Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
File: NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft (raw, json)
Hash identifier: wAC977mqgyrT4ZsJp+3I6o9KphxP/iOfJ3lput/cMzA=
Subject key identifier: E5:D4:A1:F6:BD:69:7F:5A:FE:93:51:88:F4:5E:AA:9A:28:4F:36:9D
Authority key identifier: 35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
Certificate issuer: /CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Certificate serial: 01936AB4A4A6A7DF5A80F150D9FF14CCFDD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
Manifest number: 014C
Signing time: Tue 26 Nov 2024 23:00:43 +0000
Manifest this update: Tue 26 Nov 2024 23:00:43 +0000
Manifest next update: Wed 27 Nov 2024 23:00:43 +0000
Files and hashes: 1: JzA7Qrk4fD_Zlr7bKnvOA0QE85k.roa (hash: sMQcSKf652A0jtQdxB+AsAuw43ekr1S2J06nhpl75+k=)
2: NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl (hash: B4DuzZgjRASROHIBBfzwD847Xxby1p1Y/35CIYTeVsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b4:a4:a6:a7:df:5a:80:f1:50:d9:ff:14:cc:fd:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Validity
Not Before: Nov 26 23:00:43 2024 GMT
Not After : Nov 27 23:00:43 2024 GMT
Subject: CN=e5d4a1f6bd697f5afe935188f45eaa9a284f369d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:dd:93:48:47:11:35:c2:99:de:bb:23:9a:01:
21:46:86:76:3f:37:9d:b2:cb:e5:38:91:6c:11:2c:
19:62:6a:57:b2:c2:a6:11:7b:2f:df:cc:0f:6c:ef:
ba:28:81:29:9e:24:05:68:9b:cc:8a:6e:28:6d:17:
24:b4:30:ad:c1:45:00:ae:0e:9f:8d:a7:17:c0:fd:
f1:ff:d8:7b:9c:69:dd:4f:06:d4:b2:05:3f:d1:46:
49:79:cc:7d:e0:c8:80:15:82:a6:6c:9e:c0:f2:d6:
3e:ce:62:81:06:a8:b1:2e:6d:ce:5a:b0:67:22:87:
6b:f5:fa:46:55:16:8b:85:81:39:fe:66:f4:9d:00:
c7:f4:59:f6:a7:f9:7d:92:de:62:9f:71:b1:ca:0b:
5b:36:83:42:43:f8:9a:d7:d4:94:99:47:08:de:aa:
22:a1:31:8f:47:72:34:a3:b0:c5:09:4a:18:6a:b2:
08:81:5f:50:0f:4f:f9:fc:b7:5b:84:3e:88:2f:8f:
74:aa:cd:33:b0:71:e4:15:03:14:8a:15:71:f1:ef:
b5:67:bc:4f:5f:d3:86:25:71:d5:f5:a5:fd:d3:e6:
d9:2e:59:35:7e:18:7d:15:e1:93:09:7f:2b:ed:40:
b1:4e:23:39:f0:aa:2e:8a:72:02:c5:1a:5a:d4:0a:
a8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D4:A1:F6:BD:69:7F:5A:FE:93:51:88:F4:5E:AA:9A:28:4F:36:9D
X509v3 Authority Key Identifier:
keyid:35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:d8:fd:3f:61:11:bd:6e:21:05:70:32:dd:26:3c:91:d0:da:
98:65:2a:78:88:26:2b:e8:87:06:5e:00:1e:01:98:19:52:8c:
67:37:4d:d9:71:95:af:0c:c2:61:9f:4d:03:45:3d:2f:1d:03:
82:d5:49:36:6b:56:42:4a:e6:09:4d:7a:f1:7a:be:04:5b:65:
1e:62:f2:22:f6:54:02:cb:d3:71:cb:a3:1f:0f:2f:48:56:c4:
0e:8b:b0:29:56:3b:1e:5c:8f:53:5b:85:08:9f:88:c4:10:66:
9b:f4:13:3c:a6:c3:24:48:a7:2c:26:1d:8c:96:15:9f:cc:76:
19:32:5d:be:ae:83:fb:ed:7e:17:43:e1:ed:77:4d:4c:59:5c:
a5:3d:47:59:96:2f:52:21:a9:23:b9:a4:92:1a:3a:04:30:40:
de:3d:94:80:ee:b1:11:e0:2a:f4:b1:b0:2d:33:7c:01:1c:d9:
9c:2f:12:d4:13:2a:98:7e:b6:72:5d:a9:f4:dc:a7:d9:fc:88:
a5:5e:8f:48:4e:89:bf:5c:49:2d:22:b8:95:57:61:ae:93:9b:
3c:8c:40:9d:a5:aa:1a:5c:c9:e2:99:65:db:c3:a9:cc:35:db:
65:ee:4b:4a:23:cd:33:89:2f:be:02:0c:1e:c9:1f:7b:03:9d:
49:63:0d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:23:22 2024 by rpki-client on console-ams.rpki-client.org