Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: PCvfj++EBpuGmbXURE8cBfBSgy6FoYMxbAHSbhn75l0=
Subject key identifier: DD:9B:4D:CE:38:EC:AC:74:7B:3F:EE:DE:51:3D:AA:D9:71:24:EA:D9
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019356893C6F08FA878F10309C40A0E7C502
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 0D7A
Signing time: Sat 23 Nov 2024 01:00:54 +0000
Manifest this update: Sat 23 Nov 2024 01:00:54 +0000
Manifest next update: Sun 24 Nov 2024 01:00:54 +0000
Files and hashes: 1: e6apXmgSdIO0mVBSQcee-Tfqznc.roa (hash: yvXoOpCx6KKBOJ/1EptwXDdJNgNW4KIJQ0FlA1cFiLc=)
2: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: T7/KKle5lnA8wVBbzUqOhF6Ac9cRLYKwwMvt/S09l5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:3c:6f:08:fa:87:8f:10:30:9c:40:a0:e7:c5:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Nov 23 01:00:54 2024 GMT
Not After : Nov 24 01:00:54 2024 GMT
Subject: CN=dd9b4dce38ecac747b3feede513daad97124ead9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c0:1e:f3:a2:53:7b:ed:33:eb:c0:40:2f:ab:
8d:c2:bb:9e:b2:cf:43:c8:23:66:0a:bf:49:1c:86:
59:07:01:b3:1d:69:94:bb:14:10:83:5a:31:8c:04:
06:9a:81:ae:d7:e0:78:ee:12:51:2c:57:87:30:40:
4d:f2:20:5f:5d:cc:ac:58:0f:6c:fa:a4:28:42:90:
0d:6e:29:bd:d8:ed:87:c6:93:4c:ab:a6:fb:b6:cc:
cd:df:cf:2c:c9:40:5e:f8:dc:64:d3:a0:e3:0b:79:
d6:1f:ba:41:e5:2c:8d:64:aa:f4:5c:b6:da:1e:49:
f4:4d:3c:52:ef:17:eb:31:5f:78:40:df:79:26:e3:
91:c2:0c:52:17:91:d3:6c:3f:ca:03:05:64:aa:0b:
c4:7c:da:5f:e9:3e:e7:7c:46:ea:fc:52:c4:a5:80:
b4:d7:79:9b:9e:89:ff:f0:9d:cf:e7:97:81:69:ee:
6b:39:a8:3a:cc:46:14:85:81:f0:b2:8c:60:8e:b8:
bd:4f:c1:55:fd:5b:9b:3c:6e:c4:a2:0d:f4:b9:93:
4a:fe:79:4d:f4:60:5f:70:27:c7:27:28:e5:d6:af:
bd:6d:b5:d8:4d:63:90:0d:da:7a:74:75:e1:db:73:
a9:21:3f:15:a4:4d:00:0a:f9:24:4d:00:d9:f2:20:
62:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:9B:4D:CE:38:EC:AC:74:7B:3F:EE:DE:51:3D:AA:D9:71:24:EA:D9
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:dd:6f:fa:d6:89:aa:63:60:25:7b:ed:b1:db:78:38:d2:90:
20:16:cc:a4:db:29:d4:83:e8:a8:f8:97:5b:3b:96:65:4b:4b:
75:8c:46:cb:c5:5b:f8:b8:fa:03:d2:3e:60:f0:38:46:81:ce:
8b:7e:69:40:03:f9:43:4e:5d:2b:82:7c:9c:7e:c8:fe:de:50:
93:29:45:24:1c:0b:1b:f7:66:6d:31:12:c7:36:ff:de:bf:6c:
12:27:e8:20:ac:e9:60:87:b9:24:66:56:ee:ff:40:81:eb:69:
65:9a:44:cf:b7:0b:62:fc:ae:ee:f5:d4:a0:33:f4:23:18:dd:
69:d6:49:07:c5:e9:8c:26:42:19:bd:7a:09:cd:8d:1c:fe:5f:
0a:cc:bb:92:d8:e9:c5:3b:26:69:89:8a:99:4f:74:57:43:5f:
1a:97:4a:9a:bb:97:d3:a7:d1:70:15:ea:90:ed:40:7f:7d:52:
32:b7:ac:c3:28:69:be:78:5c:16:2b:03:83:8c:2d:78:bf:25:
01:d0:3d:f8:39:56:24:14:e6:ce:bc:8c:af:b4:d8:00:39:8b:
32:b7:f1:94:ee:25:eb:de:51:4c:37:f3:ad:75:f7:58:31:e9:
01:c9:84:05:b1:96:09:10:9f:ac:ea:13:0d:3c:6e:4f:4c:d3:
6b:55:89:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:30 2024 by rpki-client on console-fra.rpki-client.org