Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
File: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft (raw, json)
Hash identifier: 7rJFrWh8nDjw7E0khpezDMQz7ToP+Fqiv4fOAlZrMkk=
Subject key identifier: 27:71:08:23:1E:E2:88:D4:98:C5:2F:97:13:86:0E:F1:95:31:A2:53
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Certificate issuer: /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial: 1D9EB6B0493C1699FC1AB155BEB5FF8511C73F62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
Manifest number: 02CD
Signing time: Thu 21 Nov 2024 19:03:40 +0000
Manifest this update: Thu 21 Nov 2024 18:58:40 +0000
Manifest next update: Fri 22 Nov 2024 22:21:40 +0000
Files and hashes: 1: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl (hash: mBgSqVaY4vfNIgKGNfQa17MmxQZY747n7YBazDbfa/o=)
2: 39312e3232392e3138302e302f32342d3234203d3e2036303739.roa (hash: bCYrFGO5+3HokoUx2GJHt6aSIxx1pD6sGnDFjj+OxlU=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:9e:b6:b0:49:3c:16:99:fc:1a:b1:55:be:b5:ff:85:11:c7:3f:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Validity
Not Before: Nov 21 18:58:40 2024 GMT
Not After : Nov 22 22:21:40 2024 GMT
Subject: CN=277108231EE288D498C52F9713860EF19531A253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:50:32:c7:f5:6b:77:63:5b:a9:bb:41:f2:6b:
b6:c7:01:44:a5:7f:ab:1d:4d:f8:17:70:0f:31:31:
a9:34:7d:c8:10:d8:42:ba:8c:83:18:77:07:fc:d3:
f1:9e:3e:6c:f1:7f:2d:1a:93:72:60:09:a9:4f:e9:
07:02:66:c3:a6:6b:fa:23:73:91:f8:90:81:2d:e4:
3e:47:6e:79:ba:c5:11:29:89:46:ac:44:91:6a:00:
96:4d:aa:22:7f:68:4a:6b:3e:08:93:29:16:98:6a:
e2:59:f7:e8:f7:bb:1a:8d:c2:df:93:88:41:4c:c6:
5e:c0:b1:36:f5:0f:a2:30:81:ef:7a:82:28:a4:62:
77:15:16:47:2f:4c:55:70:42:f9:24:af:29:91:8d:
48:8d:95:81:06:3c:54:ea:45:01:0e:57:d4:f8:97:
32:6f:fa:df:68:f2:4d:15:7b:34:dd:44:d0:59:e2:
8d:35:b4:66:a0:4b:0d:24:dc:b0:c9:09:5c:91:16:
64:dd:3f:1a:53:5f:3c:ea:b6:09:62:44:66:30:33:
d8:32:75:08:59:6d:40:1f:13:ba:5f:89:ee:4e:07:
72:55:c9:5a:f2:c6:84:a0:38:0d:85:83:4d:b6:da:
bc:f6:81:b8:81:3a:d3:c9:64:15:91:cc:74:84:18:
98:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:71:08:23:1E:E2:88:D4:98:C5:2F:97:13:86:0E:F1:95:31:A2:53
X509v3 Authority Key Identifier:
keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:fa:87:27:f1:25:1f:63:fa:85:b7:38:84:56:34:29:91:25:
ca:4a:28:07:67:9a:14:6a:30:f9:81:15:5e:f2:88:a7:53:79:
6f:57:91:98:ce:e9:33:bc:75:73:35:9b:c1:a7:86:86:db:cc:
0c:91:94:26:51:23:79:13:2e:75:72:f3:79:dd:d7:ca:86:3f:
c1:1f:98:ec:7f:62:0b:e9:eb:ec:5d:fd:27:ac:e8:2c:93:5d:
8f:5b:85:f4:20:36:ec:d7:40:19:10:9a:a3:dd:9c:87:8f:c6:
e9:a3:e5:d6:81:0b:e6:73:0a:27:cb:e7:a3:ab:67:ae:f0:88:
61:5c:45:73:57:e7:1a:d4:4d:e3:94:f7:3c:ef:a6:9d:4a:5c:
5f:63:c7:44:f3:84:a0:68:04:58:ba:ce:71:74:1a:ca:9b:b9:
f1:7f:54:ba:fc:b0:4a:e6:0b:6c:2c:56:e9:76:52:6f:5a:11:
a0:78:15:a5:22:51:41:c9:e0:eb:c8:33:4c:c0:0d:8e:e9:1a:
29:68:33:35:4d:df:fc:01:2d:a7:59:ff:90:83:25:d5:35:71:
e9:ab:15:2d:e8:0b:b2:ac:dc:f2:91:97:82:f5:d0:75:88:2f:
72:81:d2:fc:f4:bb:e9:4c:ac:cf:75:aa:f2:a3:e0:6b:d3:4e:
6f:89:fb:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org