Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
File: NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft (raw, json)
Hash identifier: 8ejF0iFcVuVwlSQUcUFJ81/z8BNghIAmZ4HA4NVq3Fc=
Subject key identifier: C6:8F:8F:C3:8A:2B:B6:C3:D1:8E:DA:E6:CB:30:08:2C:B6:5C:5D:F9
Authority key identifier: 34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
Certificate issuer: /CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Certificate serial: 01936BFDB996961B4EAE4805B853E2906260
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
Manifest number: 043D
Signing time: Wed 27 Nov 2024 05:00:10 +0000
Manifest this update: Wed 27 Nov 2024 05:00:10 +0000
Manifest next update: Thu 28 Nov 2024 05:00:10 +0000
Files and hashes: 1: 6uxNuZF_Kn5GRcwS7ZWuHhJIRsc.roa (hash: 3YX10sPRyNLMQPbEY1ExHOi6kiq1GuL0mP8un5F+7c4=)
2: NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl (hash: 5lNQ/OOal59el/Ht27zS+EHO9Rsujffdnsv67sfkyGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6b:fd:b9:96:96:1b:4e:ae:48:05:b8:53:e2:90:62:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Validity
Not Before: Nov 27 05:00:10 2024 GMT
Not After : Nov 28 05:00:10 2024 GMT
Subject: CN=c68f8fc38a2bb6c3d18edae6cb30082cb65c5df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b1:f5:8e:65:3a:a4:69:10:13:3c:bb:fc:d9:
b8:89:0b:47:e9:0f:5c:f1:50:25:7a:02:fc:e8:93:
67:0e:57:7b:5a:43:c2:bf:6c:7a:e8:fc:b3:f1:b6:
c4:9b:30:37:b0:f0:e8:10:15:26:bb:17:ed:48:a8:
4d:b2:3d:7f:40:c5:f7:31:6f:cd:1e:37:d4:14:ce:
91:a4:6c:12:7b:90:a6:6e:ae:05:7d:5d:48:8f:3a:
ce:4b:a7:29:07:38:7f:d5:c4:37:2f:a7:0d:ed:da:
54:d6:b0:aa:a4:55:11:dd:ec:1f:3c:e1:18:10:b3:
72:89:0f:ae:df:29:51:5d:c0:75:3c:fe:fd:6a:91:
05:71:19:fd:9a:57:74:e9:a5:4f:c9:3c:aa:c2:39:
e1:a0:1b:85:e0:5c:5c:82:f8:f1:2a:9c:fb:66:b8:
a2:f4:35:26:ae:f9:d1:f7:23:78:79:d0:da:17:1f:
35:28:2a:65:4a:26:ad:44:e9:48:1c:72:7d:4b:69:
23:61:38:43:3c:f2:8f:a9:f8:e3:b9:e1:16:a4:94:
be:3f:41:c8:fc:ab:4a:b7:15:42:db:4b:40:5c:af:
2f:23:4c:a3:8d:9e:4b:fa:d3:37:e7:65:06:5f:6a:
5e:f1:0e:df:6d:6c:1f:69:ed:21:b7:24:76:f3:39:
a8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:8F:8F:C3:8A:2B:B6:C3:D1:8E:DA:E6:CB:30:08:2C:B6:5C:5D:F9
X509v3 Authority Key Identifier:
keyid:34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:16:3f:78:bf:85:6c:3c:45:30:67:8a:f3:0b:2a:1d:5c:7a:
12:38:30:5b:b3:46:b0:a6:bf:38:4e:42:b4:04:da:82:66:21:
4e:e0:42:ba:fa:08:65:6c:1d:7d:c7:09:f1:a5:ce:ba:36:50:
01:3b:4e:86:f8:da:b4:98:8c:85:f1:07:83:1c:b0:5b:2c:11:
9c:b4:ab:92:b3:8a:e6:4b:2f:58:8b:aa:5c:df:da:ae:a0:64:
4a:55:7b:52:7c:e8:c4:4d:12:52:54:1d:b2:41:a4:d4:3e:ef:
c8:c1:32:38:30:ac:57:34:c9:bf:cd:aa:6d:8c:0b:ac:da:75:
17:49:9a:67:22:14:96:14:5f:59:11:13:2b:c6:31:d3:b6:6e:
0a:e0:ff:4f:21:b8:14:c6:b7:d8:ae:23:55:f0:75:f4:e5:6c:
e3:58:cd:cb:f5:48:be:b6:94:7c:38:9e:bf:04:b0:d4:da:75:
ab:b4:0d:c0:82:b7:b4:ab:e7:02:6a:83:13:ff:3a:e8:44:4e:
d0:04:c5:b1:ec:c5:a1:87:0f:65:03:51:3f:18:fb:dd:54:b5:
10:3a:01:20:10:f5:60:ab:67:32:3a:9b:81:35:bd:c6:02:9e:
67:aa:e6:bb:c6:b9:6b:96:b6:4a:34:b2:35:32:17:9c:ed:b1:
e8:50:3b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 13:39:00 2024 by rpki-client on console-ams.rpki-client.org