Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: MPU/14u8TbPRmQNgnttY972r2Ft7pQKm48bXvu7ubHw=
Subject key identifier: 39:E9:8B:8D:D9:90:33:3E:61:37:19:ED:87:12:3E:C1:A3:84:4F:22
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 018F93F169521C5AB0B86337530666968CDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0431
Signing time: Mon 20 May 2024 03:00:22 +0000
Manifest this update: Mon 20 May 2024 03:00:22 +0000
Manifest next update: Tue 21 May 2024 03:00:22 +0000
Files and hashes: 1: 1-_KJPDIJXPqZE6wlSMYKCN9PsD4.roa (hash: pAnW6pceU/b3Fs/ciYw70J/5fQuyk3fb4arM4SLGndI=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: ldreJFdb3ngotSrb/j0FUcJMw6xGpuuHWjunGZd4tjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:93:f1:69:52:1c:5a:b0:b8:63:37:53:06:66:96:8c:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: May 20 03:00:22 2024 GMT
Not After : May 21 03:00:22 2024 GMT
Subject: CN=39e98b8dd990333e613719ed87123ec1a3844f22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1a:96:51:98:30:09:c7:07:b2:2f:ce:04:2a:
3a:77:97:11:ae:74:a3:a2:a7:b9:48:90:b0:23:31:
b5:63:ec:3d:1b:23:6d:42:77:ce:16:d3:9f:69:6b:
99:4c:69:2b:d2:77:18:77:e5:72:8d:71:2b:dc:3a:
ff:fa:c9:6d:79:a9:2a:c3:f0:a6:d0:05:d3:49:29:
f9:ec:2c:eb:3c:8a:bd:a1:60:66:54:d1:c1:d0:24:
03:89:89:fd:a0:4d:51:10:f8:2f:91:45:17:91:34:
34:da:0f:72:6e:aa:68:80:ad:b1:e0:eb:e8:aa:f8:
60:b7:ad:c5:c7:a7:07:77:d9:62:3f:a9:99:0d:80:
1c:a6:d2:4e:fe:1d:62:9f:8c:87:e8:d6:0f:ab:4d:
32:57:bb:a6:86:63:d7:4c:e8:9d:6d:bf:e7:00:55:
f4:14:2d:56:d0:cb:bd:0f:d9:3e:30:04:0f:65:f4:
28:8b:fb:0f:76:63:50:77:a1:d7:7e:a4:45:95:cc:
69:27:7a:85:4c:0b:d5:15:7f:c1:88:61:d8:e6:71:
6b:41:5d:62:e0:cc:92:c3:17:7d:27:0c:dc:12:d2:
c2:94:99:c3:7b:9a:09:49:03:f2:0d:9f:e1:74:c4:
aa:0a:9b:10:73:4f:18:91:c2:24:df:73:b4:31:72:
40:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E9:8B:8D:D9:90:33:3E:61:37:19:ED:87:12:3E:C1:A3:84:4F:22
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:37:67:81:1c:57:86:e9:fb:55:0a:58:fb:1b:5f:02:06:c9:
05:de:cf:78:5d:bd:10:0a:56:8b:73:34:93:b0:c5:1b:7f:4f:
cf:ca:3e:d6:54:c7:e2:0a:97:17:de:57:ca:52:32:14:db:89:
bf:76:a9:d1:46:08:2e:b2:51:01:df:35:5a:b6:b1:0d:dc:f3:
bc:00:4b:8b:af:cb:0d:cb:2e:ec:aa:e4:15:47:ad:d2:9e:8f:
34:79:1a:68:05:37:ea:c0:06:58:6d:77:60:b5:a3:2c:7b:93:
dd:9c:25:a0:df:a5:cd:fd:8a:59:3d:19:9c:2b:c6:a2:2b:78:
0c:bb:4c:01:a2:d7:7a:64:eb:3f:35:ce:21:05:35:c5:96:55:
1f:0b:5f:6b:1b:1e:d9:88:1d:a3:6c:5c:87:63:42:4e:7b:18:
d7:0a:84:16:48:5d:0a:97:07:00:86:70:ee:f7:4d:0c:8a:e2:
08:fd:83:d9:aa:76:bc:72:9a:96:41:b1:a6:ca:21:d4:00:b9:
3a:6a:ea:54:36:cd:9d:19:76:87:a7:6c:90:25:26:9c:b0:35:
62:85:3e:f6:b5:54:2d:7c:c4:9f:00:b9:e7:dc:fc:f2:ec:d5:
c4:35:0f:ed:e3:fd:77:f6:5f:53:fc:a7:67:a3:17:1d:da:e5:
35:38:ee:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 05:22:33 2024 by rpki-client on console-fra.rpki-client.org