Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: j5ifjJzk24z12rKo+Fh3LJRWtcHStCzSvUuBbV0+mjw=
Subject key identifier: 22:C3:68:25:78:BC:6E:E6:58:6C:0B:F5:9B:08:29:C7:9C:CA:42:7A
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 018F1746F3C8488DF20A74C08AEA26ABB8AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 0B47
Signing time: Thu 25 Apr 2024 22:01:16 +0000
Manifest this update: Thu 25 Apr 2024 22:01:16 +0000
Manifest next update: Fri 26 Apr 2024 22:01:16 +0000
Files and hashes: 1: e6apXmgSdIO0mVBSQcee-Tfqznc.roa (hash: yvXoOpCx6KKBOJ/1EptwXDdJNgNW4KIJQ0FlA1cFiLc=)
2: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: RYaG8kK6/WnZ5xVkuwEnSGhGZ8BebN6jtoWFX9iE2B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:17:46:f3:c8:48:8d:f2:0a:74:c0:8a:ea:26:ab:b8:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Apr 25 22:01:16 2024 GMT
Not After : Apr 26 22:01:16 2024 GMT
Subject: CN=22c3682578bc6ee6586c0bf59b0829c79cca427a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c2:69:e4:26:ed:54:85:7f:3a:a0:ab:a2:e2:
8b:63:0d:b2:a8:4d:98:06:0c:17:0a:55:99:b3:f7:
ba:14:8c:7e:5c:ef:0b:96:40:34:ee:4c:c8:09:06:
f6:1e:21:4a:07:5b:d8:67:15:6e:87:f8:8a:3b:f5:
c5:39:de:65:5a:a9:2c:d7:fa:46:66:cb:84:46:cb:
94:61:e9:a2:5b:bc:72:c3:e3:44:2d:b8:5c:f0:a8:
e0:7e:8c:45:d0:3b:70:71:de:18:4c:fb:d2:31:f2:
6a:74:22:d3:69:e4:20:55:65:98:8c:2f:36:b9:d2:
5e:95:61:0f:c5:9b:5b:a6:fb:c1:3c:29:4a:5f:7f:
a9:27:e3:98:97:ca:7b:25:a2:d2:51:9e:c6:0f:a3:
2b:1b:d4:ed:e1:27:34:85:ba:fe:3f:c3:0c:04:1f:
b7:fc:f4:9c:c9:8b:4e:4d:b9:40:8a:00:b1:70:f9:
11:93:c0:f2:93:72:74:c1:66:cc:d3:27:2b:ad:91:
dd:b4:22:e1:62:68:4e:de:33:50:62:95:90:37:74:
a5:b9:76:33:e3:69:26:fd:3a:6a:e8:de:dd:39:d9:
f1:fd:a7:f2:47:0e:5a:c7:18:cb:0f:0d:e2:88:40:
02:a5:fa:fe:cf:ff:1f:14:33:4f:1d:1a:ef:87:0e:
8a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C3:68:25:78:BC:6E:E6:58:6C:0B:F5:9B:08:29:C7:9C:CA:42:7A
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:cd:30:4e:77:ac:94:78:3f:38:08:d5:ff:ca:d7:28:b8:b7:
51:ec:f6:81:8a:4a:ec:fd:51:56:c1:a7:21:ed:dc:c2:72:b0:
77:ef:ee:fe:91:b1:8e:07:32:be:76:aa:f2:cf:66:f7:f7:cc:
8a:69:23:0a:0e:f8:34:a6:12:d8:29:70:81:e5:a1:92:85:04:
02:e7:aa:6e:1f:b9:39:c2:50:e8:06:43:3f:d7:71:f2:ec:96:
fd:e2:e3:6a:ee:7c:b3:e1:31:e7:61:67:99:62:4b:75:53:c9:
f0:19:e9:0a:4e:32:41:af:36:71:68:12:6a:46:c0:30:5e:aa:
31:07:44:59:05:8c:d3:51:a5:5c:7e:0b:5f:72:87:e1:df:83:
a9:d6:b3:03:18:8a:d7:3f:b8:1f:f6:32:ae:9f:f7:ef:39:c7:
38:91:3d:63:00:f1:63:ae:dc:9c:c8:9c:00:67:b8:f8:08:b4:
6d:a1:cb:53:8d:b1:5f:9d:bf:99:f5:47:44:70:28:37:9c:3f:
cb:88:db:37:e4:a8:69:b4:80:00:e2:7d:61:83:16:cc:81:cc:
d1:95:71:d2:83:13:23:45:df:4e:1e:ae:db:5b:a9:11:c9:30:
be:0d:b4:d5:31:ea:7a:86:e8:31:ab:d4:a7:b0:c1:83:a8:fb:
06:4c:00:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 23:35:05 2024 by rpki-client on console-fra.rpki-client.org