Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
File: NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft (raw, json)
Hash identifier: jdtDb3JUNyfSQu6BKpWk4jtKaxtPzcRwxA8JBMFtLYU=
Subject key identifier: 55:E1:C5:A3:6A:82:9A:74:C4:81:AC:EF:66:18:1C:7E:4D:42:C8:5B
Authority key identifier: 35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
Certificate issuer: /CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Certificate serial: 0191F9D9C3CA907D0AC3DD38723AED6F95AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
Manifest number: 8D
Signing time: Mon 16 Sep 2024 08:01:23 +0000
Manifest this update: Mon 16 Sep 2024 08:01:23 +0000
Manifest next update: Tue 17 Sep 2024 08:01:23 +0000
Files and hashes: 1: JzA7Qrk4fD_Zlr7bKnvOA0QE85k.roa (hash: sMQcSKf652A0jtQdxB+AsAuw43ekr1S2J06nhpl75+k=)
2: NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl (hash: kuxEenvBeiPixgmaMjboGJQ6rF8+MN69aGxQjo5HV2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 08:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:d9:c3:ca:90:7d:0a:c3:dd:38:72:3a:ed:6f:95:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Validity
Not Before: Sep 16 08:01:23 2024 GMT
Not After : Sep 17 08:01:23 2024 GMT
Subject: CN=55e1c5a36a829a74c481acef66181c7e4d42c85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:04:d2:b7:fb:2e:82:26:f5:e9:1c:26:16:79:
be:c7:25:78:a2:67:93:b5:cf:c3:c4:30:eb:fb:8e:
6b:92:6b:8d:bb:7b:92:16:7c:e7:1b:c8:f3:1f:d5:
9e:56:bf:a9:e3:d7:d5:4e:f4:7d:0a:36:7e:80:d5:
03:f1:ad:1b:ac:b5:1f:ac:2e:5e:0d:87:7a:58:72:
33:65:66:99:c8:48:2e:da:5c:14:36:09:b6:c4:6f:
1f:f1:41:e4:c0:bb:70:bd:bf:0b:8b:09:10:9d:c4:
92:6e:57:bd:92:28:b6:31:95:62:4e:1b:bf:55:fa:
92:45:bd:38:8e:c9:d5:cd:c4:f2:78:e6:dd:15:bb:
d6:9f:e3:ef:a3:64:fb:d1:9e:95:18:ad:6a:bd:b8:
61:f2:ac:7f:f8:81:44:90:9d:35:f1:77:99:73:1a:
82:70:88:40:58:82:c8:77:54:aa:a5:a2:75:80:77:
53:1e:e0:75:38:0b:8f:b9:25:53:78:4d:ad:06:33:
12:a8:39:52:e4:b8:f6:1b:7a:33:0b:2d:1c:44:14:
89:c5:54:0b:48:98:30:95:7e:2e:6f:0a:8c:3d:e1:
10:5c:58:04:02:11:f3:3b:d4:65:4f:b6:ee:c7:80:
d9:17:2b:9f:7a:8a:22:bb:3a:ad:59:e1:c9:0b:68:
be:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E1:C5:A3:6A:82:9A:74:C4:81:AC:EF:66:18:1C:7E:4D:42:C8:5B
X509v3 Authority Key Identifier:
keyid:35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:16:f9:bc:e0:48:16:63:8f:b2:e3:b8:5b:66:0a:71:0f:66:
b7:09:83:27:77:c6:81:8b:1f:81:ee:c7:1a:90:bd:bd:e7:cc:
fe:50:67:45:db:07:e5:79:a6:e5:2b:c8:80:5e:a1:65:f7:36:
f0:48:68:39:9b:9d:eb:74:d3:b0:78:57:4d:66:1f:0d:2e:8f:
ce:b8:51:b1:ef:e8:63:a1:ea:08:36:b7:a7:b5:0f:0d:22:b3:
42:dc:a5:f5:03:a7:e2:4c:0e:d5:15:04:24:44:a3:37:52:d7:
11:32:67:02:71:db:88:82:17:de:cd:d3:da:4f:97:5c:58:49:
37:9d:91:9c:71:00:c1:90:04:40:1e:cd:02:63:1d:eb:89:ba:
00:d2:c3:7e:15:65:5a:52:4a:1a:65:ac:e0:34:bb:15:af:cd:
2d:37:05:30:b6:3a:38:3e:82:fc:be:e2:4a:f3:3f:5b:71:9c:
f1:1d:71:50:99:54:5f:84:c5:c1:04:60:cb:09:4a:b8:a8:c4:
25:ec:32:53:c9:18:e6:15:53:2b:eb:7a:38:57:40:05:33:ed:
2b:33:6c:6a:b5:a2:13:9b:cc:25:d7:7d:aa:0f:ec:91:36:f2:
a1:45:3d:9d:ad:98:65:6c:8e:c8:20:b5:f5:69:35:04:25:fd:
f3:3f:c6:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:20:43 2024 by rpki-client on console-fra.rpki-client.org