Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: xxQCAl0WypKBiG8ftirjL9oojYA7yI6dfYUL5U/8MVU=
Subject key identifier: B9:1D:D6:BD:0F:26:6C:3B:DA:CE:84:60:C4:98:2C:1A:2D:AB:87:A7
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 0193579B8827D2D4D0668C15AF10C817A159
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0624
Signing time: Sat 23 Nov 2024 06:00:30 +0000
Manifest this update: Sat 23 Nov 2024 06:00:30 +0000
Manifest next update: Sun 24 Nov 2024 06:00:30 +0000
Files and hashes: 1: 1-_KJPDIJXPqZE6wlSMYKCN9PsD4.roa (hash: pAnW6pceU/b3Fs/ciYw70J/5fQuyk3fb4arM4SLGndI=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: 60rpJhD9tejfGheirl2TRDERFUfDZ6sNTXZkusXwXag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:9b:88:27:d2:d4:d0:66:8c:15:af:10:c8:17:a1:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Nov 23 06:00:30 2024 GMT
Not After : Nov 24 06:00:30 2024 GMT
Subject: CN=b91dd6bd0f266c3bdace8460c4982c1a2dab87a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6d:77:1e:34:9b:1a:da:72:53:ef:da:c9:4c:
2a:0a:2c:a3:fe:e6:7f:e6:8a:5a:5f:d2:31:d4:e7:
03:9b:40:0f:39:92:89:1c:7b:45:40:1c:0a:e1:03:
97:73:64:31:e1:31:00:9b:b5:c4:33:fc:bf:0e:3d:
ad:23:3a:89:c2:46:e9:d4:69:90:a7:55:41:f1:63:
97:d6:cd:d5:e7:70:c0:a8:6a:c2:9d:53:70:8b:4f:
8a:35:51:e9:f8:79:72:eb:bf:b4:5c:f0:cc:fa:2b:
43:a7:dc:ee:f3:71:69:f3:fe:df:2c:d9:89:bd:8d:
70:bf:6a:e0:fb:0d:5a:15:6e:13:e6:41:4a:56:86:
79:a3:5d:26:52:f5:d0:43:6a:3e:4d:05:ff:ca:40:
58:05:99:25:51:53:b0:d5:fd:57:3c:f6:21:42:e1:
34:0b:0d:1e:6c:36:bb:e7:41:08:67:6f:d4:f8:63:
d5:81:28:85:30:7c:d5:34:6b:f0:a8:33:9e:e8:78:
2c:16:7e:c7:d5:de:52:54:94:81:70:49:15:51:95:
f9:05:89:0e:27:1e:b4:0a:b6:21:00:7c:82:8e:d5:
29:d2:1d:e4:e6:0a:ca:42:2f:c9:ed:d0:6c:b9:83:
93:1a:7b:c1:c1:46:bd:8e:c6:a8:c8:25:cd:6c:0e:
df:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:1D:D6:BD:0F:26:6C:3B:DA:CE:84:60:C4:98:2C:1A:2D:AB:87:A7
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:6b:11:2f:f6:48:5c:42:c9:ef:08:1c:69:46:20:1e:da:09:
d3:01:c1:4f:cd:3f:41:5f:b8:27:bd:a4:04:2d:31:6c:55:ba:
09:ed:6e:c4:b2:0c:b8:68:94:8e:12:c8:2a:c7:c6:52:8a:31:
07:70:a6:ce:aa:84:3a:7b:ce:8a:a8:2c:be:41:5b:d6:c2:c8:
03:0c:50:b3:34:f3:1f:6e:d2:3c:cf:94:00:eb:7e:78:9d:82:
e0:6f:68:96:c1:76:ff:4f:c5:14:ff:31:4a:e2:1c:be:ee:28:
28:01:79:1c:c3:24:6e:9b:0f:98:df:b2:f3:72:db:43:d9:67:
54:32:42:ec:9b:d3:5f:60:2c:cd:84:a6:67:11:26:f3:b0:4c:
c1:b5:90:0c:33:52:a7:98:ce:8d:23:ea:ae:bd:b3:3a:02:f8:
fe:62:63:57:f0:67:fe:1c:ee:b6:2b:29:8e:a2:58:d6:3c:17:
fb:ab:d1:ae:9a:9c:9f:d9:4f:49:01:f2:6c:60:1b:21:08:f8:
14:42:51:f3:49:c4:83:1b:8e:d5:c6:82:55:d5:8b:59:e7:8b:
5e:b8:c0:05:dd:45:59:e7:c1:79:c5:14:c1:2f:c6:c3:7a:dc:
de:f7:69:bf:d7:6a:c4:e6:13:b9:92:f1:72:dc:53:99:c6:cd:
7c:ed:22:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:13:28 2024 by rpki-client on console-fra.rpki-client.org