Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: wD/fIH4iBJdBnRUC2WThR9/FM8Prc8uCmUKBFt1W2Eg=
Subject key identifier: 34:C0:B9:66:25:2B:2D:B1:68:A6:0D:94:74:9A:06:AA:22:83:BC:53
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 019369D88C6D528073F9715194D025E43C55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0982
Signing time: Tue 26 Nov 2024 19:00:19 +0000
Manifest this update: Tue 26 Nov 2024 19:00:19 +0000
Manifest next update: Wed 27 Nov 2024 19:00:19 +0000
Files and hashes: 1: 6p6iUBMdnzDCAORLwUTd5uFCNCk.roa (hash: CKnLSIsxd/l3ITJ7D4ULWd+GOTyxtiJxQI2N04kGNqU=)
2: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: DfMKw3bYx+zWFTHBeX2KrJmQG4pnWXRIrHRwHQYfcCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d8:8c:6d:52:80:73:f9:71:51:94:d0:25:e4:3c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: Nov 26 19:00:19 2024 GMT
Not After : Nov 27 19:00:19 2024 GMT
Subject: CN=34c0b966252b2db168a60d94749a06aa2283bc53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6a:25:19:2e:bb:36:c4:38:70:3f:04:19:2b:
8b:23:4a:f2:84:c9:1f:b3:96:28:a9:fc:6f:3b:64:
bd:ad:b5:08:ac:a1:07:be:fd:5c:30:87:1a:e1:ce:
b7:ed:75:85:d6:d4:17:6d:65:3e:35:a5:c4:86:f3:
80:c4:ff:6c:6d:55:bf:ef:76:be:01:89:19:4f:10:
b4:f4:53:58:12:b2:06:f5:01:2d:a2:c0:a1:51:92:
cd:30:fc:3c:88:7f:16:1b:1a:49:a0:ea:ab:04:2f:
90:d3:af:92:e4:e1:d0:a9:64:6e:94:1c:70:fb:0e:
9b:42:6c:6c:56:f7:0e:8e:18:f6:6f:2c:51:1b:25:
66:55:8f:75:fa:01:b7:92:58:13:47:19:9a:9d:9e:
1e:a8:b9:fc:d0:05:3c:2d:ca:bf:e4:4e:6e:3d:41:
a3:02:7d:87:2d:1a:75:1e:83:17:70:97:4a:36:4c:
3e:b8:32:ab:2a:5e:2d:8d:fc:ea:f9:69:d5:31:94:
2a:9f:7a:0c:d0:cc:e0:04:fd:be:e7:04:bc:a9:c6:
74:8a:9f:f2:19:49:5a:fd:5f:c7:86:7a:93:c2:76:
33:d3:ba:6a:34:e0:c7:b1:6c:90:58:65:aa:d0:03:
ae:a8:11:25:23:a3:1a:c9:79:b6:86:82:72:97:23:
2c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C0:B9:66:25:2B:2D:B1:68:A6:0D:94:74:9A:06:AA:22:83:BC:53
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:21:0b:ce:0d:6c:c7:eb:04:2e:44:70:01:c5:82:07:ef:48:
30:b4:f2:93:93:04:13:c9:c8:3f:01:6c:fb:84:43:2a:da:4d:
51:35:d7:5c:2b:df:51:71:85:c7:0f:f7:b3:52:8a:6f:54:ac:
34:63:09:e2:4a:60:41:fc:b0:04:6c:1b:02:a4:70:82:b5:8f:
42:0c:00:ce:67:6e:44:02:27:21:66:cb:5b:fb:ec:08:a1:28:
02:29:cc:4e:60:24:a4:ed:6f:b1:d3:f3:31:ad:72:3e:c5:ed:
f5:83:45:20:02:58:17:ae:7a:18:fd:83:37:20:d7:5c:8d:b5:
a9:db:29:f3:46:b0:28:8b:4a:21:a7:04:89:1f:8f:04:9e:fd:
4b:58:2b:c9:12:6a:73:df:05:32:9f:56:d9:8e:bf:f8:b6:38:
2e:a2:a4:17:53:9e:e3:81:0c:b7:e8:af:ec:b3:4c:b4:f6:64:
81:9e:9f:19:29:6d:5c:24:ae:7c:44:f1:cc:a5:d0:4f:52:67:
9b:0b:f2:b2:f5:16:0c:e5:86:a6:ba:2d:d0:1b:3b:40:05:bd:
6e:8c:9a:b0:1e:2f:3e:c9:cc:51:21:bc:1c:d4:0e:ab:2b:9a:
09:e6:c8:c5:06:86:86:2e:2a:9d:a3:c2:ec:64:a1:8e:e2:3c:
5b:88:74:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:05 2024 by rpki-client on console-fra.rpki-client.org