Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
File: noBwLuah3L864lehmUFfWbgzjqQ.mft (raw, json)
Hash identifier: VUlfwERYiZD4qwlqML3hO2EEujtk5NsXY9TeMrWnmyk=
Subject key identifier: 70:91:C9:18:EF:93:B6:53:FF:E1:E3:4F:9E:F5:49:B7:8B:61:28:16
Authority key identifier: 9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
Certificate issuer: /CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Certificate serial: 01935688C647600E6F47B49F1523DCB9DDD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
Manifest number: 1371
Signing time: Sat 23 Nov 2024 01:00:24 +0000
Manifest this update: Sat 23 Nov 2024 01:00:24 +0000
Manifest next update: Sun 24 Nov 2024 01:00:24 +0000
Files and hashes: 1: XLUWggG6y5ST84omTAbqN-ueLNE.roa (hash: sFhOJjcwt+0vPQ3YugcOZ7IO+agFqgV/vHf8FXUQuH0=)
2: noBwLuah3L864lehmUFfWbgzjqQ.crl (hash: BdPpSvPVWiL04HbeWxI6ctv56lBahk0KdINpeaZm3GI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:88:c6:47:60:0e:6f:47:b4:9f:15:23:dc:b9:dd:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Validity
Not Before: Nov 23 01:00:24 2024 GMT
Not After : Nov 24 01:00:24 2024 GMT
Subject: CN=7091c918ef93b653ffe1e34f9ef549b78b612816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:8a:30:79:0f:09:be:fd:39:80:1a:d7:89:f2:
58:0a:07:cc:bb:28:f1:58:77:f6:a8:ba:9c:cc:8d:
8d:d6:5f:03:00:a0:07:3f:28:ef:79:91:69:75:ad:
ad:21:61:8f:81:9f:93:be:df:49:b3:44:2b:d3:da:
17:40:ea:36:03:e8:65:dd:98:cb:73:66:ef:75:f2:
4b:d7:3b:3a:62:ff:02:67:61:53:90:96:f1:ba:e9:
f6:e4:b8:88:1f:1f:fd:cc:e1:e8:a9:bc:d5:f8:40:
68:cf:a2:ce:05:8c:52:41:e0:10:93:0e:29:4b:a3:
4e:fd:e9:6e:e3:f8:0d:77:11:a8:f8:b8:ce:86:a5:
fb:82:4c:23:f2:48:43:a7:8b:68:6b:56:5f:81:fc:
2f:81:f9:5a:d5:52:f5:ba:70:5c:b2:64:2e:eb:9e:
7b:ad:e3:e7:0d:d6:a6:8d:d2:44:0d:33:22:60:20:
cc:3e:d7:46:a1:14:f3:6f:7a:f0:0f:76:19:06:b8:
cf:09:fc:2c:d6:f1:6d:a4:f8:da:34:76:08:6c:29:
57:ef:27:ab:fe:2a:ac:57:56:e5:01:a6:28:bc:0c:
c0:80:30:cf:02:08:d9:9b:55:31:bf:cd:37:41:69:
dc:5f:15:59:dd:25:ee:6f:58:62:be:2f:e1:74:1a:
4a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:91:C9:18:EF:93:B6:53:FF:E1:E3:4F:9E:F5:49:B7:8B:61:28:16
X509v3 Authority Key Identifier:
keyid:9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:bd:94:d9:4a:f7:70:eb:ad:12:cb:60:91:d6:e4:45:ec:a9:
6e:a6:14:ca:12:9c:20:8d:38:ff:df:f0:8d:25:29:d8:df:84:
bb:47:8d:f0:12:4e:a3:5f:09:e6:f8:01:d1:a4:35:92:8e:74:
ce:79:41:a2:c9:70:14:58:0c:17:81:7d:48:4c:77:1c:6c:65:
33:7b:3a:12:80:8b:ac:7f:98:c5:82:55:41:69:dd:47:4c:ef:
61:8b:0c:bf:0b:16:58:65:3a:e1:04:11:ab:44:4a:d4:b6:b3:
90:20:4c:0c:a6:fa:15:06:f7:b7:2f:1b:55:ad:89:8e:26:76:
82:07:ef:bf:3c:a3:13:de:cb:d2:14:5f:58:87:7b:33:b1:40:
32:bd:e8:17:18:53:3e:80:41:09:c5:1c:2d:ac:49:c9:37:e9:
56:02:93:3d:bf:d2:21:42:11:28:97:23:6c:0e:f6:d7:8f:89:
ad:45:04:4d:03:2e:c6:c5:f6:db:d3:be:23:de:04:56:aa:33:
f7:39:31:da:0a:a0:5a:01:e7:dc:27:eb:fb:c6:12:c4:1d:a4:
f8:67:d2:34:d7:e6:e9:2b:3e:81:4d:1b:a7:b7:58:e0:5a:eb:
cc:d1:30:ed:0a:75:01:52:c1:6d:1e:8e:de:55:66:5b:20:82:
2f:55:da:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:55:39 2024 by rpki-client on console-fra.rpki-client.org