Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft
File: avqwkWjnzGa2Y8YWLVyNRUllzOI.mft (raw, json)
Hash identifier: 6+GqoS1r85sY1n2numQ0t4pkh9Th77Nhg5XRw4UOmy8=
Subject key identifier: F0:EB:7C:3B:EB:4C:95:F5:11:90:81:A9:CC:67:3B:2C:B8:DA:34:4F
Authority key identifier: 6A:FA:B0:91:68:E7:CC:66:B6:63:C6:16:2D:5C:8D:45:49:65:CC:E2
Certificate issuer: /CN=6afab09168e7cc66b663c6162d5c8d454965cce2
Certificate serial: 0193568A6BD40AA173DDF7F4084AB4098F83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 01:02:12 +0000
Manifest this update: Sat 23 Nov 2024 01:02:12 +0000
Manifest next update: Sun 24 Nov 2024 01:02:12 +0000
Files and hashes: 1: DNPfWi3MyaGrn60TtEVpzJHnZ1U.roa (hash: OkC0VtcLfH+xGwtoRmkYFn58wK0nyOD9IBI35AP1dlI=)
2: avqwkWjnzGa2Y8YWLVyNRUllzOI.crl (hash: +7Q2f4jpzD2++nLKgvoBLwLW5PoX/sngYk/I+bcnZNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:6b:d4:0a:a1:73:dd:f7:f4:08:4a:b4:09:8f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6afab09168e7cc66b663c6162d5c8d454965cce2
Validity
Not Before: Nov 23 01:02:12 2024 GMT
Not After : Nov 24 01:02:12 2024 GMT
Subject: CN=f0eb7c3beb4c95f5119081a9cc673b2cb8da344f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:d3:88:f9:97:11:ba:73:54:68:3c:9d:e8:
4d:79:15:c3:f4:b5:c7:eb:e7:2d:cb:b5:86:7a:08:
ce:de:08:50:50:3d:ab:f7:41:44:c4:d7:a0:cb:e6:
af:c8:a4:39:3e:ca:c7:7d:99:a6:82:09:9d:8a:b3:
38:d2:75:90:3c:99:dc:5d:18:92:fc:d6:8f:f0:00:
e7:a4:93:b2:32:51:60:51:f1:5c:6f:58:b8:d3:db:
ec:49:ad:1d:fe:92:20:2b:88:76:c1:df:66:8f:ba:
de:8b:91:0a:da:92:fc:4d:8a:66:f2:8a:85:c3:d0:
f7:da:a0:dc:fc:2f:da:3d:e0:3f:f2:8e:03:05:ee:
f0:be:06:8b:af:41:28:5d:6b:08:69:b7:3e:cc:98:
94:7b:36:1c:e9:81:e7:08:fc:8b:e3:a6:b6:7b:5e:
52:9c:79:25:b3:4a:26:bd:10:16:64:db:48:50:66:
9e:4a:1b:85:49:db:e3:b0:94:e0:9a:2d:33:10:e2:
48:78:20:79:be:fc:4a:5c:6d:4f:ea:8d:0a:db:37:
09:38:22:88:8d:6d:bd:6f:c9:2c:b7:b7:86:85:52:
65:bb:9f:3c:52:b6:9d:88:61:0b:53:73:19:36:eb:
39:f5:77:28:37:64:55:98:ad:11:a2:c2:d1:1b:c5:
b5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:EB:7C:3B:EB:4C:95:F5:11:90:81:A9:CC:67:3B:2C:B8:DA:34:4F
X509v3 Authority Key Identifier:
keyid:6A:FA:B0:91:68:E7:CC:66:B6:63:C6:16:2D:5C:8D:45:49:65:CC:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:a7:ef:d9:56:f1:5b:90:46:ad:a4:8e:d5:b2:94:ea:77:97:
d8:bc:8f:8a:8d:c9:9e:b1:c5:cd:e9:0f:ff:5c:ee:f8:d3:7f:
d3:a2:7d:a2:1e:06:e2:44:02:1b:6b:cd:05:47:b7:54:8d:ca:
61:59:4b:09:48:57:e3:92:5b:01:ff:e4:d2:13:15:51:36:25:
98:2b:bb:ff:35:46:a0:25:fb:23:0c:d0:2d:d5:9d:75:50:a8:
40:32:dd:31:e4:86:bc:99:9f:4c:82:0f:6d:77:4f:ab:44:f5:
d8:d7:09:91:14:4c:59:67:63:6b:a5:b7:07:02:e4:80:c3:b0:
d0:12:ce:09:66:48:fa:47:4b:eb:1a:0e:e0:87:26:78:a5:30:
17:ff:76:e4:8a:96:0d:8e:fc:33:df:43:01:b8:20:66:91:3b:
ca:a7:9f:0a:05:f0:fd:54:7f:62:c1:2a:9f:60:58:ed:f8:f1:
e1:39:0f:59:40:cb:99:f5:20:7b:06:79:50:f7:6f:f6:c7:87:
7d:61:1e:51:fd:2e:e7:c4:8e:7a:7a:c6:40:0a:d1:a9:63:fa:
26:b6:fe:ef:c5:19:5a:a8:96:62:a7:87:1f:d9:70:17:56:f1:
2a:0f:46:a5:3c:7f:49:dd:68:4c:cb:d3:35:aa:c8:2f:0c:c9:
0b:7d:57:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:47:00 2024 by rpki-client on console-ams.rpki-client.org