Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft
File: NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft (raw, json)
Hash identifier: kH+O/tT0eLWhr5WN6d4x8La0+nWZYoN6a4PBSO9i2gU=
Subject key identifier: 51:9A:86:79:B0:7A:4F:46:3D:82:BF:97:6C:42:9E:2B:06:24:C0:7A
Authority key identifier: 35:A2:B4:5F:BE:D1:9B:37:8A:30:38:FE:21:AD:FF:AB:68:D7:50:C7
Certificate issuer: /CN=35a2b45fbed19b378a3038fe21adffab68d750c7
Certificate serial: 018F9429041864CA9C99D1462D7947B4F758
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NaK0X77RmzeKMDj-Ia3_q2jXUMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft
Manifest number: 023F
Signing time: Mon 20 May 2024 04:01:06 +0000
Manifest this update: Mon 20 May 2024 04:01:06 +0000
Manifest next update: Tue 21 May 2024 04:01:06 +0000
Files and hashes: 1: J60oSRVmRPDVtQbnLo9G9Y_PR10.roa (hash: +k7lTXXlz0vB92RaxqBvHBsAWUed0YiLY7VnChNn5ZA=)
2: NaK0X77RmzeKMDj-Ia3_q2jXUMc.crl (hash: vlnemYGTxOnAm73jz+ZFuPJtDnc446voCWSKTeX7I3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NaK0X77RmzeKMDj-Ia3_q2jXUMc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 04:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:94:29:04:18:64:ca:9c:99:d1:46:2d:79:47:b4:f7:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35a2b45fbed19b378a3038fe21adffab68d750c7
Validity
Not Before: May 20 04:01:06 2024 GMT
Not After : May 21 04:01:06 2024 GMT
Subject: CN=519a8679b07a4f463d82bf976c429e2b0624c07a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b6:c5:8c:f7:8e:8f:49:d9:d1:fa:68:9a:4f:
eb:88:f1:99:35:ab:9a:ce:c9:83:9d:7d:09:78:2a:
74:e3:e9:05:07:48:5a:66:1f:ab:48:7b:da:b5:91:
eb:51:1e:06:ed:ba:41:07:c8:14:43:30:11:8e:25:
ea:54:60:a3:04:c9:f4:f3:91:fe:f0:e9:c6:97:2a:
71:6e:55:58:97:5a:2c:e4:c0:2a:0a:c8:5e:9b:cd:
9f:59:45:33:bc:41:57:15:b3:5d:98:05:ff:ad:39:
bf:5b:93:4d:bc:56:85:94:9b:f3:00:aa:f5:39:b3:
dd:55:48:bc:16:c4:93:4d:56:65:bc:6d:91:fb:1a:
ee:d3:9b:89:e2:dc:ae:5a:d0:e1:dd:2d:79:04:f2:
59:14:8e:a0:29:cb:c9:3e:e9:99:75:5c:31:05:d9:
ce:86:bb:b8:78:43:71:ae:7e:58:a2:6b:10:9c:a7:
f4:46:53:02:f2:13:1b:90:4c:5a:43:48:28:3c:cf:
b0:bf:48:1a:9c:11:84:3d:ca:e6:ce:22:fa:95:d2:
36:d4:c8:d3:b2:02:bf:17:b4:05:e5:91:bc:52:7c:
17:8e:95:fe:d4:a2:df:75:0b:ec:ac:34:fe:a3:36:
58:53:68:ef:92:a7:7d:a9:1d:c7:db:20:8f:9a:05:
1d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9A:86:79:B0:7A:4F:46:3D:82:BF:97:6C:42:9E:2B:06:24:C0:7A
X509v3 Authority Key Identifier:
keyid:35:A2:B4:5F:BE:D1:9B:37:8A:30:38:FE:21:AD:FF:AB:68:D7:50:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NaK0X77RmzeKMDj-Ia3_q2jXUMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:45:24:8f:ad:58:ac:39:23:0e:fe:d1:be:0a:89:f9:17:73:
98:f9:0a:1e:85:7b:a7:d4:a4:9e:0e:25:36:9a:f0:6f:dc:e5:
0c:ce:ad:f6:a9:0b:aa:ec:aa:7c:11:b0:d4:d0:ae:2c:25:c3:
f6:9c:1b:fa:df:72:91:4d:d5:41:95:94:56:ef:79:da:58:0d:
6a:5f:5f:7b:09:4e:ac:68:8d:08:d5:e6:85:21:c0:c2:55:bd:
c2:4e:83:ef:f4:f0:d1:31:84:82:23:57:35:8c:31:63:ea:81:
ce:d8:18:b4:47:a8:27:6f:3c:bf:34:26:ee:1c:f2:49:8b:33:
19:d9:a8:52:91:70:37:86:fd:c2:ab:f3:a8:ca:67:e9:0e:ee:
b6:57:57:61:ee:be:5e:9a:78:60:04:31:38:90:5b:fb:1a:e4:
8c:a9:44:12:39:31:f5:46:58:ee:09:15:fa:45:0d:6d:4f:6f:
f9:89:3a:79:2b:87:4b:a6:41:5c:77:35:bd:8b:dd:39:89:29:
bb:23:f3:21:e1:aa:2f:c7:3f:23:f8:a5:0a:a2:9f:36:70:47:
67:95:31:3f:af:7d:4e:0e:54:f5:88:c8:a9:ba:77:9f:2d:26:
86:8a:e4:e8:c3:96:0f:0b:af:e3:f3:0b:6d:f2:43:ee:6d:fd:
1b:c6:fe:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 13:11:43 2024 by rpki-client on console-fra.rpki-client.org