Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json)
Hash identifier: zhNoj6xU17A2jwRU46Y3YlTFfJkO+YkfehLixq/C1is=
Subject key identifier: 25:D1:53:4C:49:F8:1D:83:BA:FA:BC:B1:1C:E0:CF:DA:EF:89:18:20
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 0215F88F2836443E712EAA406E776A85F49A0E70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
Manifest number: A2
Signing time: Fri 17 May 2024 13:52:04 +0000
Manifest this update: Fri 17 May 2024 13:47:04 +0000
Manifest next update: Sat 18 May 2024 17:08:04 +0000
Files and hashes: 1: 3138352e3230362e3235332e302f32342d3234203d3e2037303138.roa (hash: bP99dxf4XdMPcy2k/Gk7NBLUdy+UFXgEhC+bhGmTJew=)
2: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: n7DY9xfW2FFcg+Y0vb6OHGuJ+BygOEPy+EE8W7i4VVU=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:15:f8:8f:28:36:44:3e:71:2e:aa:40:6e:77:6a:85:f4:9a:0e:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: May 17 13:47:04 2024 GMT
Not After : May 18 17:08:04 2024 GMT
Subject: CN=25D1534C49F81D83BAFABCB11CE0CFDAEF891820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1b:b4:e9:8b:c7:aa:1e:6b:13:89:a2:ba:f3:
cf:a8:cf:55:41:87:7c:2c:f8:58:e5:74:61:57:85:
7c:d3:cb:31:6f:0f:27:42:83:4b:78:b4:be:92:bd:
9c:b1:8e:fe:6d:fe:be:36:c7:30:d4:a0:d3:8b:7e:
09:2b:48:3b:a3:43:c7:7e:3c:50:e0:6c:42:35:3a:
57:37:fa:ee:05:d1:97:54:c4:eb:7f:59:47:d0:14:
e3:3c:fc:3b:2b:61:9b:b5:a0:ec:c1:ed:d8:70:4a:
6c:21:75:d0:4d:54:45:37:c3:15:88:c7:9c:0f:0d:
ac:ad:e3:50:34:0e:96:33:0f:4c:da:d9:be:90:67:
f6:2e:45:1b:cf:62:65:72:ca:9f:8b:9f:c1:4d:85:
94:66:65:55:e5:b8:96:62:34:3f:b7:6e:c5:ac:d6:
e2:6e:02:87:c3:cb:ad:59:2b:54:7c:9e:3b:8c:36:
72:32:a5:22:35:5c:a8:83:af:27:26:d6:dd:d9:92:
90:1e:6b:30:57:88:7d:6c:d0:96:f0:37:4c:ee:9c:
d7:ab:e4:2f:1d:b8:95:e9:67:83:95:5a:40:a3:00:
8d:8a:64:53:31:95:af:78:84:c5:da:55:f1:2e:fb:
c0:0c:9f:9f:f6:11:de:c3:6c:34:b0:77:f8:8d:20:
3a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D1:53:4C:49:F8:1D:83:BA:FA:BC:B1:1C:E0:CF:DA:EF:89:18:20
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:d3:c7:01:6d:89:1d:ee:af:a0:f0:77:2a:8f:2c:33:60:d5:
33:69:98:1d:59:f9:d7:13:ab:d6:89:48:ec:05:dc:b7:97:57:
09:ee:bb:50:28:e5:d4:90:89:b4:00:e6:ab:7c:9e:b6:e1:8d:
c9:89:eb:03:5a:6b:10:aa:07:33:13:75:85:75:22:38:32:bc:
7c:ab:80:b1:7a:06:5d:89:e9:6b:52:9a:4d:82:25:41:71:3f:
22:7b:26:bd:2d:19:fc:4c:38:6a:6a:98:63:b0:f9:49:c7:3f:
99:2d:ad:17:67:21:bf:88:6b:63:cc:18:c9:55:7f:1a:76:0e:
d2:39:7d:0f:ca:d0:7c:0a:cb:eb:e3:3d:a2:c0:ea:53:67:d8:
54:66:20:d5:a2:3c:2d:d0:68:4b:34:8e:90:f6:da:b1:f5:47:
72:1a:08:27:de:a8:99:b5:dc:3d:05:07:92:17:c5:91:56:cf:
a2:85:8d:fd:0d:58:63:c4:7e:22:c8:7e:bc:e0:0d:6e:20:74:
85:78:f2:23:75:bb:d2:a4:15:d8:0c:ff:6e:1e:8d:48:a9:b9:
37:02:5d:41:cb:e5:df:cf:ed:29:43:72:b7:a7:ee:13:cf:8d:
9d:2c:39:23:88:93:34:fc:1d:fd:1d:7d:ec:25:4f:54:17:b3:
5d:99:b5:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 16:58:13 2024 by rpki-client on console-ams.rpki-client.org