Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.mft
File: nfbRY1k964rv8HL-yljm8_HE5-U.mft (raw, json)
Hash identifier: w2z67LmMvx8hKksFfV3UOgpcf3EtBaw/Fn+kdWKJev4=
Subject key identifier: 17:6E:AE:2A:63:8E:ED:CF:D8:4A:C8:47:C7:17:C3:FC:E0:F0:58:AC
Authority key identifier: 9D:F6:D1:63:59:3D:EB:8A:EF:F0:72:FE:CA:58:E6:F3:F1:C4:E7:E5
Certificate issuer: /CN=9df6d163593deb8aeff072feca58e6f3f1c4e7e5
Certificate serial: 0194BABB62BDE025E834968A8237E544D5C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfbRY1k964rv8HL-yljm8_HE5-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.mft
Manifest number: 0AC5
Signing time: Fri 31 Jan 2025 05:00:30 +0000
Manifest this update: Fri 31 Jan 2025 05:00:30 +0000
Manifest next update: Sat 01 Feb 2025 05:00:30 +0000
Files and hashes: 1: XM057xIBl4X4QJASTmfkRwaiNaE.roa (hash: vZ1H1/yQjb9EVPL0oyydRTCpB/F5AEPyVx/M+2z5CZ0=)
2: nfbRY1k964rv8HL-yljm8_HE5-U.crl (hash: 0DI1bqojtCJcevCS7XybKhqCNqOsA97G2xwlwLBPcdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfbRY1k964rv8HL-yljm8_HE5-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:62:bd:e0:25:e8:34:96:8a:82:37:e5:44:d5:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df6d163593deb8aeff072feca58e6f3f1c4e7e5
Validity
Not Before: Jan 31 05:00:30 2025 GMT
Not After : Feb 1 05:00:30 2025 GMT
Subject: CN=176eae2a638eedcfd84ac847c717c3fce0f058ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8e:62:11:f9:0d:b5:fe:33:0d:a9:73:38:4d:
b7:29:98:fb:c8:72:61:3a:2a:0b:94:df:9d:c5:1f:
7b:d3:ea:7f:3b:83:f1:c0:fd:f2:34:a4:56:b8:01:
36:48:0e:59:99:a8:16:60:a3:fe:de:ca:24:6f:e1:
0f:1e:38:d4:71:ac:10:c0:5c:4c:e6:fc:bf:61:6e:
d2:d6:6e:60:f2:e8:01:37:4b:ea:91:3d:de:f3:49:
2f:5e:dc:66:96:1e:60:5a:91:88:c5:c7:b8:cc:44:
b3:5e:e9:04:0c:c6:f0:07:e3:44:0e:8a:4d:ba:12:
f5:4f:40:e3:a7:20:f3:10:bb:3b:ef:77:5f:ce:41:
97:a7:61:10:4a:6d:8a:83:23:81:f6:fe:7c:10:fb:
a6:34:69:e9:12:91:c6:56:e0:0a:94:a6:1d:f8:1e:
36:8c:a2:8c:1a:18:3e:fb:69:5c:10:1c:10:09:03:
cf:85:ac:4c:28:d6:7d:dd:21:e0:ea:0d:98:fb:ef:
6d:90:2b:2f:15:14:87:06:30:b8:16:6f:35:d0:9f:
b6:65:e5:c0:02:a1:4e:61:49:8f:9a:76:d1:b4:86:
89:90:70:0d:0b:24:6f:40:04:ab:fa:0d:55:de:d0:
da:c1:7f:56:e1:7a:29:22:a6:a4:16:07:58:64:b3:
8e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:6E:AE:2A:63:8E:ED:CF:D8:4A:C8:47:C7:17:C3:FC:E0:F0:58:AC
X509v3 Authority Key Identifier:
keyid:9D:F6:D1:63:59:3D:EB:8A:EF:F0:72:FE:CA:58:E6:F3:F1:C4:E7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfbRY1k964rv8HL-yljm8_HE5-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff25d7-5ffa-4686-8326-69d79c9d0721/1/nfbRY1k964rv8HL-yljm8_HE5-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:ee:0a:fb:dc:ca:0e:62:5a:c2:6a:34:87:4a:ef:0c:07:ad:
a8:e3:75:b2:db:f1:96:db:34:67:0c:7f:2c:f0:cc:86:fe:8a:
07:62:88:a8:04:b0:ca:45:00:0e:ad:91:72:72:cc:c2:c3:ca:
98:8d:44:aa:07:49:db:62:5c:83:d0:b1:48:86:71:6c:08:17:
79:53:ef:b6:59:0d:46:3c:ee:98:f9:fa:34:40:91:2f:f2:ba:
ee:be:0f:8d:3a:d0:de:26:89:35:49:2a:99:b3:15:61:97:17:
e2:04:d4:25:52:e0:7c:5c:90:b5:61:44:56:c4:39:30:1a:c3:
fa:c6:5b:01:ee:44:2e:19:27:6c:fe:ff:e8:6c:6e:f9:5c:ed:
62:61:0e:4c:c8:b8:52:bc:e9:5f:9e:a6:96:36:a9:71:5a:83:
53:2d:e8:10:63:92:c0:90:52:6e:27:35:3e:4e:da:c3:87:f3:
cb:95:1f:8d:1a:f7:e0:09:63:20:c3:03:be:38:bf:36:91:f5:
e3:3e:69:8f:2f:1d:f1:1f:ef:af:af:db:72:c7:df:90:99:29:
f5:b2:d7:b6:7e:20:ab:6e:ba:04:12:6f:06:23:e7:61:5d:c2:
2a:d0:a3:ba:8f:ca:7c:ef:71:0d:45:01:a2:97:74:38:e5:fd:
e4:4b:f3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:17 2025 by rpki-client on console-fra.rpki-client.org