Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
File: nlaYDUienFO8gp8-jWPTg_ONDeM.mft (raw, json)
Hash identifier: BJJJ/gLTWSz7D6avAVDtHzsDONuI1FaCqdlsBMorZpw=
Subject key identifier: 9B:6D:FB:CE:27:26:B7:DB:1F:6A:78:BB:13:A6:3A:26:8E:78:CB:57
Authority key identifier: 9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
Certificate issuer: /CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Certificate serial: 018F85C86445C50FE611B15374DA1ACFF712
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
Manifest number: 10D3
Signing time: Fri 17 May 2024 09:00:53 +0000
Manifest this update: Fri 17 May 2024 09:00:53 +0000
Manifest next update: Sat 18 May 2024 09:00:53 +0000
Files and hashes: 1: 2yjASwRdWv1VCVRb2ZrEeiz76FM.roa (hash: MbBRgv7s423RDgckS5r4iSu5vpNT4HssL55gyU8AidY=)
2: nlaYDUienFO8gp8-jWPTg_ONDeM.crl (hash: 2Z7rjvV8kFmYpMEl6OsHAtudcp1DYUGbvlz5/zSh1bU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 09:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:c8:64:45:c5:0f:e6:11:b1:53:74:da:1a:cf:f7:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Validity
Not Before: May 17 09:00:53 2024 GMT
Not After : May 18 09:00:53 2024 GMT
Subject: CN=9b6dfbce2726b7db1f6a78bb13a63a268e78cb57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4b:20:a6:0f:99:2e:ae:fc:d4:e1:ec:01:d9:
a3:10:9e:13:d6:ad:ad:8b:52:e6:5a:f1:f3:ee:44:
56:fd:7b:9d:ed:e0:52:6d:d8:ab:5e:2f:4e:e2:d7:
79:ce:5a:ef:89:65:09:c9:05:09:70:46:85:f9:d7:
ee:b1:93:36:67:cc:df:37:f4:9b:bc:4c:e2:08:bd:
00:18:ad:54:96:fe:31:52:d1:1d:da:5e:70:ed:f2:
a0:8f:bf:c2:8c:5f:02:52:ad:77:86:52:8d:94:3d:
d1:63:f9:cb:f5:3c:11:b7:4c:92:b4:3b:0f:dd:7d:
a9:d1:f9:07:18:0d:db:38:0b:0d:47:de:8c:32:8c:
69:a0:81:42:c5:63:2d:d2:fa:d3:b4:98:b2:36:b0:
36:a4:bb:24:1f:22:8e:d0:6b:77:7b:41:8d:62:0e:
c5:93:01:2b:9c:fa:58:cd:f3:a4:f3:99:4f:c9:ac:
16:30:c8:66:34:22:d2:be:75:a4:23:5b:f6:4e:0e:
25:b4:0c:90:45:27:ac:c7:c1:60:18:d2:90:87:e2:
18:5f:c4:11:39:48:fc:c1:f4:1b:5f:45:6c:a9:1b:
f3:08:06:c5:8c:10:e2:3e:a0:65:5d:ec:b0:42:85:
e6:92:17:ac:5c:a7:d5:9d:93:49:36:d3:61:f9:a7:
33:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:6D:FB:CE:27:26:B7:DB:1F:6A:78:BB:13:A6:3A:26:8E:78:CB:57
X509v3 Authority Key Identifier:
keyid:9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:c1:33:1d:4c:10:50:1f:09:cd:d3:6e:4c:5a:9e:72:3b:c2:
05:94:51:9c:45:b7:b7:af:a8:c6:91:6b:25:1b:d8:80:32:e9:
7b:bc:f4:ab:6e:f2:29:d8:c4:f7:ca:61:c8:38:39:96:27:2f:
2a:87:b3:0b:a2:cf:3a:70:0d:40:c2:a8:d2:de:f3:8c:37:4f:
32:79:9f:d5:06:e5:3e:32:04:55:7a:4e:b6:0e:82:58:5a:82:
60:1e:e4:43:75:08:dd:72:a2:78:7d:3b:2d:41:51:c4:9e:98:
de:16:67:3d:bd:02:6e:55:28:d0:69:cf:39:e0:8e:33:b7:f1:
5a:4e:db:7f:22:25:27:e7:a4:8d:1b:ef:e4:f9:82:08:12:a5:
2e:b5:0a:de:f6:9e:85:41:e0:1f:b5:a2:de:c3:c8:b7:ff:6f:
5f:3a:42:4e:f8:34:31:6d:f6:2d:54:5c:3f:90:0a:12:25:63:
fb:13:96:5d:c1:bd:27:4f:49:96:62:df:61:c6:43:c3:42:1a:
9a:dc:b9:fe:9d:f5:a2:ff:5e:63:7d:8c:c5:2b:be:ec:0f:42:
48:e9:be:5f:73:e5:03:72:6d:08:40:79:48:6d:d2:82:30:b4:
ca:cc:2a:4e:35:b0:5a:a7:15:b8:65:0c:81:61:b1:6e:d2:ff:
c6:d6:aa:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:21:02 2024 by rpki-client on console-fra.rpki-client.org