Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
File: AhfGZs2iPpINFLkK6TY3EzUKrB4.mft (raw, json)
Hash identifier: 8GtMSZcqgSFTrexnaBR/d0EwY4GMLUVD1K+MCmhhFDg=
Subject key identifier: 19:0C:53:10:C8:23:82:C4:32:E1:B8:2E:D8:03:C2:47:14:42:17:15
Authority key identifier: 02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
Certificate issuer: /CN=0217c666cda23e920d14b90ae9363713350aac1e
Certificate serial: 01923A022261038DECBFCDA325B2E43C836B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
Manifest number: 12DD
Signing time: Sat 28 Sep 2024 19:01:11 +0000
Manifest this update: Sat 28 Sep 2024 19:01:11 +0000
Manifest next update: Sun 29 Sep 2024 19:01:11 +0000
Files and hashes: 1: 5DwQ5MgXHr_goxu01_jQF4-LUNU.roa (hash: ANyX02InE6EehGGUcP9Q91SLlRrnob4nkODyk3V6cys=)
2: AhfGZs2iPpINFLkK6TY3EzUKrB4.crl (hash: 6HKpdCDuPnbKsQFRKakaGYLmGfgfRZO7D3WxalCgwyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3a:02:22:61:03:8d:ec:bf:cd:a3:25:b2:e4:3c:83:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0217c666cda23e920d14b90ae9363713350aac1e
Validity
Not Before: Sep 28 19:01:11 2024 GMT
Not After : Sep 29 19:01:11 2024 GMT
Subject: CN=190c5310c82382c432e1b82ed803c24714421715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a2:b5:65:d5:25:e8:9b:ba:a3:7b:db:97:62:
68:ba:43:68:0d:79:7a:f3:2e:9b:f4:dc:d4:b3:f6:
7b:3c:b3:8a:d0:58:c1:4a:ae:66:37:f9:a5:c4:05:
7b:b6:e3:b4:86:2f:4c:2c:b7:ad:44:35:00:b6:80:
ad:57:9b:5f:11:9d:8f:cb:e8:a7:6d:e5:6a:93:f5:
c9:d6:bf:a6:74:10:fb:7d:ca:99:9d:80:c2:50:e0:
b1:26:0a:1f:e3:80:05:f1:83:10:65:a7:5c:7f:33:
48:68:38:e7:02:6a:49:c5:cb:8f:2f:28:fa:45:e6:
d6:5e:ad:e3:ea:0c:60:2c:c3:bb:d5:55:a8:88:02:
e1:81:b0:64:1d:7d:bc:5d:56:a5:3a:f3:e8:7f:c8:
c2:4f:3c:3e:bd:a7:b6:cd:68:95:ee:51:bd:3e:85:
b8:51:33:77:b5:94:b7:7e:51:6a:7d:c5:2e:75:88:
fc:d0:58:17:b1:74:91:63:00:64:23:ff:4e:e3:ad:
cc:5a:fd:ed:f5:10:b7:17:84:20:39:55:48:bd:a0:
fe:f4:c9:37:0d:2f:2b:16:91:4d:5d:3e:91:67:7b:
15:1e:f5:3a:25:23:9f:6d:61:63:6e:3c:5a:d0:55:
72:98:23:bc:1f:db:1d:ab:2d:98:c1:bc:03:24:13:
c9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0C:53:10:C8:23:82:C4:32:E1:B8:2E:D8:03:C2:47:14:42:17:15
X509v3 Authority Key Identifier:
keyid:02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:67:01:49:b8:23:11:6d:7b:d0:e4:26:8d:29:49:e2:9e:be:
