Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: m2g8L+b1qxtnJJwmYqmNVW1HNGjyTUP7BYO8EosqITY=
Subject key identifier: 7E:F1:4F:3B:B2:00:43:7F:BB:07:51:70:69:80:D2:7E:4E:6F:CF:A7
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 019357D2D590BA0930268C5AA6AB24B53E94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 1372
Signing time: Sat 23 Nov 2024 07:00:55 +0000
Manifest this update: Sat 23 Nov 2024 07:00:55 +0000
Manifest next update: Sun 24 Nov 2024 07:00:55 +0000
Files and hashes: 1: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: ZeDIO4/2SeiOJeuPJN1YFqgHW4LyaPwBtNlOIXqhvm8=)
2: uVvHj8YhZvXYBEDGZyiTNCPwkzA.roa (hash: 7ShC1NAqV9aBja6Cre8f0fxWQeG8CgYnhfqQ13Zj/Ng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d2:d5:90:ba:09:30:26:8c:5a:a6:ab:24:b5:3e:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Nov 23 07:00:55 2024 GMT
Not After : Nov 24 07:00:55 2024 GMT
Subject: CN=7ef14f3bb200437fbb0751706980d27e4e6fcfa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:82:c0:29:18:b2:e0:00:10:17:d3:39:2a:90:
35:74:6d:41:a5:fa:3c:f2:e1:e3:36:6a:4e:2f:a8:
f3:82:aa:63:a9:a7:4d:21:de:08:7a:29:57:22:c9:
60:fb:19:96:2b:f5:6d:0d:30:4a:14:e3:91:7c:df:
97:82:d1:4b:c9:4d:16:61:57:0e:5d:c2:5c:92:0d:
da:30:bf:b5:fe:af:02:28:d6:a8:dc:ef:d0:69:33:
16:cc:a0:ef:c3:41:ee:18:99:e0:8c:9e:c7:3e:58:
26:c0:1b:c5:64:9a:ae:63:ec:37:0b:db:73:ed:94:
f0:ca:6d:4c:82:fe:e3:9f:ed:39:63:89:06:b3:df:
97:b8:73:38:8c:6e:e6:d2:0f:cf:bf:fb:80:54:ae:
4c:eb:23:70:67:81:27:4b:d1:eb:2e:43:7f:ec:f5:
d3:91:fd:6f:5a:a2:bb:83:06:6d:ed:47:3d:ba:60:
26:c7:71:51:11:d0:17:6b:e4:72:57:0f:89:8f:72:
01:65:2c:1f:9f:47:ba:cd:27:65:c7:af:27:93:bc:
75:bc:4c:66:91:6f:00:50:71:7e:7a:f7:5a:a5:90:
71:0c:b3:ba:c2:41:f0:cd:aa:26:bd:c1:7c:6e:74:
ce:78:2a:a4:88:45:a1:76:7f:3d:aa:30:05:9f:55:
bb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F1:4F:3B:B2:00:43:7F:BB:07:51:70:69:80:D2:7E:4E:6F:CF:A7
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:e5:7b:f6:56:dc:e8:de:d4:cf:28:88:77:ac:67:06:ef:3e:
f6:4e:da:7c:47:32:7c:16:e6:2a:a7:4b:c6:ed:02:b8:e1:b0:
da:40:71:70:77:a1:c6:9e:56:50:0a:44:d5:22:12:68:c1:7d:
37:9a:5e:7f:9b:50:d9:f8:d1:15:fb:d6:cb:20:6e:13:82:bf:
11:9e:92:39:7a:af:3a:4e:dd:b9:c6:82:1c:2e:e9:b6:2b:83:
89:52:40:e9:c5:97:95:49:ec:16:c8:e7:04:59:48:67:f0:7b:
16:41:c6:1b:8c:ca:4b:04:20:06:78:93:25:52:b3:c4:aa:5a:
fb:7f:07:f5:43:40:af:0b:84:27:86:89:0d:47:7b:3e:3f:94:
f2:8e:a1:13:95:91:4a:89:eb:0a:3d:c2:05:57:02:88:a9:e1:
db:ed:98:7f:c8:d2:95:09:e9:9a:13:76:e0:9e:e7:51:b0:ca:
be:e3:63:4a:82:44:25:2d:cb:60:fe:61:0b:bc:1c:95:0d:c9:
56:41:da:b3:ac:0f:fe:43:46:e3:24:71:4b:c0:3f:61:bc:df:
37:76:70:0c:2f:37:19:2d:ad:a3:13:4c:32:0e:0f:7e:3b:2c:
d3:d8:6b:64:df:c2:ef:9f:90:46:95:9e:f2:ae:87:f9:9e:10:
3c:de:b9:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:56:39 2024 by rpki-client on console-fra.rpki-client.org