Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bc216d-db94-4bb1-9147-010e4219aeda/1/nL21tzqDMNIl80EMgbY40oPEDR8.mft
File: nL21tzqDMNIl80EMgbY40oPEDR8.mft (raw, json)
Hash identifier: K22AEcheNl/r8x7vUQqo//des72hDnXKLFwuXXUG8jI=
Subject key identifier: 03:43:18:FA:AD:06:51:D8:E4:7D:71:73:D3:E4:91:16:31:62:14:A1
Authority key identifier: 9C:BD:B5:B7:3A:83:30:D2:25:F3:41:0C:81:B6:38:D2:83:C4:0D:1F
Certificate issuer: /CN=9cbdb5b73a8330d225f3410c81b638d283c40d1f
Certificate serial: 0190486998B53D9DAE606E0BC3D5248D1052
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nL21tzqDMNIl80EMgbY40oPEDR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bc216d-db94-4bb1-9147-010e4219aeda/1/nL21tzqDMNIl80EMgbY40oPEDR8.mft
Manifest number: 0DE9
Signing time: Mon 24 Jun 2024 04:03:18 +0000
Manifest this update: Mon 24 Jun 2024 04:03:18 +0000
Manifest next update: Tue 25 Jun 2024 04:03:18 +0000
Files and hashes: 1: Na8sW_DHiQT24Q3-aonz8hz8WqI.roa (hash: eMw6Sd57TTrnc0QtEgRwXg+wTilafrlCiLtMotv7cEA=)
2: nL21tzqDMNIl80EMgbY40oPEDR8.crl (hash: PIwg6sj8EVGKQZDf8SqZa3xoofwd/PKv1rzxqXwZQ/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/bc216d-db94-4bb1-9147-010e4219aeda/1/nL21tzqDMNIl80EMgbY40oPEDR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/bc216d-db94-4bb1-9147-010e4219aeda/1/nL21tzqDMNIl80EMgbY40oPEDR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/nL21tzqDMNIl80EMgbY40oPEDR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:48:69:98:b5:3d:9d:ae:60:6e:0b:c3:d5:24:8d:10:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cbdb5b73a8330d225f3410c81b638d283c40d1f
Validity
Not Before: Jun 24 04:03:18 2024 GMT
Not After : Jun 25 04:03:18 2024 GMT
Subject: CN=034318faad0651d8e47d7173d3e49116316214a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2c:fd:90:25:23:2c:9c:cf:15:a8:49:ef:4c:
74:e2:0c:87:5f:32:25:4c:89:dd:5f:f1:6e:cd:44:
73:e8:74:03:b8:d3:70:04:63:74:55:6b:c0:4a:9a:
5e:da:35:45:a2:1d:b2:ef:b5:91:36:6e:06:41:4d:
8b:50:69:9c:13:03:6f:7a:9e:d9:60:4f:ea:33:43:
e0:4e:70:21:fa:b0:8b:2c:92:e8:e7:b1:0c:cc:04:
d5:92:fd:d2:0f:70:c4:f4:14:c4:ee:6c:51:aa:4d:
a4:81:1f:f2:33:62:a1:f6:b4:fc:f3:df:c8:e7:95:
fa:f7:de:3f:a0:0e:2b:35:f7:ea:e0:c4:69:75:3b:
bd:2b:9c:1b:6d:49:db:51:9c:06:55:c5:55:d6:fe:
d5:a5:93:a3:f6:f7:b8:69:a0:9e:d3:f3:0a:92:66:
7d:97:b2:6e:c3:40:9a:4e:b8:d0:67:d3:a6:69:63:
7c:bf:66:16:0b:ad:62:e5:44:9e:8a:f1:ff:eb:6e:
9c:72:bf:d5:76:8d:a4:6e:cf:16:b3:9a:97:7f:b6:
d3:7d:03:80:8c:b9:bc:a6:8b:2c:90:d5:c5:ea:26:
c8:d4:53:55:c0:a5:50:04:6d:10:95:b0:11:32:f1:
fb:65:ac:ac:d9:2b:b9:e8:e7:74:e8:e2:f8:04:67:
8f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:43:18:FA:AD:06:51:D8:E4:7D:71:73:D3:E4:91:16:31:62:14:A1
X509v3 Authority Key Identifier:
keyid:9C:BD:B5:B7:3A:83:30:D2:25:F3:41:0C:81:B6:38:D2:83:C4:0D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nL21tzqDMNIl80EMgbY40oPEDR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bc216d-db94-4bb1-9147-010e4219aeda/1/nL21tzqDMNIl80EMgbY40oPEDR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bc216d-db94-4bb1-9147-010e4219aeda/1/nL21tzqDMNIl80EMgbY40oPEDR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:61:b1:c9:58:3c:e5:0b:3d:19:d7:13:c3:de:7d:26:a1:b4:
9f:d9:cd:6c:35:c7:a8:ae:d8:d2:59:b8:1e:ee:a0:c2:02:68:
cb:97:cb:7d:75:4c:32:d9:6f:ec:89:4e:7e:1f:61:c4:cd:67:
41:35:db:59:82:31:74:da:18:92:6e:17:f7:b3:da:a3:ac:9c:
35:f2:b4:16:51:b7:c2:fc:76:da:1d:2c:81:76:0a:c3:e4:15:
3c:4c:e9:d7:6c:c1:66:e0:66:70:d3:d0:1f:ee:61:ac:bf:2e:
0e:be:61:a3:ac:af:44:cf:2e:bf:ee:57:32:b0:ab:d8:51:0e:
2a:fe:4c:92:2e:0f:2a:fb:96:47:7d:c0:aa:32:b8:27:55:30:
5f:a4:91:9e:36:25:4c:b7:e6:f1:2d:b3:04:e5:93:66:46:2b:
d3:42:5b:4e:05:67:b4:7c:16:8a:1d:14:aa:55:a3:50:94:2b:
72:64:cc:88:4c:79:66:d2:ae:db:bf:89:f4:21:4d:4c:19:5d:
1a:d4:77:bc:31:b3:d5:f7:8d:42:c1:a4:b1:19:0d:4a:54:05:
a8:49:75:1e:6d:1b:71:8f:6b:4e:51:ec:10:36:1e:84:8c:7c:
88:38:43:13:3c:ef:b7:6c:d8:82:a3:1d:a5:c9:67:39:42:7f:
45:f1:bc:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 10:25:25 2024 by rpki-client on console-fra.rpki-client.org