Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
File: NADZSQmD598yx88Xyh6tTwX3lkY.mft (raw, json)
Hash identifier: 4D5s+ZF8WlHVAetFS73OTKynhycvPiT5QHjA2dBPI7k=
Subject key identifier: C9:8F:C9:30:E6:2D:F3:73:B4:F7:E0:13:7C:29:15:91:F7:9C:C8:08
Authority key identifier: 34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
Certificate issuer: /CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Certificate serial: 019234DC68E6DD40A2267765650F8D754CCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
Manifest number: 044D
Signing time: Fri 27 Sep 2024 19:01:52 +0000
Manifest this update: Fri 27 Sep 2024 19:01:52 +0000
Manifest next update: Sat 28 Sep 2024 19:01:52 +0000
Files and hashes: 1: NADZSQmD598yx88Xyh6tTwX3lkY.crl (hash: hZRvN3Dfv02XGjBMRifreVzoxkxTmBO09xq9kB9IOOQ=)
2: zNDjdpiAJWSz8B41wT5z-68yHg0.roa (hash: tRvzkImUxuPoxXP9gYZKArN/wyZ1psibocqJdyjK5Is=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:34:dc:68:e6:dd:40:a2:26:77:65:65:0f:8d:75:4c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Validity
Not Before: Sep 27 19:01:52 2024 GMT
Not After : Sep 28 19:01:52 2024 GMT
Subject: CN=c98fc930e62df373b4f7e0137c291591f79cc808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3a:b0:8a:d0:1a:5b:9c:c7:03:cf:28:75:d8:
aa:7a:b3:f3:98:1b:36:48:49:60:43:1b:c5:d8:2d:
7d:32:db:1b:6c:b0:51:92:3d:4c:cd:98:55:ef:6e:
ef:68:cc:43:55:c2:9b:80:18:03:8d:36:3d:65:28:
7b:41:9e:d7:e0:1e:e3:d5:4d:40:d2:27:2f:61:c4:
71:47:74:9c:41:fc:35:8f:eb:0b:7d:a8:8e:02:86:
cd:11:70:7b:5c:e5:99:f6:2a:ed:e1:f9:38:cb:9e:
d1:6d:8e:93:cf:50:03:8a:69:eb:0a:5e:03:af:7c:
29:0d:98:4f:ce:30:35:9c:d3:12:0e:ce:1a:0b:98:
0b:aa:ab:19:fa:13:40:49:35:45:93:81:44:8e:25:
8e:2f:42:05:a7:0e:8d:9b:33:a9:e3:b7:08:d3:54:
ab:b3:89:f0:f7:c8:59:50:13:ab:a9:6e:64:9a:68:
83:4b:76:c1:89:c2:74:41:c4:b0:1d:d0:77:85:70:
24:d2:27:0b:51:61:5c:1e:6c:8a:9a:52:39:1b:76:
5a:67:ad:ec:c6:94:ad:8a:c6:75:99:71:3b:cd:0c:
48:45:f6:30:70:d6:9f:cb:60:ba:26:ad:fa:0a:3f:
1c:3d:bd:55:54:51:80:2a:64:ca:02:3b:2d:8b:c0:
c6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8F:C9:30:E6:2D:F3:73:B4:F7:E0:13:7C:29:15:91:F7:9C:C8:08
X509v3 Authority Key Identifier:
keyid:34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:5d:40:5b:bb:a8:f3:37:b9:ec:77:72:b0:b2:42:2d:fd:e4:
47:a6:85:20:96:f9:9f:4e:bb:ae:0e:f3:54:7d:41:39:fb:8f:
1b:78:20:ca:e7:94:de:71:ad:82:fb:64:a4:21:30:9d:18:62:
1b:f2:db:1a:b1:01:ce:73:37:56:76:3f:b5:78:53:5c:2b:3b:
d4:e7:9c:10:96:31:78:0c:f9:af:2a:7e:64:28:c5:e3:8a:e3:
ad:80:c6:b8:dd:ae:c6:ab:cb:c8:50:23:e4:73:81:e9:53:5e:
3b:0d:70:88:17:2d:e3:d3:8f:fb:43:e9:81:7b:f3:74:1b:b9:
31:1e:d7:3c:94:70:e3:58:52:06:7c:a3:44:f9:6b:d4:b8:f9:
4e:3d:34:c1:98:04:ad:a9:1c:44:f1:9f:1b:32:bf:c9:c1:93:
d8:c1:b8:3a:69:f5:53:e0:68:2c:e1:f3:6f:5f:d5:2f:28:c6:
99:51:2e:a5:12:2e:df:29:d2:1b:03:02:9e:3f:ff:4b:0a:c5:
53:0a:2e:5d:5c:d6:ec:53:64:00:9b:b6:dc:b5:55:71:88:22:
0f:a2:c7:3b:f0:7a:17:1d:45:39:1d:fd:4e:05:62:df:09:f9:
12:35:2f:5a:a5:49:dc:ba:cf:df:07:fa:1e:5d:5d:09:77:7c:
97:96:5c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 22:03:01 2024 by rpki-client on console-fra.rpki-client.org