Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
File: AhfGZs2iPpINFLkK6TY3EzUKrB4.mft (raw, json)
Hash identifier: Dx8JM/6H8EsfEsRBu4idwGTBQAVJNM+Een9EoDBU8sU=
Subject key identifier: 02:51:F5:38:DE:64:DD:B9:32:59:77:BB:69:CA:6E:98:F6:AC:43:E8
Authority key identifier: 02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
Certificate issuer: /CN=0217c666cda23e920d14b90ae9363713350aac1e
Certificate serial: 01936B22317568E71549109B8086D806F8AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
Manifest number: 137B
Signing time: Wed 27 Nov 2024 01:00:23 +0000
Manifest this update: Wed 27 Nov 2024 01:00:23 +0000
Manifest next update: Thu 28 Nov 2024 01:00:23 +0000
Files and hashes: 1: 5DwQ5MgXHr_goxu01_jQF4-LUNU.roa (hash: ANyX02InE6EehGGUcP9Q91SLlRrnob4nkODyk3V6cys=)
2: AhfGZs2iPpINFLkK6TY3EzUKrB4.crl (hash: gX6apERW4JfC36jTJrbk/JOtQYe625bAwBwWVNFaN3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:22:31:75:68:e7:15:49:10:9b:80:86:d8:06:f8:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0217c666cda23e920d14b90ae9363713350aac1e
Validity
Not Before: Nov 27 01:00:23 2024 GMT
Not After : Nov 28 01:00:23 2024 GMT
Subject: CN=0251f538de64ddb9325977bb69ca6e98f6ac43e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8c:7c:c6:7c:bd:7b:cc:c5:fe:b5:42:b3:da:
99:c7:ad:a6:21:82:c3:e8:e1:57:7e:48:22:43:9d:
71:5f:46:5e:e0:c7:cd:d1:aa:10:59:1f:69:dc:9e:
0c:04:f6:62:3c:29:11:84:dc:52:8c:c2:f4:94:6c:
2e:23:39:54:b9:5c:0c:e7:cd:0c:99:26:b8:d5:1a:
b6:c0:c2:b3:c8:40:77:6b:59:b8:b3:ee:e0:80:0c:
15:9b:9b:1e:3d:20:c2:d6:d8:6a:e1:9f:e3:4d:7c:
79:d8:da:b4:ab:0b:d4:f2:83:f4:f3:8a:62:8d:3a:
02:7b:a8:3c:41:d7:0b:47:59:cf:e4:22:87:3d:ad:
96:fb:82:07:2c:1d:bf:f3:48:c0:88:34:41:ea:5c:
24:9e:fd:e5:a6:d5:8c:34:ec:5f:1e:b9:63:0d:fb:
93:15:7c:00:ec:f6:24:62:65:6c:37:f3:e1:a5:f5:
90:a4:00:1d:4d:55:68:57:8c:27:a5:7b:e1:ab:16:
03:29:2f:ea:81:bd:a3:89:5e:bb:14:bb:7a:e8:21:
29:39:54:90:01:6e:ad:dd:2a:5f:fd:d7:f1:53:62:
b3:e8:3e:e9:37:8b:81:1e:4b:a9:ee:86:5e:95:b3:
23:3d:c7:3a:d5:9e:df:7a:05:4f:fe:37:da:70:a5:
76:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:51:F5:38:DE:64:DD:B9:32:59:77:BB:69:CA:6E:98:F6:AC:43:E8
X509v3 Authority Key Identifier:
keyid:02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:01:dd:cc:c7:16:cb:03:ae:08:77:32:91:a3:6f:89:7b:ab:
6e:23:32:88:5e:df:53:18:b5:22:09:c6:87:17:3d:69:9b:ea:
41:82:ce:bb:da:78:5b:20:d5:43:29:87:ea:55:72:29:71:cd:
12:bc:16:90:93:7e:40:9f:fe:c4:48:5f:e3:58:f7:d6:a1:97:
e3:42:80:22:5d:85:fe:7f:09:2b:cb:84:a7:9d:b2:42:2d:76:
b0:88:e7:19:c6:7b:61:28:b1:b0:17:68:03:ee:76:3b:3f:d3:
1e:71:27:d3:d5:19:ac:ef:3f:41:02:6b:1e:64:14:91:01:00:
e7:31:0d:21:41:2a:bb:a8:93:06:b6:1e:16:da:21:9b:09:f5:
74:11:76:e2:db:4c:38:2c:ed:a0:6e:98:96:fd:40:9a:33:a2:
08:8e:c4:2f:11:c8:45:94:25:71:25:39:16:8f:e4:a4:7f:74:
8a:61:7a:eb:c3:d7:df:1d:89:fd:83:c4:92:ad:5a:97:bc:33:
e1:f4:60:80:3e:76:cc:05:22:dd:63:e5:47:b0:6a:76:13:83:
4d:a5:c5:a1:0f:7c:86:89:15:8c:62:22:c6:c7:b4:b8:fa:c6:
91:9e:19:35:49:fb:c9:64:bf:c7:0d:07:60:8f:d1:bc:c6:50:
89:1c:9a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:53:39 2024 by rpki-client on console-fra.rpki-client.org