Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
File: nSh1M866BkWhSM8QyMJ-qachoJ0.mft (raw, json)
Hash identifier: er3LNP2cMy5g1nBIPPpAOaolUmGgrwREPr7woYz/8sE=
Subject key identifier: 32:17:66:81:F8:F7:16:BD:53:99:AF:FF:84:0A:26:66:7D:95:65:9E
Authority key identifier: 9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
Certificate issuer: /CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Certificate serial: 01935689B293FB5B4C7BA4A0C42535EC0314
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
Manifest number: 136F
Signing time: Sat 23 Nov 2024 01:01:24 +0000
Manifest this update: Sat 23 Nov 2024 01:01:24 +0000
Manifest next update: Sun 24 Nov 2024 01:01:24 +0000
Files and hashes: 1: 8AJQIDTBuUAL15BCsKy8zMXALGQ.roa (hash: LJQ5pExzBSTJ6uv1dQXnTQOLVXbdMyZmoPzjuaARMkk=)
2: QhbbceqjGd0mXJG3o06Z5ESXZ-I.roa (hash: upL5x6Qdb37oCRhDKobWoBsvdS0emmy9fylsGgWbpbw=)
3: nSh1M866BkWhSM8QyMJ-qachoJ0.crl (hash: rPI0cNaeUAkwRgEZWGHghxvukWxfl7rhBEb3jpXVlVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:89:b2:93:fb:5b:4c:7b:a4:a0:c4:25:35:ec:03:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Validity
Not Before: Nov 23 01:01:24 2024 GMT
Not After : Nov 24 01:01:24 2024 GMT
Subject: CN=32176681f8f716bd5399afff840a26667d95659e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ce:12:07:21:f5:0d:0d:e0:08:b0:12:03:1e:
0c:b9:9d:37:54:e6:6d:29:f9:f6:71:76:95:17:6f:
da:b3:d3:37:29:65:e4:84:ec:97:c9:ab:e5:8f:9e:
b6:94:33:14:50:08:b0:7f:5a:7e:5c:8d:6c:4d:28:
5c:99:33:1a:f7:72:bd:26:c8:65:27:59:04:eb:44:
f3:45:82:fa:52:03:f6:57:d4:b0:2a:65:c7:21:e7:
a1:88:dd:71:0b:4f:d2:d9:82:cf:f1:fc:b4:30:ee:
b1:9e:9d:16:34:2a:53:f9:fe:ea:7b:65:44:f1:e5:
c6:9e:f9:43:08:7e:af:d6:c4:74:c9:fb:b2:cf:3f:
f4:64:5a:a0:ce:98:99:f8:1d:1e:72:c0:6b:98:f5:
ed:c3:06:f9:2b:18:10:d3:f7:b7:1c:fb:f5:f7:25:
f3:3d:b4:62:ae:0b:e5:5b:7a:ec:c8:9e:77:0e:77:
fa:62:28:52:2b:74:1b:c0:0e:d5:d4:a5:42:e0:44:
22:ae:e6:92:ce:fc:46:42:f6:39:ce:da:29:da:64:
26:2d:29:cf:1f:92:6b:36:2d:35:3f:cd:94:96:78:
a6:90:b5:b5:84:24:46:93:40:f4:f3:94:17:b2:83:
14:8f:9c:ac:13:96:6b:e8:c1:ff:cc:b2:d4:80:29:
03:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:17:66:81:F8:F7:16:BD:53:99:AF:FF:84:0A:26:66:7D:95:65:9E
X509v3 Authority Key Identifier:
keyid:9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:ec:a6:81:c1:c0:c3:e1:59:ef:80:19:c3:e3:29:57:9b:a7:
51:57:8d:85:2c:57:73:40:8a:c2:cf:cb:88:3c:d8:38:a0:16:
13:6c:ae:ff:8b:e1:ae:78:b0:c0:0f:8e:92:b4:7a:b1:57:01:
9a:2a:ca:20:b7:6c:c8:0b:29:f3:f4:e4:5d:ec:9a:33:b3:73:
c4:5f:4c:dd:34:0c:d3:e4:49:43:6e:59:c6:bf:d3:fa:13:9e:
e4:ff:2d:f8:29:ea:64:c1:b8:7b:2c:43:1b:99:c4:c1:35:7f:
e5:3b:f8:a0:69:16:8e:3d:d6:ed:1f:ff:12:a5:18:cf:91:22:
19:e1:a7:e6:d6:a7:2e:d5:08:5e:d0:c7:5d:8b:93:0d:69:10:
89:25:13:5d:aa:25:1a:1f:10:69:67:d4:c3:8d:67:0d:ea:39:
c3:f4:10:c1:a4:ec:16:21:41:17:7e:9f:cd:e7:50:7f:59:c2:
5c:c9:1b:70:77:b1:48:8b:b2:ef:11:4c:e5:36:86:8b:64:52:
1a:5d:28:be:21:a1:da:17:30:b2:46:d3:9d:36:78:2e:a1:d7:
ee:2c:32:eb:e1:99:18:af:ae:60:f1:86:d5:68:b4:79:45:03:
08:7f:85:95:46:04:61:33:2d:31:9d:9b:da:fd:d0:d2:2a:ea:
64:c8:90:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:55:28 2024 by rpki-client on console-ams.rpki-client.org