Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json)
Hash identifier: JXvThK2LbHuh1M++wnSye5XMJHz1hnyY4jJadJhfOVE=
Subject key identifier: CC:54:B0:E0:7F:7F:5C:14:00:6B:C1:B9:1A:09:A9:0F:3B:79:17:21
Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Certificate serial: 01936AB478B4B2F35FD1E51B022AECB1A513
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
Manifest number: 08A3
Signing time: Tue 26 Nov 2024 23:00:32 +0000
Manifest this update: Tue 26 Nov 2024 23:00:32 +0000
Manifest next update: Wed 27 Nov 2024 23:00:32 +0000
Files and hashes: 1: AZAc_CWYyfIoiCQK-vn1kCKT_H4.roa (hash: pJoe9m8eWrxRKfrUCRzSBy9euJ9rZkbKPudscZm1Zn0=)
2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: FkDS0QxGGBVMeue/RQSYHaryj+yetncv0qiTQo8tEcY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:78:b4:b2:f3:5f:d1:e5:1b:02:2a:ec:b1:a5:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Validity
Not Before: Nov 26 23:00:32 2024 GMT
Not After : Nov 27 23:00:32 2024 GMT
Subject: CN=cc54b0e07f7f5c14006bc1b91a09a90f3b791721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:f5:c4:d0:b4:27:db:2c:27:cf:8b:e4:df:
cb:3a:01:1f:30:ea:5d:29:96:88:00:a0:8b:53:22:
e5:87:5a:d4:6c:bc:f4:16:13:b0:30:03:7a:b6:76:
1b:bf:0b:a7:24:31:36:8d:61:1e:54:0d:0a:24:49:
8a:71:27:a7:8a:2d:af:f5:e4:0c:6a:a1:1d:1b:a6:
8e:f6:af:5e:88:ff:d9:c6:4e:6a:90:cf:07:78:c4:
26:9a:f8:12:2c:4c:91:2d:ff:86:a8:8e:2b:0d:9a:
25:0f:e3:ac:22:e2:1d:ea:cf:3e:df:c9:9b:41:e1:
b2:3a:b3:85:7f:5b:e6:2b:ca:ba:b1:b4:51:cb:d9:
6a:89:fa:09:86:9a:ac:69:85:6f:72:a1:9d:44:e1:
bc:fc:5f:55:f1:68:d8:fa:45:be:c9:1b:64:1c:15:
d8:dd:dc:20:8f:49:85:61:9e:a7:7b:bb:f8:a6:99:
dd:18:f0:74:da:b1:18:07:ef:c5:94:3c:33:7d:80:
7d:11:71:58:18:b9:cf:60:25:ce:b4:22:dd:a0:c7:
b9:b3:ca:3f:8d:44:dc:29:9d:8d:1d:44:59:90:cb:
76:9a:83:1b:0f:c8:1f:c9:6b:6b:9d:35:b4:3f:95:
da:be:ad:bc:2a:0b:72:10:a9:04:66:63:90:87:83:
92:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:54:B0:E0:7F:7F:5C:14:00:6B:C1:B9:1A:09:A9:0F:3B:79:17:21
X509v3 Authority Key Identifier:
keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:35:4d:65:1c:d4:0d:e5:50:8c:0f:62:ee:da:c6:89:d3:22:
5f:31:44:2c:77:e3:a5:da:90:cd:15:f1:28:30:ef:a0:ed:08:
95:fc:47:45:af:85:e9:97:a0:85:eb:30:78:1e:b0:93:17:63:
58:f2:b2:20:90:b1:4f:d9:4c:ff:e7:60:3b:21:f3:2a:a2:a6:
33:99:9b:0c:ad:b3:7a:e9:96:75:85:f3:e5:81:f5:6d:64:55:
d6:e4:e7:32:38:2f:03:7b:3f:c4:d2:e4:2a:73:48:0e:6b:52:
1b:43:49:00:a1:33:7d:c2:5e:53:01:8b:ad:3d:48:ff:ce:0e:
28:88:98:df:aa:20:27:38:0c:6a:75:8f:51:2d:74:ed:2d:db:
6d:53:b5:d9:c6:ec:c4:db:43:0d:ea:c8:32:65:ad:57:4f:45:
88:e9:33:09:07:08:82:b3:65:02:8b:41:95:b9:f1:f2:35:ac:
3a:6f:b0:4e:01:14:9d:4d:1f:54:83:7c:07:b8:f0:48:02:38:
9d:01:ab:4a:79:14:f1:d2:7e:58:14:82:27:29:17:20:2d:e3:
a7:26:95:82:46:e1:ad:f4:cf:c2:21:12:fd:19:65:98:00:ff:
88:94:43:3a:a7:51:67:10:35:43:9a:7d:62:4b:ee:51:e9:fb:
41:b6:7c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:39:03 2024 by rpki-client on console-fra.rpki-client.org