Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
File: NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft (raw, json)
Hash identifier: Q2tZkVGARpWpDRjaxUMD/USTM7h6w/dsh6KT9l2Hg0g=
Subject key identifier: 16:C1:4F:4A:BC:95:5D:14:D3:E3:D5:16:90:EA:CE:B2:31:DE:53:52
Authority key identifier: 34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
Certificate issuer: /CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Certificate serial: 018F86DA67353E8B9912E1368E9F296AB531
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
Manifest number: 0237
Signing time: Fri 17 May 2024 14:00:11 +0000
Manifest this update: Fri 17 May 2024 14:00:11 +0000
Manifest next update: Sat 18 May 2024 14:00:11 +0000
Files and hashes: 1: 4CyvX5Wm508_wIOKKa8rmnZjqdo.roa (hash: fmwZY9ws1zlOlK0MP9MRyBNJJLvJFvOD/4xosYORdLY=)
2: FgQR3Lcg7M6wnCnosol9jGs5BiI.roa (hash: SAIyB55XNVs+kJEb7YQrD6KOs9+bFaFlEkWrDHT4xjU=)
3: NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl (hash: pCkZ2zESNzbjHRaUrvR2Ak/k95PT3e/Qf3P8kZEK1X0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 14:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:da:67:35:3e:8b:99:12:e1:36:8e:9f:29:6a:b5:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Validity
Not Before: May 17 14:00:11 2024 GMT
Not After : May 18 14:00:11 2024 GMT
Subject: CN=16c14f4abc955d14d3e3d51690eaceb231de5352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3e:4d:87:04:92:10:d5:aa:ca:82:ce:5c:b6:
45:ed:5d:3b:f0:b0:2b:8b:08:80:9a:44:da:ba:d1:
49:10:8d:43:09:6c:40:91:15:47:76:92:e5:4a:25:
a2:a5:01:14:e7:31:d3:cf:60:a6:c4:07:ab:ca:8c:
cf:61:9b:3c:5c:c3:17:19:c8:17:9e:1c:73:ce:d5:
27:8c:3c:74:44:a7:56:87:95:46:6b:cb:f6:5f:97:
cb:9a:7f:f2:6e:e1:41:0f:92:ed:76:c2:3d:3a:07:
3d:98:85:a7:7d:1f:9b:84:34:82:25:93:d3:9b:57:
da:69:5b:15:91:1b:85:60:05:82:01:6c:b8:b0:ee:
12:25:ef:6e:63:7d:09:6b:0f:e8:1b:42:0c:5c:78:
d2:c7:0b:57:c1:94:e0:b8:08:38:62:04:db:60:40:
34:1e:57:0f:7d:11:48:96:65:8f:c6:2f:2d:65:54:
55:11:22:2a:18:04:9c:df:d3:70:c9:e6:72:ae:47:
f9:72:68:be:f3:6c:3d:cd:29:c7:11:e3:72:78:3c:
b0:08:ee:a4:88:d3:4f:89:cf:8d:7c:48:8c:99:bf:
d3:6d:e4:f2:93:f5:91:4b:de:ee:58:92:a0:fe:55:
b0:28:2e:2d:66:2c:d3:4a:9a:20:1b:14:24:86:d7:
3a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C1:4F:4A:BC:95:5D:14:D3:E3:D5:16:90:EA:CE:B2:31:DE:53:52
X509v3 Authority Key Identifier:
keyid:34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:f0:5a:6f:9c:8c:55:d7:a6:32:dc:a1:24:12:ac:e4:c0:22:
e4:b6:7b:35:f8:2f:67:fe:7c:65:26:b4:20:65:0e:29:4d:0d:
53:d1:a6:77:92:fe:3b:a3:85:8e:d2:f2:a2:22:ec:32:5e:73:
52:96:e4:38:bb:5a:ac:6f:ba:78:23:3c:48:c1:47:92:74:84:
8d:97:cf:75:74:4c:59:b8:75:24:6a:db:53:87:1c:00:8a:5a:
b2:76:d2:42:a1:dc:81:33:ae:ed:cc:89:88:fe:60:82:7b:c1:
5e:c3:52:35:c0:97:d5:75:d9:7c:91:31:ca:22:ee:85:de:b1:
e1:42:84:00:9d:62:a5:57:86:62:59:0a:a5:9d:fd:f5:f9:ef:
6b:dd:c8:f2:b2:6d:2a:78:7c:d4:98:26:4a:5c:7f:80:79:6e:
cd:ba:14:78:1b:b7:ee:ab:63:b9:31:77:8a:7b:55:0b:74:97:
ec:aa:32:29:72:0a:57:6c:f4:df:5e:76:32:ba:53:fd:41:b0:
5d:0c:be:80:ca:7f:e5:55:47:30:21:3a:aa:5c:96:1b:5f:fb:
7b:30:c7:68:5a:ca:cd:01:ed:00:7c:4f:0d:bd:0d:54:87:7c:
4c:47:eb:6e:d4:e3:59:cc:ea:bb:01:5e:52:57:a9:ab:dd:ca:
01:06:1f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:22:05 2024 by rpki-client on console-fra.rpki-client.org