Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
File: nLt3urQ4qT002dXAqOC57zKuXaA.mft (raw, json)
Hash identifier: qbMH6zecEQ+20cYxkeORLiHNNq4rQTvpVmVhz7QXWBw=
Subject key identifier: 3B:F7:B5:5B:9B:81:89:FB:65:70:32:3B:0D:2F:73:38:F4:7F:CA:50
Authority key identifier: 9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
Certificate issuer: /CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Certificate serial: 01923AA7A66BFBA6E3A9A2A7397020EFB190
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
Manifest number: 0463
Signing time: Sat 28 Sep 2024 22:01:58 +0000
Manifest this update: Sat 28 Sep 2024 22:01:58 +0000
Manifest next update: Sun 29 Sep 2024 22:01:58 +0000
Files and hashes: 1: IXRPJL2zJxM0-Jr1AyiPD2G8daM.roa (hash: P0seQGptt8nEDeCdypIKXkEQiTP6IC86clxT2ASBN6M=)
2: nLt3urQ4qT002dXAqOC57zKuXaA.crl (hash: DEnwa/RKWAV3tuUHHW22q816IiXJhZUNM2CoS6QUSu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3a:a7:a6:6b:fb:a6:e3:a9:a2:a7:39:70:20:ef:b1:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Validity
Not Before: Sep 28 22:01:58 2024 GMT
Not After : Sep 29 22:01:58 2024 GMT
Subject: CN=3bf7b55b9b8189fb6570323b0d2f7338f47fca50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c9:8c:67:7d:db:4d:f4:3c:41:8a:08:90:d5:
9b:eb:c8:b1:fe:d7:f6:7c:27:80:ce:60:6b:dc:d6:
d1:73:6f:8e:8c:c1:e7:1b:dd:ff:08:5f:a1:1f:b6:
a5:36:fa:fe:f5:68:51:0a:98:36:f6:d3:4d:ef:ff:
33:f3:66:43:c1:e6:d6:47:1d:6f:01:dd:37:75:34:
77:9b:f6:e9:b5:1f:0f:7f:50:d5:7d:86:5b:ba:7e:
c6:68:85:a4:95:22:a1:1a:fd:a1:65:c1:12:d5:46:
a0:a2:4c:55:bd:9d:be:39:d1:a2:82:fe:e2:8d:d8:
ac:9e:8e:52:71:86:98:21:ed:2a:5f:c8:f0:9a:02:
d4:c3:fe:ae:44:8f:c8:91:48:ea:0b:a9:07:30:95:
a8:98:57:d6:b1:ff:b3:94:18:30:62:ee:6f:b4:45:
a0:b6:ca:3a:67:02:99:7a:0c:45:0e:5e:84:c3:81:
ff:04:e2:f3:36:77:43:5f:2f:60:47:36:8a:89:b9:
84:e2:fb:03:71:e4:30:ee:95:9e:49:7d:1c:13:c3:
ec:67:79:d4:69:e2:d3:f8:66:6c:18:ad:11:6c:0e:
d6:b5:99:72:a0:c1:b5:08:32:c1:12:d2:7b:18:90:
11:47:35:ca:c0:1e:55:84:b8:cd:a4:91:a8:15:ed:
32:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F7:B5:5B:9B:81:89:FB:65:70:32:3B:0D:2F:73:38:F4:7F:CA:50
X509v3 Authority Key Identifier:
keyid:9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:8f:40:fe:cd:28:0a:5a:04:06:e8:ad:5d:0b:5b:c7:2a:3b:
9b:74:32:52:25:5e:77:87:31:4e:b9:71:4f:3d:80:e7:74:79:
e6:ee:a4:b6:f3:bd:00:ab:df:11:e2:57:ea:b2:26:0f:a6:d3:
d6:ee:bc:29:97:3a:fd:01:77:8a:d7:29:75:82:08:d7:ad:d4:
56:f3:38:82:1f:dc:7a:41:32:35:e0:75:e3:2f:b6:5e:4d:03:
c1:6a:0e:2d:61:e0:d3:b2:48:60:d5:18:7f:7e:6c:aa:0d:31:
04:f6:fa:7a:78:16:04:57:0f:47:4a:8b:cf:b9:5f:b0:ea:87:
98:76:13:76:7a:10:1e:34:53:95:36:27:5a:25:3a:ee:7f:2a:
7d:fb:5b:87:0a:9a:55:40:a9:5d:f2:5e:29:24:94:79:f6:ef:
0d:ab:89:31:f2:d9:f8:c9:bc:e9:a8:d6:88:1a:d5:35:25:d2:
f0:fc:40:9d:14:02:a2:6e:8b:ad:ff:58:07:37:0f:31:c5:18:
15:63:13:bb:d8:54:73:d8:1c:43:dd:64:84:e6:cb:ff:6a:48:
96:6d:9e:7f:89:09:42:a5:23:09:86:ba:fd:41:71:51:e2:ad:
ef:1d:54:9a:39:ac:e0:eb:92:13:94:bd:d7:67:92:61:26:4d:
fe:49:89:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 00:14:06 2024 by rpki-client on console-fra.rpki-client.org