Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: +KyEtY+EN2OOPCXgXAwj10WfoI73LbuPedzGMSYwuF8=
Subject key identifier: 71:42:DB:EE:49:7B:10:F2:99:3C:89:26:6E:22:C6:D9:15:82:22:5F
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 018F994EC83B026D74B55664FD7FD24B5B2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0865
Signing time: Tue 21 May 2024 04:00:28 +0000
Manifest this update: Tue 21 May 2024 04:00:28 +0000
Manifest next update: Wed 22 May 2024 04:00:28 +0000
Files and hashes: 1: jVxBE_6LrNbyBs9DmxSrDFYzdgA.roa (hash: 0xEpOeXGk0pE8YZDYVLZstzq5AKOiFW+GWsHZEr238c=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: uWkSZ+9OIT+Icm/+PcixUDE4rcvn3Z02/Nv13NQ3NsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 22:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:4e:c8:3b:02:6d:74:b5:56:64:fd:7f:d2:4b:5b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: May 21 04:00:28 2024 GMT
Not After : May 22 04:00:28 2024 GMT
Subject: CN=7142dbee497b10f2993c89266e22c6d91582225f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:99:30:35:d3:b6:59:f7:4c:5c:b6:ec:59:e1:
55:ea:1e:1a:fd:2d:11:d0:ac:65:c1:3b:1e:33:d9:
1e:ab:1b:8e:cd:6d:8a:81:3f:8e:b6:3e:d0:f5:a5:
d7:bd:ab:8d:a2:6e:82:63:54:3d:ad:6c:74:d3:7f:
93:35:87:f4:bd:0d:c9:e8:69:21:b5:66:f0:ff:3e:
e9:15:b8:b4:6a:2b:52:6b:01:2a:3b:f8:60:2d:50:
ef:81:49:05:0a:49:cb:bd:3f:21:d3:5a:2a:ff:82:
bf:38:b2:f0:03:d1:38:39:a5:2c:4b:04:ff:5b:db:
fd:54:81:18:9e:39:4b:6f:ed:e6:99:22:97:d3:c4:
01:1b:be:3e:af:8d:88:7a:31:32:d7:1c:b4:d0:f7:
89:0c:ab:dd:48:b4:d8:b3:d1:3e:20:80:ea:94:0e:
47:d5:1c:db:78:1f:f5:1a:ca:95:b3:1b:da:0a:78:
0a:7b:3c:3f:9d:c5:f4:bd:78:5a:71:0e:b3:62:a0:
92:a4:40:07:ab:26:9d:71:b8:7d:a7:56:a6:2e:57:
da:91:32:d9:a1:6f:07:37:de:63:ec:33:04:82:5a:
71:33:18:c8:1b:9b:be:1d:cb:8d:65:66:6b:67:93:
33:84:bc:fd:a2:2b:b1:3e:c7:69:18:61:66:1c:8c:
58:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:42:DB:EE:49:7B:10:F2:99:3C:89:26:6E:22:C6:D9:15:82:22:5F
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:27:35:d8:a9:8f:e1:27:ac:b4:c4:6e:ba:b9:25:db:6b:fb:
bb:d7:f0:ef:cc:1e:2d:89:07:00:63:09:f1:fa:86:b9:c9:61:
cb:43:e6:10:91:ac:88:ef:d3:22:3c:06:bb:4d:ef:45:5e:1a:
fe:4d:bd:95:eb:81:de:18:f7:42:31:e7:40:17:f2:17:13:0d:
cc:76:91:f9:72:d9:df:97:a0:11:0a:4c:88:60:19:9b:b6:c6:
a3:e8:8f:b3:02:19:ff:d3:87:13:6c:37:35:81:ee:1e:23:3f:
50:82:c2:2f:be:60:48:bc:75:c9:f0:a2:ab:7d:cd:c9:9c:c7:
e8:1d:51:96:8f:38:06:aa:b7:e3:0a:19:a5:eb:4c:cf:ed:0a:
cb:75:45:47:dc:22:99:e0:01:36:7f:bf:53:9e:0f:b2:d6:8d:
c3:65:1a:24:14:c3:c5:40:2e:9a:3b:fa:05:4e:84:0e:19:9e:
32:52:19:b7:ab:23:33:c5:98:c1:29:2e:53:d0:94:83:c9:ac:
15:59:84:ad:8b:1a:a2:a1:1c:13:be:89:09:75:fb:89:dd:7c:
df:8b:a3:9a:5c:ed:41:ff:35:e5:9a:ad:16:7e:06:eb:f7:d6:
6f:63:a9:85:90:7f:9c:05:ca:4a:61:1b:e1:50:67:7c:56:0c:
9b:96:1b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 04:47:51 2024 by rpki-client on console-fra.rpki-client.org