Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft
File: NAahLsxTolGnXOe6yqyeQa7otMo.mft (raw, json)
Hash identifier: EzoyPvAHRDx+hkkTHHQQzMD5mreA4TAa2F3Q5pb6/og=
Subject key identifier: ED:8F:9C:F7:2E:79:D1:7B:99:F3:30:FE:1A:87:DB:BB:18:BD:C1:86
Authority key identifier: 34:06:A1:2E:CC:53:A2:51:A7:5C:E7:BA:CA:AC:9E:41:AE:E8:B4:CA
Certificate issuer: /CN=3406a12ecc53a251a75ce7bacaac9e41aee8b4ca
Certificate serial: 019369D90540EB65CAC421F770B7A2EC5DB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft
Manifest number: 1379
Signing time: Tue 26 Nov 2024 19:00:50 +0000
Manifest this update: Tue 26 Nov 2024 19:00:50 +0000
Manifest next update: Wed 27 Nov 2024 19:00:50 +0000
Files and hashes: 1: NAahLsxTolGnXOe6yqyeQa7otMo.crl (hash: ebiOTUpvbRxbctM6FoXbgqP2gZiv55Y3C9Y9dDx8piQ=)
2: wEYDyt3ZeuOTVeBlJrknkYcjoFk.roa (hash: y3A8JAT3priMYorK5llQMsQubhjdbu9fm3PT3BS+ytk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:d9:05:40:eb:65:ca:c4:21:f7:70:b7:a2:ec:5d:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3406a12ecc53a251a75ce7bacaac9e41aee8b4ca
Validity
Not Before: Nov 26 19:00:50 2024 GMT
Not After : Nov 27 19:00:50 2024 GMT
Subject: CN=ed8f9cf72e79d17b99f330fe1a87dbbb18bdc186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3e:8f:47:e2:f6:35:cf:9f:d1:92:c9:99:2f:
58:a2:ce:8a:da:60:c3:40:c2:44:50:84:7e:4b:2b:
d6:9b:dd:c2:f3:c5:bb:1b:81:93:ab:9a:bf:a6:99:
27:11:0d:34:52:c7:b6:11:47:9a:1e:01:0f:cb:56:
56:3c:18:8d:59:f4:9f:85:9e:6f:31:21:ba:b6:fd:
43:fb:79:33:fb:cb:ba:1e:ea:a2:cd:02:b4:31:2e:
75:6c:f6:25:3c:c4:84:f6:a5:d2:95:da:f8:ed:bf:
28:0b:1b:07:9c:7b:bd:18:fd:0c:23:30:3b:f2:2f:
b7:e7:06:d5:35:b5:88:5b:06:51:f8:af:a0:6e:66:
dd:0f:b6:a0:7c:ce:72:79:24:a6:cc:c1:02:09:40:
69:6c:ef:e3:5d:65:5b:80:43:aa:1b:03:6a:42:bf:
ea:82:d0:d8:43:49:66:6c:db:14:f7:90:22:6c:7d:
b6:39:d9:d9:ff:a8:d3:bc:59:35:22:dd:f5:33:57:
ce:12:c0:9b:94:ef:b4:a4:7f:24:8f:80:2b:07:6c:
2f:b8:13:d4:b0:4e:57:5a:7d:ce:73:aa:05:4a:d5:
5a:39:a1:5e:c1:c8:3c:20:d0:83:d3:3e:2c:13:3e:
20:9c:db:35:45:57:a1:86:d9:7d:5d:8d:b5:7c:01:
b7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:8F:9C:F7:2E:79:D1:7B:99:F3:30:FE:1A:87:DB:BB:18:BD:C1:86
X509v3 Authority Key Identifier:
keyid:34:06:A1:2E:CC:53:A2:51:A7:5C:E7:BA:CA:AC:9E:41:AE:E8:B4:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:af:86:b4:79:ba:78:1d:b7:32:cd:80:2b:de:78:ea:4b:b7:
89:fe:9a:84:30:92:37:31:9e:f7:80:0d:62:1a:9b:c0:28:9b:
24:a0:1f:71:99:e8:33:0d:dd:3b:83:d0:2b:14:66:92:1d:67:
7e:a9:3c:f3:59:2a:4a:48:93:84:73:b0:05:ec:38:04:55:c5:
67:bc:3d:94:95:c3:ae:21:09:3b:56:ee:ce:23:d5:77:cc:99:
27:0b:41:0f:83:0d:72:23:c8:75:ea:bf:44:6f:2d:29:4f:e0:
86:af:99:d6:28:54:11:f5:92:46:3f:1a:b4:54:68:dd:50:d6:
e2:2e:25:66:c5:54:bd:99:16:62:86:96:27:14:b3:6e:4b:a0:
e5:78:32:0e:11:ff:70:4c:c0:71:28:f1:5e:d3:2b:3a:21:47:
33:76:be:1c:b9:2c:e2:48:dd:ac:21:0e:77:f1:a6:4e:fa:b1:
a3:6b:7e:a8:0e:ff:9e:f7:ea:6b:38:d5:13:66:22:5c:30:c6:
a8:ed:28:91:59:f8:57:e7:48:7d:3f:53:8f:e4:ce:79:b8:51:
55:98:39:35:f7:15:20:3a:ca:8d:0b:d6:f6:74:c8:be:5f:e6:
87:7c:2a:65:30:67:6f:5e:7e:49:1c:26:56:48:f5:16:37:13:
18:ad:10:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:44:55 2024 by rpki-client on console-fra.rpki-client.org