48:31:e0:53:91:71:27:c2:97:c3:6c:32:
db:6b:f5:62:f3:de:27:ad:3e:c6:1f:1c:9c:60:f6:
14:31:4f:a3:94:d1:5d:2e:b7:48:ab:88:aa:3b:aa:
c2:3e:30:76:05:77:1e:b0:17:0b:7c:d0:07:04:88:
0d:3f:6e:5b:b5:bb:6f:45:8e:75:e6:ad:62:1d:36:
0b:22:31:b2:5a:0c:1f:b5:05:5a:05:cd:ce:25:89:
e5:94:e4:80:24:47:1f:17:6d:04:40:3e:91:49:b9:
7a:b7:b8:e2:b7:70:df:84:9b:a3:c2:63:17:1d:94:
d6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A7:CF:52:AB:3C:BC:B5:3B:CC:2D:D1:53:C5:41:49:FA:BE:C8:DC
X509v3 Authority Key Identifier:
keyid:69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:2c:ea:5d:48:60:ca:cd:fc:47:93:fb:e0:4f:1e:a6:ac:be:
ff:d9:a4:44:4e:28:58:30:50:a1:4c:86:41:35:9e:9f:16:f8:
7b:18:80:4e:ea:09:8f:60:96:a7:7d:cb:90:80:4a:2a:de:ef:
12:e2:e5:1f:93:1d:a6:eb:db:b3:bf:cc:20:d3:12:ec:54:aa:
5b:d4:6e:c0:13:25:48:8e:76:32:2a:59:60:6d:a8:d8:83:b3:
37:45:f4:dc:e2:7c:db:78:fe:16:74:be:8b:8a:4c:18:34:5d:
79:6d:70:b5:96:f2:7e:e3:fd:34:9c:41:a9:39:3f:d1:9d:01:
56:df:04:80:e8:13:e1:b6:d5:d2:93:c7:99:1a:2e:9e:1c:04:
9b:30:b9:be:4e:2e:d4:ae:f0:58:38:a9:f1:74:60:12:d3:4c:
06:96:de:6d:9a:f0:9a:24:08:26:0c:5c:14:67:4a:79:74:1c:
71:07:96:43:b5:41:a7:c6:34:09:71:34:3d:af:41:f4:24:d4:
c8:0c:0f:0f:f4:f5:71:1e:99:24:1e:d0:b5:35:9d:dc:85:bd:
54:6f:22:f7:70:2a:f2:0c:c5:ac:f7:82:35:e0:2c:63:b6:df:
60:ba:00:fb:f8:2f:67:40:ff:94:26:6f:d9:ed:7b:e3:f2:71:
68:de:8d:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNZiebOihVM+3faaArj3PGOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ZmRmZTgyNDlmOTQzYWFiYWQxODgxZmNhNTgzNjYxM2E2
YTY3YmMwHhcNMjQxMTIzMTUwMDI5WhcNMjQxMTI0MTUwMDI5WjAzMTEwLwYDVQQD
Eyg4ZWE3Y2Y1MmFiM2NiY2I1M2JjYzJkZDE1M2M1NDE0OWZhYmVjOGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7xNnHbv8TNkqZd7a0Jf0SY2AQ1tF
IDaMTAZoK5rXh7qs0uOUrFh7RbBpv5gh4tWvJQ//NZ05q24NC9AvVkPAm0POuGux
YzoE0YXCkEWeHb7D0Yu0Qfo47jnLTT8bER5nsUcHfBXfTYjGvM5e49F+p39rieLv
MX/gE328JQwxDPHwjyMPOwKctldIMeBTkXEnwpfDbDLba/Vi894nrT7GHxycYPYU
MU+jlNFdLrdIq4iqO6rCPjB2BXcesBcLfNAHBIgNP25btbtvRY515q1iHTYLIjGy
WgwftQVaBc3OJYnllOSAJEcfF20EQD6RSbl6t7jit3DfhJujwmMXHZTW5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI6nz1KrPLy1O8wt0VPFQUn6vsjcMB8GA1UdIwQY
MBaAFGn9/oJJ+UOqutGIH8pYNmE6ame8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9jY2Y3NzctOTQ2NS00YTJlLTgxMTIt
NzFkOGI4ODUwODUzLzEvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9jY2Y3NzctOTQ2NS00YTJlLTgxMTItNzFkOGI4ODUwODUz
LzEvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjyzqXUhg
ys38R5P74E8epqy+/9mkRE4oWDBQoUyGQTWenxb4exiATuoJj2CWp33LkIBKKt7v
EuLlH5Mdpuvbs7/MINMS7FSqW9RuwBMlSI52MipZYG2o2IOzN0X03OJ823j+FnS+
i4pMGDRdeW1wtZbyfuP9NJxBqTk/0Z0BVt8EgOgT4bbV0pPHmRounhwEmzC5vk4u
1K7wWDip8XRgEtNMBpbebZrwmiQIJgxcFGdKeXQccQeWQ7VBp8Y0CXE0Pa9B9CTU
yAwPD/T1cR6ZJB7QtTWd3IW9VG8i93Aq8gzFrPeCNeAsY7bfYLoA+/gvZ0D/lCZv
2e174/JxaN6Nrw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 17:13:35 2024 by rpki-client on console-ams.rpki-client.org