Manifest
$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft
File: 4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft (raw, json)
Hash identifier: adT3qhpMeI8DpL0IJ6oDB0ygGaW/tLrkD+iKAXi3HTU=
Subject key identifier: B8:F9:7F:B1:18:FB:58:71:68:96:56:62:29:D9:43:D6:F6:57:30:85
Authority key identifier: 4E:9A:6C:18:F3:49:B3:95:C3:1C:33:BB:7F:9B:9F:58:17:BD:E9:A8
Certificate issuer: /CN=4e9a6c18f349b395c31c33bb7f9b9f5817bde9a8
Certificate serial: 214404410221A34C4BF2F322E62CE45E19418220
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer
Subject info access: rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft
Manifest number: 32
Signing time: Sat 01 Feb 2025 18:57:43 +0000
Manifest this update: Sat 01 Feb 2025 18:52:43 +0000
Manifest next update: Sun 02 Feb 2025 22:02:43 +0000
Files and hashes: 1: 3138352e3230342e31342e302f32332d3233203d3e20323033393339.roa (hash: 0iU1VE4oIBeR0g+kEvaxFQYjnK8h1fW0reMHFIiSAYk=)
2: 323030313a3637383a3565343a3a2f34382d3438203d3e203631393631.roa (hash: 9lXsRq2vH27QU6oONZHHcOI2KgKrR7I1qDb4jmPN0NI=)
3: 4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl (hash: EKY1g0pBUuMf6Nl8WLI0K5yEgg6h/JUwmIqxpaZ0iRU=)
4: 3138352e3230342e31322e302f32332d3233203d3e203631393631.roa (hash: 05KBv20ho05+9nNhARljl3KvN1w1xbUcP6YBmhidjZI=)
5: 326130613a663034303a3a2f32392d3239203d3e203631393631.roa (hash: n9oD82N/Oc74KjefJWuXbdniXyTRuYdzVFV6P1uLFxM=)
Validation: OK
Signature path: rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl
rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:44:04:41:02:21:a3:4c:4b:f2:f3:22:e6:2c:e4:5e:19:41:82:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9a6c18f349b395c31c33bb7f9b9f5817bde9a8
Validity
Not Before: Feb 1 18:52:43 2025 GMT
Not After : Feb 2 22:02:43 2025 GMT
Subject: CN=B8F97FB118FB58716896566229D943D6F6573085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:87:2c:ac:56:6b:64:9f:b7:18:8f:78:c4:48:
17:50:ef:85:47:23:4f:7b:13:e7:0b:da:d3:f9:86:
8c:5a:96:ac:c9:ef:b5:29:d4:fe:49:4a:d1:92:f0:
2e:73:c7:09:fa:69:bf:60:b9:0a:c6:4a:21:b2:0a:
eb:b2:58:a8:63:b5:6b:33:c0:c9:6f:fd:f9:aa:cc:
12:c4:10:5d:7d:65:ed:62:e5:32:f9:f0:0f:59:80:
1a:63:98:6e:9d:64:79:d0:53:55:b3:15:60:89:a0:
fa:98:4a:9f:fd:84:c6:2c:21:ea:68:85:f6:9f:7d:
25:a3:2c:12:f3:ab:c4:49:c7:f6:23:b9:a9:59:11:
bb:d6:70:34:3d:c1:d6:b8:c5:00:dd:a6:dd:d7:50:
bc:19:ca:3a:a1:cc:52:73:f7:ae:cd:b0:b8:29:59:
ed:33:1a:1d:97:6a:23:31:0b:d2:3a:9c:61:e7:ed:
3b:f1:03:0f:48:4d:36:8b:6e:24:fb:45:57:94:da:
30:ed:b6:54:72:45:3c:dc:76:13:5a:1a:f1:51:ed:
e1:4b:5b:f6:ef:95:0d:20:2c:ad:a8:12:81:1d:a8:
78:44:c9:57:58:47:9c:28:bf:b4:6e:eb:79:29:63:
e1:00:82:9b:a1:f6:55:2b:e8:83:f5:57:4d:cd:09:
e1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F9:7F:B1:18:FB:58:71:68:96:56:62:29:D9:43:D6:F6:57:30:85
X509v3 Authority Key Identifier:
keyid:4E:9A:6C:18:F3:49:B3:95:C3:1C:33:BB:7F:9B:9F:58:17:BD:E9:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TppsGPNJs5XDHDO7f5ufWBe96ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/1/4E9A6C18F349B395C31C33BB7F9B9F5817BDE9A8.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:f5:9c:02:67:99:5a:80:45:3c:2a:80:5b:cc:7d:dd:dc:29:
3f:ad:a3:28:9a:fc:7b:29:72:68:81:fa:02:43:f8:64:8c:e1:
e6:b4:be:aa:7b:e2:0f:ee:ef:58:04:a4:30:e5:92:e5:8e:69:
cf:02:97:04:9d:5a:ec:20:90:f8:b5:73:29:c4:28:85:72:7c:
fd:5a:2a:2f:f6:fa:81:48:33:c6:0b:e8:93:8c:67:9e:d5:1b:
63:12:ff:5a:b9:18:6e:3d:b8:28:72:4f:0b:0b:32:3c:68:2e:
9f:2a:e6:8a:e8:c5:e0:0a:00:89:44:3e:29:70:01:2b:b1:b5:
a7:c6:6c:76:7d:d8:b9:df:c4:19:4f:63:8d:20:11:3e:5e:64:
eb:0a:ff:b8:26:1a:c1:f2:d5:ad:0d:29:b4:a9:c1:8a:4f:89:
8f:62:7c:67:d1:82:95:42:b9:ea:be:45:81:02:e7:14:66:04:
8f:7f:81:77:5f:9b:70:92:27:17:48:29:6d:69:6a:41:55:ca:
5a:c4:26:76:09:ad:ad:63:96:c3:da:73:82:47:1a:19:69:4e:
df:8e:4e:5c:32:fa:fc:68:96:52:bb:29:e2:ce:dc:5f:82:b5:
fc:8e:57:bf:29:d9:a1:2f:b2:6c:c8:66:8d:7d:eb:1d:66:aa:
38:e9:eb:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:30 2025 by rpki-client