Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json)
Hash identifier: IUCPGaCj0ai3CFu+HsQXwzCvsvmyhf9nqNCrscBOymA=
Subject key identifier: EF:3A:EE:69:C5:53:C7:F0:21:AE:97:5F:0F:05:CC:75:BF:CF:40:33
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 742A3433A9E0B7ADFB22508D610DADA15F2D1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
Manifest number: 01A3
Signing time: Fri 22 Nov 2024 07:13:40 +0000
Manifest this update: Fri 22 Nov 2024 07:08:40 +0000
Manifest next update: Sat 23 Nov 2024 11:07:40 +0000
Files and hashes: 1: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: AMOOReO25pB/UyWle0jkXv+B6m1MTNWZ4+1w+73+7MY=)
2: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: rdWV1bx1HxFAXE1/6hE7xFKghoSKjjkK5MsGYuMi6YA=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:2a:34:33:a9:e0:b7:ad:fb:22:50:8d:61:0d:ad:a1:5f:2d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: Nov 22 07:08:40 2024 GMT
Not After : Nov 23 11:07:40 2024 GMT
Subject: CN=EF3AEE69C553C7F021AE975F0F05CC75BFCF4033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9a:83:f9:b6:15:04:d7:72:38:41:48:4a:fa:
26:82:f9:1a:be:5c:a4:d3:b7:1d:fa:46:34:98:52:
61:84:8a:f1:0b:ae:7c:fb:29:f2:91:e1:17:4c:10:
21:be:43:77:22:d5:1f:37:c8:11:63:7c:67:b4:84:
eb:f1:54:2f:74:85:a6:49:8c:23:a5:e4:0c:b4:d1:
b2:bc:5a:b3:90:b7:eb:87:62:b2:e9:1a:38:01:ec:
91:12:ce:25:4e:46:77:da:53:b7:ac:4e:7b:4d:40:
4d:69:6e:ba:19:c5:38:bf:ad:48:c9:ec:73:47:2a:
37:5f:11:f7:da:bc:76:3d:7a:bb:fb:ef:71:1b:4a:
f1:8b:a2:15:12:07:db:44:72:9e:73:a1:a1:6b:cf:
65:ca:46:65:10:03:d9:35:d1:16:e9:03:ad:7d:98:
ef:da:85:3e:f3:ad:22:91:78:78:0c:4c:db:09:20:
6c:4d:7a:68:e2:83:56:f6:9e:5b:fe:a4:91:60:23:
8b:25:d1:38:23:f2:39:3f:54:ec:9a:91:5a:28:90:
d3:46:8f:a2:bf:a2:40:aa:b7:7f:ae:2d:c7:7e:8c:
19:2e:b1:97:5f:9d:ed:b4:f5:35:24:94:b4:39:18:
7b:a3:ba:78:3d:54:38:4a:72:cc:e6:ac:e6:ee:a8:
01:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3A:EE:69:C5:53:C7:F0:21:AE:97:5F:0F:05:CC:75:BF:CF:40:33
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:78:83:d4:ec:68:8e:e7:84:71:50:77:56:88:ae:e2:da:f4:
8b:a5:9c:57:0a:8a:af:f5:27:2d:4f:e9:d1:db:be:55:9e:60:
28:c2:10:6c:c7:f5:50:d3:74:7c:6f:9a:cd:76:bd:ae:09:92:
2b:f2:d6:76:5b:c8:41:85:69:70:08:a0:c3:ef:a5:0c:75:4e:
08:8f:7c:69:60:20:41:9b:bb:8e:2f:3d:ef:34:35:c6:51:ae:
05:f2:d9:20:77:cb:67:d0:11:44:c2:3a:a3:f5:97:24:f6:1b:
4d:dd:ca:bf:06:b3:59:03:59:34:69:77:6e:80:19:b5:70:a3:
82:4b:6a:70:4d:9f:e0:b4:85:81:fc:c1:0f:37:c6:63:70:af:
c6:d1:6c:27:c3:28:ea:c1:8c:4e:58:0f:8a:7f:4f:76:42:45:
0c:29:f2:be:28:f5:bf:ab:2b:55:26:91:87:06:bb:67:0a:67:
a3:5a:55:a4:9a:61:db:db:6b:27:34:e4:d2:61:69:59:4b:e7:
3c:73:04:bf:78:01:dc:a8:b4:d3:e7:aa:35:bb:3e:38:08:7f:
4a:67:3d:15:48:f5:a3:70:1f:f6:14:86:f0:72:5e:ef:dc:e6:
61:17:2d:59:5a:e0:c2:90:74:b7:f2:80:c8:64:4b:3e:29:9c:
97:ec:09:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:33 2024 by rpki-client on console-fra.rpki-client.org