Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft
File: NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft (raw, json)
Hash identifier: hjKwwzgR5ZKLk2do/CzqpjUB3lYnIMvsiDUY4P5xq20=
Subject key identifier: 4A:0B:05:BF:77:B9:6C:4A:A5:E0:E4:81:ED:EA:75:DC:4E:BC:AE:9D
Authority key identifier: 35:F1:A5:73:91:51:53:DE:82:89:0E:AE:13:03:06:7F:A6:8B:28:77
Certificate issuer: /CN=35f1a573915153de82890eae1303067fa68b2877
Certificate serial: 019355089DE3B30BC4766B28933E97F2A5DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NfGlc5FRU96CiQ6uEwMGf6aLKHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft
Manifest number: 0E71
Signing time: Fri 22 Nov 2024 18:00:48 +0000
Manifest this update: Fri 22 Nov 2024 18:00:48 +0000
Manifest next update: Sat 23 Nov 2024 18:00:48 +0000
Files and hashes: 1: 7tuh7fpuQe8gDL6zr46FEipr3gU.roa (hash: 54vLKtlFIxM7vzUn/OHcqmCUEv6yVd1xZD2nqOQSosc=)
2: NfGlc5FRU96CiQ6uEwMGf6aLKHc.crl (hash: PTuJnxki3GecXTS9yexyLYiinDtX4fCFKqec6lVNdbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NfGlc5FRU96CiQ6uEwMGf6aLKHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 18:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:08:9d:e3:b3:0b:c4:76:6b:28:93:3e:97:f2:a5:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35f1a573915153de82890eae1303067fa68b2877
Validity
Not Before: Nov 22 18:00:48 2024 GMT
Not After : Nov 23 18:00:48 2024 GMT
Subject: CN=4a0b05bf77b96c4aa5e0e481edea75dc4ebcae9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:41:0f:ce:49:f5:e5:b8:e0:a9:31:1d:03:32:
97:44:74:26:00:c5:ec:d9:95:88:56:f0:b8:ec:0b:
17:e3:22:04:70:79:b4:0f:b6:ad:bd:28:d0:0b:8a:
40:37:ce:77:66:1a:0d:f9:ba:d4:25:40:27:e5:7f:
b3:0f:03:dc:49:00:60:ed:73:9d:1e:8a:2c:78:6d:
dd:70:2c:4a:b6:e8:3b:46:91:e7:fc:d1:ba:80:38:
0a:0e:3e:6e:64:a2:99:4f:2e:f8:42:33:d0:5b:24:
b2:8d:dc:74:6e:75:10:40:fb:dd:2d:a9:41:ac:04:
88:d5:5a:31:bc:1b:b5:c0:fd:4b:c4:95:b8:74:a3:
e9:9c:8a:5f:90:68:86:6d:9d:60:ea:25:43:bb:5e:
d5:7a:d6:2c:56:2d:a6:42:46:03:d1:8e:eb:a9:00:
39:69:fc:81:fe:8b:5d:5f:8e:34:6a:7c:c5:0f:5e:
b3:a0:92:dc:be:7d:92:66:26:45:22:af:93:92:15:
37:6d:73:f8:37:ce:66:b4:07:e1:6d:2a:ac:29:ac:
a1:f7:e3:e6:39:84:f8:46:d2:88:ec:02:dd:10:40:
ee:43:ef:83:16:db:54:23:73:e4:70:b9:86:8b:79:
3c:cd:e8:fe:20:a6:f2:73:56:d1:43:81:bb:1c:43:
67:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0B:05:BF:77:B9:6C:4A:A5:E0:E4:81:ED:EA:75:DC:4E:BC:AE:9D
X509v3 Authority Key Identifier:
keyid:35:F1:A5:73:91:51:53:DE:82:89:0E:AE:13:03:06:7F:A6:8B:28:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NfGlc5FRU96CiQ6uEwMGf6aLKHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/da8b6b-19fa-4976-baa0-329211029a1a/1/NfGlc5FRU96CiQ6uEwMGf6aLKHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:90:42:e5:47:4e:87:31:8c:35:b9:71:8a:b8:bd:66:45:5d:
