Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft
File: af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft (raw, json)
Hash identifier: aiDoDMTkWDjX0M2/E36MZlVM9NVfCMrUdfTST5OXGL8=
Subject key identifier: 9F:08:33:7F:B9:A7:AF:B2:DB:7E:09:29:4A:90:46:D8:07:F0:D6:0C
Authority key identifier: 69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
Certificate issuer: /CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Certificate serial: 018F885B072C7180428F2878A94515E92AE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft
Manifest number: 1178
Signing time: Fri 17 May 2024 21:00:17 +0000
Manifest this update: Fri 17 May 2024 21:00:17 +0000
Manifest next update: Sat 18 May 2024 21:00:17 +0000
Files and hashes: 1: 84VQswCBuB148vEFTfifm-H4ako.roa (hash: lwTJBRvS0/kAi7lrVMOhyaLWkxLgr01Rnv8LhhXGjrc=)
2: AJydNPItEaXITGqm5SXvlro4rqA.roa (hash: mXQTld5E3ujK1c2SY3bBKYHIpkfPVmxiuGm1zg51ovY=)
3: af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl (hash: qXmK/4FqZmmlNEhYOjDkzzrvawFZGe7trCYhVd/NETc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:5b:07:2c:71:80:42:8f:28:78:a9:45:15:e9:2a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Validity
Not Before: May 17 21:00:17 2024 GMT
Not After : May 18 21:00:17 2024 GMT
Subject: CN=9f08337fb9a7afb2db7e09294a9046d807f0d60c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:84:b4:45:58:b9:ca:e8:dc:d5:d2:33:2e:6d:
c4:68:b8:64:3d:96:22:c0:be:bf:d7:d9:29:b1:f5:
30:3a:97:8c:ac:7a:9b:f7:4b:36:21:ab:14:22:b4:
12:f3:1e:c5:2d:e3:50:57:ad:53:48:ec:9d:91:a7:
7a:d3:68:66:91:f5:4d:b3:5c:e6:cd:b8:8e:c4:b3:
e8:9e:ff:49:d3:06:f9:25:b2:26:f9:c2:38:ba:c1:
91:ce:69:11:f1:08:45:91:3a:07:6a:a6:82:2e:a8:
cf:ca:c0:14:1e:41:64:bd:42:96:e4:2c:fa:20:b7:
aa:75:0b:c2:f9:66:8e:89:d4:c3:ce:b1:52:a8:98:
9f:45:3a:7a:d2:04:3d:21:d6:dd:12:a9:15:27:9f:
19:c0:c7:fe:02:1c:84:82:00:ff:dc:d8:97:85:ea:
3b:7c:13:48:93:fb:36:99:6e:c1:cc:17:e3:4d:c6:
2e:f5:45:99:d2:c8:66:4c:5f:52:06:82:38:b9:52:
21:4d:5b:08:eb:f5:ff:90:cd:3b:c0:6a:8e:f6:42:
c4:3d:53:4f:06:01:e0:9d:75:10:08:c3:19:a9:0c:
11:11:27:3d:b7:1e:ff:a2:b8:3e:fe:57:e2:99:30:
e5:05:7c:35:b8:64:c0:2f:d4:0b:5f:4c:29:ce:01:
74:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:08:33:7F:B9:A7:AF:B2:DB:7E:09:29:4A:90:46:D8:07:F0:D6:0C
X509v3 Authority Key Identifier:
keyid:69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:04:48:10:62:cb:51:9e:30:98:a2:9f:e0:2a:6f:76:f6:d2:
bd:09:b1:bb:aa:c2:c6:32:a0:16:03:11:c1:c3:ff:fa:42:6d:
b0:6c:a8:2b:9b:33:d1:28:ef:5c:a7:43:89:27:e6:0a:58:fe:
c8:e9:39:49:02:29:a5:f9:10:73:b3:10:06:89:24:8b:78:e7:
a7:b6:34:65:70:9a:31:2f:bb:e5:29:42:3d:34:0c:9f:92:99:
60:9f:cd:01:ec:8a:7f:0f:4b:60:c7:de:7d:05:95:97:99:90:
b3:e3:7c:75:fb:3f:1e:ea:44:d2:68:b4:73:a5:da:4f:f7:49:
a5:5f:c9:4a:fc:24:ca:35:9a:08:db:e8:bc:34:13:01:ef:2b:
7a:dc:8e:af:12:b3:06:6b:a3:a2:80:d4:a3:9b:51:ad:50:ba:
7d:35:75:44:17:3b:de:c7:92:e3:81:7a:f5:f4:85:65:0e:99:
b6:3f:c0:a0:10:d3:0a:e4:49:31:2b:43:87:5b:2f:60:b7:c2:
75:e7:f2:80:70:ee:ee:a5:cd:3d:71:12:36:4e:38:3c:aa:87:
2c:2d:28:5b:77:36:6a:24:9a:f2:a4:f0:4e:54:58:43:1f:06:
7d:40:dd:2a:1f:8c:73:8c:a9:e4:14:bd:25:84:15:cb:1d:bc:
ff:84:3a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:45:19 2024 by rpki-client on console-fra.rpki-client.org