Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/NQzOG50G3M6IVmWVNkmcFgM5E3A.mft
File: NQzOG50G3M6IVmWVNkmcFgM5E3A.mft (raw, json)
Hash identifier: YL3+gCEzSBxShneHzHi5QBVWsJziYd8FgRKE+6E7zck=
Subject key identifier: 9E:86:53:D7:C9:23:F2:F7:E5:39:0E:72:8E:5F:AC:61:6F:21:34:F8
Authority key identifier: 35:0C:CE:1B:9D:06:DC:CE:88:56:65:95:36:49:9C:16:03:39:13:70
Certificate issuer: /CN=350cce1b9d06dcce8856659536499c1603391370
Certificate serial: 01901DEACB9720A66C3AC4DE1C13C80EC610
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQzOG50G3M6IVmWVNkmcFgM5E3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/NQzOG50G3M6IVmWVNkmcFgM5E3A.mft
Manifest number: 11C7
Signing time: Sat 15 Jun 2024 22:00:45 +0000
Manifest this update: Sat 15 Jun 2024 22:00:45 +0000
Manifest next update: Sun 16 Jun 2024 22:00:45 +0000
Files and hashes: 1: 0cKvWkFWGbY9Zq40I-EtAWNzL4M.roa (hash: a9BO9AKB6DhNAxk79BJC6zIhzBsbenju5rkGbPuevW8=)
2: NQzOG50G3M6IVmWVNkmcFgM5E3A.crl (hash: CK/8AWdWxSKD5IepQ7IPORw/RBaqJTtD5C4j1Sq3hww=)
3: f55MqkCCRAhXZYFZ4twUk79A1oM.roa (hash: q97a6HRFSo8oWun0n8W6Bghcf95F5eIDIda3HeuP9Jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/NQzOG50G3M6IVmWVNkmcFgM5E3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/NQzOG50G3M6IVmWVNkmcFgM5E3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/NQzOG50G3M6IVmWVNkmcFgM5E3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:ea:cb:97:20:a6:6c:3a:c4:de:1c:13:c8:0e:c6:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350cce1b9d06dcce8856659536499c1603391370
Validity
Not Before: Jun 15 22:00:45 2024 GMT
Not After : Jun 16 22:00:45 2024 GMT
Subject: CN=9e8653d7c923f2f7e5390e728e5fac616f2134f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:62:5e:4c:cc:6e:4a:bd:af:31:2e:f3:2f:a5:
e3:5f:cb:d2:f1:9d:9d:87:da:1d:f9:63:9a:89:9b:
ce:e7:ad:92:1d:b0:30:fc:44:56:fb:5f:a8:96:23:
c6:92:25:43:ea:7f:52:04:d7:3d:0e:99:05:ba:a9:
81:6a:85:61:a5:f9:a6:38:ad:d3:6b:6c:8e:d1:50:
df:bb:ed:6a:cc:36:bf:cd:2b:bb:05:b5:93:0b:25:
8e:25:a9:07:ee:8a:3a:25:7d:6b:39:93:7e:e3:95:
3d:fd:24:a2:30:56:27:43:b7:d8:39:f9:84:32:67:
6d:95:00:10:74:6f:1b:4a:f7:9c:51:b3:bf:e5:b6:
5f:dd:56:64:ef:fa:64:7c:f5:43:5d:ae:ab:0f:e8:
18:13:1f:d3:91:d1:46:47:06:bc:6e:70:d7:30:cb:
83:87:34:81:ce:74:6a:f0:06:be:3c:4f:9a:e7:31:
1a:b9:7c:4d:73:0f:28:7a:00:8d:c3:f7:5e:d6:85:
f1:8a:eb:95:2e:19:5d:67:ce:d3:e3:e6:1f:16:4e:
04:b5:39:88:af:b7:67:5f:db:db:82:35:54:32:ea:
23:8e:a8:9e:f6:3e:78:7d:3b:c5:32:cb:2a:de:1f:
49:51:ac:d0:05:85:c1:ec:da:9d:02:8f:b9:49:eb:
5d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:86:53:D7:C9:23:F2:F7:E5:39:0E:72:8E:5F:AC:61:6F:21:34:F8
X509v3 Authority Key Identifier:
keyid:35:0C:CE:1B:9D:06:DC:CE:88:56:65:95:36:49:9C:16:03:39:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQzOG50G3M6IVmWVNkmcFgM5E3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/NQzOG50G3M6IVmWVNkmcFgM5E3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/NQzOG50G3M6IVmWVNkmcFgM5E3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:a4:7e:fe:44:93:b3:c2:b5:9b:23:cf:e1:4a:c6:62:f0:9f:
07:6f:44:e5:cb:06:63:aa:f4:2d:e0:7f:38:82:63:15:6a:22:
02:7c:5a:11:b8:8a:14:64:b7:80:56:d4:9e:0c:cd:a4:ab:71:
b6:8b:67:65:24:e4:a1:b7:d1:d7:ca:d5:49:ba:5a:4d:df:4e:
41:28:92:f2:49:e9:e7:c9:f0:bd:e3:75:bd:fd:13:c0:5c:a4:
2f:16:07:00:b9:31:6f:24:9b:df:ce:f7:69:7d:6c:9b:64:73:
b3:0a:72:1a:00:d4:2d:7e:71:34:b4:3b:f9:51:64:d2:7f:93:
f8:f1:71:2c:89:15:ef:be:50:66:6b:0c:82:fb:0b:9b:67:7b:
3e:6c:d3:64:4a:8b:dc:40:a3:4a:f5:00:8b:e0:5b:b9:b5:82:
a0:ba:35:c6:b2:56:b2:2f:f0:ae:c9:f1:03:e2:d8:33:53:33:
63:c5:5b:95:7c:cf:6e:94:e7:b0:12:64:2b:01:28:f8:7c:ce:
4f:ba:74:c3:1b:7c:4c:e8:2d:dc:b5:a4:42:83:f2:55:0e:40:
66:02:b5:48:33:eb:9b:0b:67:8e:2e:8b:fd:c6:a6:4f:1a:43:
98:ec:68:5a:5f:f3:fb:e8:ca:d1:62:33:ed:05:6c:a4:1d:44:
3b:db:a6:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:50:26 2024 by rpki-client on console-fra.rpki-client.org