84:8b:1a:f7:68:02:46:c5:67:26:c7:b3:7b:cd:af:48:98:bb:
2e:79:13:ad:dd:3c:6b:c5:ad:56:50:8a:5f:5e:73:2d:1a:80:
91:24:27:ad:18:e9:0d:f7:33:fe:5b:fc:11:39:96:db:3e:a1:
e0:cf:ec:0e:26:53:1a:f7:2c:5d:30:95:27:aa:6c:db:c9:2b:
82:d3:f7:02:6a:a4:90:f7:b2:a7:9d:9c:7b:d8:13:b8:cb:b0:
fc:66:e7:91:05:92:1a:ea:77:78:b0:d3:a4:14:4e:3d:06:35:
aa:56:06:c9:a8:38:f8:f1:c3:a0:44:d3:61:37:3e:50:95:1e:
47:c9:c0:7b:44:91:49:a9:90:93:ea:00:01:5d:00:d3:5e:32:
48:1d:34:2f:97:d6:79:ce:53:83:52:cc:aa:78:24:13:b9:db:
56:e0:7b:50:94:2f:8a:f7:c1:95:8c:6b:ff:23:f6:31:e8:72:
6f:d3:b6:0d:4c:68:d3:9f:29:12:98:35:59:9c:c9:3e:55:ac:
46:a7:3a:9d:7f:d5:b8:ae:5a:02:b5:67:65:3c:5f:4e:e5:37:
5c:64:c2:df:cd:34:d4:dd:97:08:fe:b7:bb:e3:9c:3f:04:3d:
e2:df:05:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNVCJ3jswvEdmsokz6X8qXdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZjFhNTczOTE1MTUzZGU4Mjg5MGVhZTEzMDMwNjdmYTY4
YjI4NzcwHhcNMjQxMTIyMTgwMDQ4WhcNMjQxMTIzMTgwMDQ4WjAzMTEwLwYDVQQD
Eyg0YTBiMDViZjc3Yjk2YzRhYTVlMGU0ODFlZGVhNzVkYzRlYmNhZTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEEPzkn15bjgqTEdAzKXRHQmAMXs
2ZWIVvC47AsX4yIEcHm0D7atvSjQC4pAN853ZhoN+brUJUAn5X+zDwPcSQBg7XOd
HooseG3dcCxKtug7RpHn/NG6gDgKDj5uZKKZTy74QjPQWySyjdx0bnUQQPvdLalB
rASI1VoxvBu1wP1LxJW4dKPpnIpfkGiGbZ1g6iVDu17VetYsVi2mQkYD0Y7rqQA5
afyB/otdX440anzFD16zoJLcvn2SZiZFIq+TkhU3bXP4N85mtAfhbSqsKayh9+Pm
OYT4RtKI7ALdEEDuQ++DFttUI3PkcLmGi3k8zej+IKbyc1bRQ4G7HENn+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEoLBb93uWxKpeDkge3qddxOvK6dMB8GA1UdIwQY
MBaAFDXxpXORUVPegokOrhMDBn+miyh3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmZHbGM1RlJVOTZDaVE2dUV3TUdmNmFMS0hjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9kYThiNmItMTlmYS00OTc2LWJhYTAt
MzI5MjExMDI5YTFhLzEvTmZHbGM1RlJVOTZDaVE2dUV3TUdmNmFMS0hjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9kYThiNmItMTlmYS00OTc2LWJhYTAtMzI5MjExMDI5YTFh
LzEvTmZHbGM1RlJVOTZDaVE2dUV3TUdmNmFMS0hjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfpBC5UdO
hzGMNblxiri9ZkVdhIsa92gCRsVnJseze82vSJi7LnkTrd08a8WtVlCKX15zLRqA
kSQnrRjpDfcz/lv8ETmW2z6h4M/sDiZTGvcsXTCVJ6ps28krgtP3AmqkkPeyp52c
e9gTuMuw/GbnkQWSGup3eLDTpBROPQY1qlYGyag4+PHDoETTYTc+UJUeR8nAe0SR
SamQk+oAAV0A014ySB00L5fWec5Tg1LMqngkE7nbVuB7UJQvivfBlYxr/yP2Mehy
b9O2DUxo058pEpg1WZzJPlWsRqc6nX/VuK5aArVnZTxfTuU3XGTC38001N2XCP63
u+OcPwQ94t8FwA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:20:19 2024 by rpki-client on console-fra.rpki-client.org