Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
File: NHjAigY6wtNKGxkeJDY4m77tXpc.mft (raw, json)
Hash identifier: QLMDTxKWsQfBaEScD7N1JrDCsdkgb8g16wRBiFGsBGE=
Subject key identifier: 43:F0:4A:85:18:87:1D:E1:61:69:F5:C4:DA:2C:DD:94:48:03:15:7C
Authority key identifier: 34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
Certificate issuer: /CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Certificate serial: 018F882406ADF659D5689F71C0E8E5177BF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
Manifest number: 07B7
Signing time: Fri 17 May 2024 20:00:13 +0000
Manifest this update: Fri 17 May 2024 20:00:13 +0000
Manifest next update: Sat 18 May 2024 20:00:13 +0000
Files and hashes: 1: NHjAigY6wtNKGxkeJDY4m77tXpc.crl (hash: EaTQkHs9g0hfDAOvXiTuFZLDmFlbBVlHQHVWAEEF+co=)
2: QWu9YjLw0m9DLTQUlX-YTt0MAuA.roa (hash: OZP+7vxB3aOEQcivEDGGtKjefV1LOhDZVW1KpF9j2Oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:06:ad:f6:59:d5:68:9f:71:c0:e8:e5:17:7b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Validity
Not Before: May 17 20:00:13 2024 GMT
Not After : May 18 20:00:13 2024 GMT
Subject: CN=43f04a8518871de16169f5c4da2cdd944803157c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9f:bd:7f:93:7f:f8:33:7b:0c:a7:d0:08:0f:
23:5a:30:9c:2f:90:15:5b:de:bf:30:67:35:db:8b:
a2:58:6b:e5:c7:cc:84:3d:7b:11:6e:93:7c:ac:bb:
7b:98:81:9c:a6:4f:46:2f:03:47:7b:a8:76:50:d4:
8f:57:08:d8:0c:bf:62:29:8c:92:68:fe:af:66:37:
96:6f:2d:e0:ff:45:b4:3e:9f:88:3f:90:8a:52:6e:
95:a7:2d:1b:aa:94:2d:94:d0:11:72:a1:32:9f:80:
11:c6:90:b6:c4:5e:52:be:9f:8b:1b:f6:98:8e:11:
23:0a:2f:04:15:3f:3e:c2:61:63:84:02:62:9e:a8:
84:99:95:eb:f2:f1:fb:6c:b5:0f:66:10:07:a6:9e:
e9:d8:20:ed:93:21:46:99:c4:a7:fb:02:96:f3:23:
89:c3:0c:04:24:85:e5:d5:4b:6e:7f:4f:7d:5d:b1:
39:38:38:e5:8a:80:a5:c0:49:1a:1d:c5:f7:7b:00:
95:58:0a:0c:68:d6:92:1a:25:d5:0f:c4:ad:58:8a:
25:f6:43:a5:e8:85:4b:7f:96:51:45:31:9e:d8:1e:
d6:f9:12:f6:6b:6e:14:a4:de:a7:b7:4a:66:64:a3:
cc:37:d3:e4:0d:58:61:5b:1f:b4:24:dc:40:99:e5:
4b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F0:4A:85:18:87:1D:E1:61:69:F5:C4:DA:2C:DD:94:48:03:15:7C
X509v3 Authority Key Identifier:
keyid:34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:a6:e5:f9:44:16:8e:40:22:bd:3e:4a:19:d1:43:b3:4d:bc:
2d:97:42:3f:f9:97:99:68:71:c9:05:9e:09:3e:d5:9a:c8:95:
fd:8c:01:ee:ab:97:fa:b4:92:f5:18:dd:b8:6b:5d:5f:4a:1d:
16:b3:d4:b7:8b:2b:52:38:49:f2:c9:c0:61:28:db:b9:91:67:
eb:37:0b:2a:80:07:8e:1d:bf:80:ee:a7:4d:4f:77:87:ba:dd:
08:24:c5:4c:3f:ba:ed:e3:53:c3:76:43:8a:67:fa:1a:cf:ef:
01:cc:6e:d7:f4:b4:f3:69:eb:fb:3c:20:17:6a:87:9e:4e:37:
1d:e9:69:02:fe:22:19:6d:5a:cf:2c:82:02:3f:1a:3d:7f:39:
8c:61:ae:fb:8f:23:98:21:01:61:6f:27:81:e7:1a:1c:5f:be:
f8:74:33:76:5a:24:4b:e0:af:87:86:89:04:0a:01:82:97:8b:
62:7a:96:31:67:ea:18:21:31:2f:81:7c:21:aa:f6:de:a9:b9:
16:6a:db:64:c9:b2:2a:ee:25:5a:c4:a5:3d:7a:50:eb:f8:fc:
5d:4b:a7:f0:b2:fb:d2:31:18:de:5a:ac:5a:e9:30:cc:32:d3:
45:b8:df:4c:4e:85:41:c1:8d:62:ab:be:fe:c1:88:6a:a8:85:
23:12:c0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:38:16 2024 by rpki-client on console-fra.rpki-client.org