Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
File: NHjAigY6wtNKGxkeJDY4m77tXpc.mft (raw, json)
Hash identifier: 3UPTqyOkUExuGR7iUKxNAzft65bQf1TGhH1YMpsStlo=
Subject key identifier: A0:CA:C7:76:90:23:A0:B9:48:52:0A:34:45:1F:9B:0A:13:D8:B4:D1
Authority key identifier: 34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
Certificate issuer: /CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Certificate serial: 019357648B0A4E8137B8F985312F8ED86223
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
Manifest number: 09B0
Signing time: Sat 23 Nov 2024 05:00:27 +0000
Manifest this update: Sat 23 Nov 2024 05:00:27 +0000
Manifest next update: Sun 24 Nov 2024 05:00:27 +0000
Files and hashes: 1: NHjAigY6wtNKGxkeJDY4m77tXpc.crl (hash: q9Z9aWga6dYsqk9yGM/enlt93JwzHVPBbqgoFLLbAiI=)
2: QWu9YjLw0m9DLTQUlX-YTt0MAuA.roa (hash: OZP+7vxB3aOEQcivEDGGtKjefV1LOhDZVW1KpF9j2Oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:8b:0a:4e:81:37:b8:f9:85:31:2f:8e:d8:62:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Validity
Not Before: Nov 23 05:00:27 2024 GMT
Not After : Nov 24 05:00:27 2024 GMT
Subject: CN=a0cac7769023a0b948520a34451f9b0a13d8b4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d1:a9:ca:0a:da:41:a6:19:0e:3d:21:3b:d1:
cc:cc:45:b8:b5:1c:d4:f5:26:69:9f:15:1a:2b:1a:
5c:76:3f:b2:d4:ab:c7:af:0b:48:16:d5:b4:7a:ef:
ac:a7:80:a2:4f:70:95:ce:14:0e:62:9c:fe:67:f9:
a2:cf:a9:5b:b0:60:e3:97:ab:68:0f:86:7b:ff:fb:
b0:26:2b:a9:10:1f:97:d0:6b:d0:43:72:b1:56:c5:
f9:65:5a:8c:f2:f3:3f:57:aa:5b:f4:7e:87:9e:9b:
4a:e4:b5:1b:c2:dd:c4:43:e6:3d:8b:31:c3:26:10:
ce:1c:75:b5:9d:e2:ea:d3:80:7d:3d:08:ba:90:70:
57:31:5d:ca:ad:40:b5:61:b5:dd:fd:c1:86:b5:a1:
68:a1:06:6e:ee:49:9c:3e:0c:09:84:0b:31:d3:b2:
d7:4e:1c:7d:ab:16:03:e7:b1:97:30:a7:4c:98:81:
a5:9a:7a:1a:79:de:07:cd:af:b2:4f:2e:18:ec:49:
26:ac:1c:aa:27:ff:47:e8:a5:60:5a:eb:7c:aa:5f:
60:bc:86:29:c2:ab:b4:4c:e7:81:7b:11:77:fa:ea:
27:a6:3a:d3:3a:27:e0:15:74:2f:8c:ba:b5:d7:06:
53:bf:35:e6:03:2d:e5:72:ce:d5:df:ce:5e:9a:28:
9c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CA:C7:76:90:23:A0:B9:48:52:0A:34:45:1F:9B:0A:13:D8:B4:D1
X509v3 Authority Key Identifier:
keyid:34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:7f:d1:fd:88:88:a3:be:ae:80:f2:04:c1:35:94:0a:0e:d5:
70:d1:f5:6c:ac:7a:b7:78:5c:12:72:b5:da:8d:01:60:71:d7:
bd:88:db:f0:b4:e0:06:b7:e7:d9:a9:87:fa:3b:a5:c0:67:11:
0e:d0:38:70:03:82:00:94:59:87:0c:0e:a0:f7:5e:2b:23:af:
16:36:91:d4:65:45:af:49:2e:11:dc:b2:c9:ce:84:9c:de:21:
c3:f0:31:7e:39:55:8d:6a:d7:c3:53:91:3e:87:95:44:ca:a6:
2b:9c:2c:ec:7c:58:cc:bc:b1:ea:42:4e:9a:6c:0a:46:12:4d:
cd:a9:85:08:d8:10:e0:55:e5:42:7e:83:84:10:cd:92:b3:74:
a0:aa:16:9c:85:92:6f:a0:d4:28:96:c4:76:a4:4e:c6:3f:78:
2e:a9:dd:17:7a:98:94:bd:9e:2b:d0:19:5a:a3:2d:d4:ca:c9:
89:b6:82:da:c7:48:15:eb:04:da:22:50:ec:a4:6d:95:fe:f1:
d5:2f:9b:2c:c1:8c:ec:0f:4c:24:ef:d3:ce:72:32:de:13:25:
28:ce:04:54:e1:e3:22:9f:0e:13:ec:9f:b6:8c:71:cc:81:c0:
08:f5:5a:7c:78:ad:90:84:a2:03:06:dc:12:31:94:20:c3:73:
38:55:6b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:07 2024 by rpki-client on console-ams.rpki-client.org