Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
File: nfToC0ytTlC3iO3xaXZxLe7_bA0.mft (raw, json)
Hash identifier: e2QP34KxzZJnTY9CAGzld+m/YF8GjwYKwcWl6+R+QrQ=
Subject key identifier: FC:5F:09:4F:22:70:65:83:9C:2F:60:53:3D:07:EF:CF:CE:4E:03:D0
Authority key identifier: 9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
Certificate issuer: /CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Certificate serial: 019357D3023118F315F7E8141F6294958B34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
Manifest number: 0C45
Signing time: Sat 23 Nov 2024 07:01:06 +0000
Manifest this update: Sat 23 Nov 2024 07:01:06 +0000
Manifest next update: Sun 24 Nov 2024 07:01:06 +0000
Files and hashes: 1: NIYX35bpMwAJ3HZJzo3t6s9eeO4.roa (hash: z4OfIlXqlAz16dL0dJqh5pOqIS9ftGoxK6M48YXIiD8=)
2: nfToC0ytTlC3iO3xaXZxLe7_bA0.crl (hash: Ip/+9iWE2LVMZVGyj3IWZYELYu9xU1ofm0Hx4ZxYOaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:d3:02:31:18:f3:15:f7:e8:14:1f:62:94:95:8b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Validity
Not Before: Nov 23 07:01:06 2024 GMT
Not After : Nov 24 07:01:06 2024 GMT
Subject: CN=fc5f094f227065839c2f60533d07efcfce4e03d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:62:3a:49:ba:ff:b4:13:b0:39:93:c9:c7:
1d:61:b4:e2:3c:b6:3f:0d:37:b5:05:bb:b5:19:36:
ec:df:fd:ec:ec:73:39:e1:0b:71:17:81:29:b3:cd:
36:28:21:9c:2b:85:5b:32:63:23:af:4a:61:2d:1d:
e7:b4:65:f2:06:71:56:4a:cf:4a:72:bb:e1:07:58:
5e:87:08:88:12:8c:81:9b:4b:3f:73:83:42:42:b2:
a9:f9:8b:55:1c:98:ec:62:bf:4c:79:31:ae:7e:55:
7a:ce:6c:b9:af:43:18:02:bf:64:40:52:88:7f:c4:
5a:6d:e9:74:65:69:d8:8f:de:df:dd:0b:09:75:28:
f9:55:e6:9a:de:72:37:f5:c2:0a:9a:bf:5d:a3:d0:
c9:39:10:8b:24:83:4f:f7:18:21:1c:1a:5f:70:fa:
ec:ae:4c:b8:f6:f5:73:ad:77:c9:3e:22:bc:57:5e:
2c:d4:57:62:95:e1:dd:d5:e5:87:c9:1f:01:e8:e0:
86:5f:2f:e7:f8:ec:62:06:c9:e1:15:3e:b2:8c:63:
9f:9e:f0:9e:e5:56:fa:44:a4:cc:d5:36:b5:8d:d9:
49:0d:3c:fe:ef:90:b9:fa:80:93:1b:ea:57:c6:ac:
b1:45:e3:a5:13:02:26:74:cd:a0:07:42:a1:79:c0:
13:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:5F:09:4F:22:70:65:83:9C:2F:60:53:3D:07:EF:CF:CE:4E:03:D0
X509v3 Authority Key Identifier:
keyid:9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:da:7e:94:53:f6:c6:62:3d:b5:cb:ab:05:c1:12:6f:47:b0:
93:e8:9b:91:1b:e4:a4:fe:e7:f4:0f:4c:d6:4f:b6:78:65:16:
2e:5e:de:51:7d:42:e4:26:f4:c2:1a:c3:59:99:2f:54:8d:0a:
2d:57:2b:a6:1e:26:0d:54:65:bf:54:db:bb:e4:9c:f6:29:1c:
05:5d:a4:14:9b:d4:e9:cc:eb:38:5d:4b:e4:14:7b:60:50:5a:
e9:98:d6:f8:73:a1:8d:72:f8:17:d0:a1:4f:30:79:6f:16:38:
5e:d7:38:bf:8f:b8:77:ce:7c:78:62:0d:87:6c:e2:62:b0:5f:
43:70:f1:65:66:ff:26:5a:21:9c:ef:74:50:be:9c:0c:60:f9:
39:2e:13:59:ca:75:f6:de:85:d3:d6:5a:85:b3:ae:46:2b:14:
aa:fb:bf:df:d2:6e:d6:c9:fe:ab:90:82:31:8b:75:d5:f9:d7:
2c:ca:fb:42:29:89:9c:25:9f:67:9e:16:6c:68:f8:44:c4:67:
b1:6e:53:15:c0:ea:b4:dc:36:00:85:f5:05:b3:07:ef:9f:57:
27:97:8f:f8:74:ca:c9:7a:7a:4d:ba:70:2e:6b:a4:58:c0:71:
bf:60:b0:fa:8c:b0:3b:92:77:e9:91:5e:90:d8:49:f2:0d:f3:
f8:6b:65:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:50 2024 by rpki-client on console-ams.rpki-client.org