ce:5b:c2:39:ae:dc:12:ec:41:e6:ac:69:c2:6e:b5:00:c3:a3:
ae:05:a6:79:90:14:6a:e0:18:78:7b:1f:20:56:91:20:b1:dc:
c6:5a:72:bb:34:47:98:22:a8:73:7a:9d:2e:38:fd:51:f3:17:
b7:29:0d:22:c9:be:04:22:b0:8c:b2:71:d4:17:bd:9a:35:82:
56:ea:39:73:03:0e:ec:c9:53:23:05:8b:cd:d6:1e:f7:ca:94:
d7:61:3b:0c:bc:9a:95:31:9d:ed:90:53:62:58:30:27:62:9a:
0e:fb:05:8b:ab:bb:13:33:fc:e2:ed:16:62:aa:60:3f:0c:65:
8f:db:99:bc:22:f3:91:73:fa:31:43:6d:15:d7:21:44:27:20:
8b:c1:e8:99:07:43:34:ae:94:c0:e3:d4:98:26:9f:fe:31:2e:
44:3b:f9:28:d2:8d:82:04:f2:4a:7d:26:1c:02:d5:0f:49:b0:
45:38:32:fe:7f:b3:b3:4b:6f:20:53:ce:e5:72:db:8a:12:76:
4a:bd:2e:f4:cc:40:7c:28:5b:4e:c8:a5:bc:cc:43:8d:be:9d:
d8:79:34:4a:d3:e6:93:7d:9a:88:ef:ce:bc:45:bc:96:5a:85:
00:6e:71:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZI6AiJhA43sv82jJbLkPINrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyMTdjNjY2Y2RhMjNlOTIwZDE0YjkwYWU5MzYzNzEzMzUw
YWFjMWUwHhcNMjQwOTI4MTkwMTExWhcNMjQwOTI5MTkwMTExWjAzMTEwLwYDVQQD
EygxOTBjNTMxMGM4MjM4MmM0MzJlMWI4MmVkODAzYzI0NzE0NDIxNzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqK1ZdUl6Ju6o3vbl2JoukNoDXl6
8y6b9NzUs/Z7PLOK0FjBSq5mN/mlxAV7tuO0hi9MLLetRDUAtoCtV5tfEZ2Py+in
beVqk/XJ1r+mdBD7fcqZnYDCUOCxJgof44AF8YMQZadcfzNIaDjnAmpJxcuPLyj6
RebWXq3j6gxgLMO71VWoiALhgbBkHX28XValOvPof8jCTzw+vae2zWiV7lG9PoW4
UTN3tZS3flFqfcUudYj80FgXsXSRYwBkI/9O463MWv3t9RC3F4QgOVVIvaD+9Mk3
DS8rFpFNXT6RZ3sVHvU6JSOfbWFjbjxa0FVymCO8H9sdqy2YwbwDJBPJNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBkMUxDII4LEMuG4LtgDwkcUQhcVMB8GA1UdIwQY
MBaAFAIXxmbNoj6SDRS5Cuk2NxM1CqweMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9jZmEwYjUtZTFhMS00MWZmLTg4Y2It
MDI5NzE1ZGU0YzZmLzEvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9jZmEwYjUtZTFhMS00MWZmLTg4Y2ItMDI5NzE1ZGU0YzZm
LzEvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHWcBSbgj
EW170OQmjSlJ4p6+zlvCOa7cEuxB5qxpwm61AMOjrgWmeZAUauAYeHsfIFaRILHc
xlpyuzRHmCKoc3qdLjj9UfMXtykNIsm+BCKwjLJx1Be9mjWCVuo5cwMO7MlTIwWL
zdYe98qU12E7DLyalTGd7ZBTYlgwJ2KaDvsFi6u7EzP84u0WYqpgPwxlj9uZvCLz
kXP6MUNtFdchRCcgi8HomQdDNK6UwOPUmCaf/jEuRDv5KNKNggTySn0mHALVD0mw
RTgy/n+zs0tvIFPO5XLbihJ2Sr0u9MxAfChbTsilvMxDjb6d2Hk0StPmk32aiO/O
vEW8llqFAG5xwA==
-----END CERTIFICATE-----
Generated at Sun Sep 29 00:34:25 2024 by rpki-client on console-fra.rpki-client.org