Manifest
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
File: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft (raw, json)
Hash identifier: dSHBWErcdoOgKZMtdjaNcFZMBg1CFro/Ftffo4iZOWQ=
Subject key identifier: BD:48:EA:D9:48:32:9D:C7:26:5B:95:EF:86:DE:B2:AC:ED:2C:E3:AB
Authority key identifier: B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
Certificate issuer: /CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Certificate serial: 3843CF061A64B52ACAA0B01D5CFB02E5C51D2C28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject info access: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
Manifest number: 37
Signing time: Sun 02 Feb 2025 00:07:48 +0000
Manifest this update: Sun 02 Feb 2025 00:02:48 +0000
Manifest next update: Mon 03 Feb 2025 00:23:48 +0000
Files and hashes: 1: B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl (hash: T8xToEfq125Y0Q/DzUespzCfJBZ8mEj9aABkTw/UE1E=)
2: 323030313a3637633a6438303a3a2f34382d3438203d3e20343031353531.roa (hash: mqadfIJnOHBwBW3bzOjsszkG4yNmowPDrD6AKDG5B1Q=)
Validation: OK
Signature path: rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:43:cf:06:1a:64:b5:2a:ca:a0:b0:1d:5c:fb:02:e5:c5:1d:2c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60561dffbfde255fec14d4d9f0e13f4375352e4
Validity
Not Before: Feb 2 00:02:48 2025 GMT
Not After : Feb 3 00:23:48 2025 GMT
Subject: CN=BD48EAD948329DC7265B95EF86DEB2ACED2CE3AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ee:ff:cd:61:ce:b8:23:c8:56:4e:d2:ae:c7:
f6:70:33:6b:e4:85:3b:f2:f6:aa:5b:06:95:1a:1d:
98:58:a3:6e:3d:2d:e7:4b:15:2c:2f:38:ee:7c:b8:
66:ed:42:b2:c4:96:5f:95:2c:d1:fa:96:b4:fb:a9:
66:ff:41:ca:f0:9c:04:ff:7f:30:c5:c9:ab:24:1b:
93:47:cb:97:d6:63:b4:d4:d6:c6:5e:e3:2f:6d:2f:
78:60:03:3e:2c:93:e4:36:a7:5e:d3:8d:59:40:67:
b2:4b:57:51:f1:93:1e:bb:60:7a:81:ee:e4:b7:89:
a8:21:7c:26:4e:7e:76:d9:0c:c3:3c:0f:57:09:0b:
2a:59:a6:cf:9a:89:30:df:d9:8a:a1:0e:24:fc:16:
72:6e:80:74:8f:ac:65:a9:e3:79:84:3d:e0:ee:40:
b0:52:94:f7:8e:74:1f:1b:50:d6:be:dc:7f:d9:b7:
6c:74:8a:d5:14:f5:7c:80:5f:30:6d:84:90:2c:1d:
d8:28:3e:a7:cd:ca:1f:c0:1f:17:2b:72:0e:78:80:
af:36:d2:f9:89:cb:d5:2f:fd:3f:ac:51:e4:f2:7c:
3c:da:7c:6e:94:d3:52:eb:eb:f2:0b:97:ad:19:4c:
16:e6:c7:bc:86:8f:2d:d1:1b:1e:3a:ec:7e:2f:9e:
c8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:48:EA:D9:48:32:9D:C7:26:5B:95:EF:86:DE:B2:AC:ED:2C:E3:AB
X509v3 Authority Key Identifier:
keyid:B6:05:61:DF:FB:FD:E2:55:FE:C1:4D:4D:9F:0E:13:F4:37:53:52:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgVh3_v94lX-wU1Nnw4T9DdTUuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/0/B60561DFFBFDE255FEC14D4D9F0E13F4375352E4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:42:37:8c:85:51:8a:f3:07:c3:b1:75:de:c5:fb:4b:50:d2:
99:8e:0f:ad:35:35:24:24:54:2d:81:27:98:10:d4:a2:a5:b9:
eb:33:9c:34:c0:5a:ec:b0:59:56:66:89:4b:d2:2a:2a:f2:1e:
84:c8:04:d2:78:01:e1:0e:27:25:96:2d:10:7a:08:09:17:ef:
7e:04:6a:2c:d0:dd:93:2f:b9:00:dd:36:09:86:37:71:86:1e:
b1:db:af:cc:7e:05:77:07:b2:7f:2e:12:c5:5c:07:21:e4:62:
bc:2f:a0:96:8a:62:de:8c:3e:25:ec:f2:25:e2:9c:33:47:00:
0f:38:68:ef:e1:87:c1:6c:39:fe:71:eb:7b:ec:7d:85:f4:e0:
c8:df:73:88:32:0c:2b:c5:82:53:a4:86:08:e3:c6:49:9d:b0:
75:27:22:3b:e0:f8:c7:d2:1a:1f:d8:93:4d:4e:41:85:f0:f5:
5e:53:9e:e3:08:e9:b4:43:f1:04:66:cc:8a:2f:83:c1:54:85:
ba:23:df:07:d4:66:b0:47:85:bb:fd:b7:c9:76:91:c2:23:c9:
79:67:60:95:9d:a9:c3:00:c1:15:8c:e6:85:bf:53:cf:4a:f7:
e5:84:c6:bf:97:c0:39:8f:91:8e:fc:9f:10:41:8c:88:17:26:
7f:65:38:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:16 2025 by rpki-client