Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: AQjmBghj6lQbkLfhaNtlyjH8jUrxdguQ+hS9SF7afNQ=
Subject key identifier: 31:93:D4:78:14:6F:05:32:A9:F0:08:31:FB:F2:7E:23:51:66:E4:37
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 0193553F68C304E4A442BA63E6BB15BB60E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0955
Signing time: Fri 22 Nov 2024 19:00:39 +0000
Manifest this update: Fri 22 Nov 2024 19:00:39 +0000
Manifest next update: Sat 23 Nov 2024 19:00:39 +0000
Files and hashes: 1: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: AZ2KMWOl9wI8DbWeDJNSoNREiaFW2n1eFcdU5cqEX3E=)
2: jEVLVtHeGZ5kA-UP9tTmuQJyZl8.roa (hash: 03fMx5vQg2kgIfqIK8vU+d9ikJ3qb0FY5wEFXPqu0OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 19:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:3f:68:c3:04:e4:a4:42:ba:63:e6:bb:15:bb:60:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Nov 22 19:00:39 2024 GMT
Not After : Nov 23 19:00:39 2024 GMT
Subject: CN=3193d478146f0532a9f00831fbf27e235166e437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3e:89:34:fd:9e:06:d5:71:86:f3:4f:9f:24:
77:cf:f7:aa:b7:9b:dd:86:4d:12:90:a2:75:fe:40:
75:c3:c9:5c:6a:eb:89:ff:6e:cc:95:8c:6d:4a:1a:
f7:9a:18:f0:ac:20:b6:6e:74:d2:92:5f:7e:e2:ed:
51:9f:4e:6c:a6:4a:21:22:46:9a:44:61:ed:39:62:
e2:4e:b6:2e:03:9d:36:9d:71:f9:6a:49:61:4b:74:
83:a5:ae:e8:48:64:cc:f1:66:f1:a9:a4:72:ad:a6:
8a:63:70:1c:2d:2b:9f:70:8b:96:73:1a:e8:d1:ff:
a7:e6:c5:f3:36:ab:c5:a6:37:f7:29:6a:37:43:93:
60:78:a5:53:86:e0:a3:13:f8:bd:2f:b2:f6:8e:26:
e5:1f:47:d4:d0:b2:0e:6a:fb:61:24:35:c9:11:7e:
b5:b6:48:c6:82:85:4f:d4:ed:e6:d5:5c:db:2a:28:
25:ca:33:fc:ce:83:ed:fe:60:f7:11:86:d4:8f:1c:
66:56:ee:1e:76:6d:3a:42:8f:12:47:50:5f:dd:7c:
bf:35:39:83:7d:ba:1e:8d:9a:3e:ea:65:3f:2b:9e:
6a:c7:42:bd:a6:53:db:0a:bb:46:bc:57:bc:63:c7:
d9:7d:c8:b8:63:12:4f:42:16:2b:a9:6f:88:ff:4e:
f0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:93:D4:78:14:6F:05:32:A9:F0:08:31:FB:F2:7E:23:51:66:E4:37
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:e7:68:a0:1f:4c:9b:a8:ab:26:69:13:20:df:10:86:d8:f4:
36:29:3c:cb:4e:91:90:5a:d4:b4:e2:a4:93:86:60:6b:8e:44:
4a:a5:c8:ba:d5:5a:67:3d:fd:cc:01:8b:d8:f3:81:bf:e4:3e:
89:c7:81:3f:5e:a3:59:83:c9:6f:c6:a8:de:17:7f:77:6c:3a:
ce:84:d3:ed:3d:c4:6a:20:cb:a3:a2:2b:a3:eb:ec:4a:47:f6:
5b:ea:57:c5:9c:3c:4b:c6:d6:c9:a2:49:5c:7a:3b:d4:2a:d0:
85:9d:9c:ba:1b:7f:88:7a:f8:60:a4:7d:b4:d5:c2:26:ac:32:
a2:eb:82:9b:d4:85:61:ca:db:f3:10:47:78:ae:2e:b0:8b:09:
4d:67:d9:67:67:55:6d:78:ae:1d:18:96:12:92:a0:07:de:9f:
e9:af:4a:ad:c4:b8:39:fb:09:78:a3:f9:93:c5:8c:17:cd:8f:
03:55:7d:6a:82:05:14:b2:05:05:cc:df:9d:48:b0:f8:c9:70:
ce:00:ca:c7:63:72:44:31:f0:31:58:e9:cf:8d:f1:d7:63:11:
ae:44:87:d1:6c:96:93:f6:b1:6e:d4:09:19:7d:2a:86:aa:3f:
e8:b6:ae:61:4e:ed:c7:86:92:84:31:f4:cc:b5:19:52:e3:61:
8c:06:34:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNVP2jDBOSkQrpj5rsVu2DkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2MjZiOWU0NDQ2NWYwYmQ3MTNjMGExZTA1MDEwM2QzOTEx
ZGNkNjcwHhcNMjQxMTIyMTkwMDM5WhcNMjQxMTIzMTkwMDM5WjAzMTEwLwYDVQQD
EygzMTkzZDQ3ODE0NmYwNTMyYTlmMDA4MzFmYmYyN2UyMzUxNjZlNDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArj6JNP2eBtVxhvNPnyR3z/eqt5vd
hk0SkKJ1/kB1w8lcauuJ/27MlYxtShr3mhjwrCC2bnTSkl9+4u1Rn05spkohIkaa
RGHtOWLiTrYuA502nXH5aklhS3SDpa7oSGTM8WbxqaRyraaKY3AcLSufcIuWcxro
0f+n5sXzNqvFpjf3KWo3Q5NgeKVThuCjE/i9L7L2jiblH0fU0LIOavthJDXJEX61
tkjGgoVP1O3m1VzbKiglyjP8zoPt/mD3EYbUjxxmVu4edm06Qo8SR1Bf3Xy/NTmD
fboejZo+6mU/K55qx0K9plPbCrtGvFe8Y8fZfci4YxJPQhYrqW+I/07wtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDGT1HgUbwUyqfAIMfvyfiNRZuQ3MB8GA1UdIwQY
MBaAFDYmueREZfC9cTwKHgUBA9ORHc1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgt
MjhhNDY4MWMzN2Q2LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgtMjhhNDY4MWMzN2Q2
LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPOdooB9M
m6irJmkTIN8Qhtj0Nik8y06RkFrUtOKkk4Zga45ESqXIutVaZz39zAGL2POBv+Q+
iceBP16jWYPJb8ao3hd/d2w6zoTT7T3EaiDLo6Iro+vsSkf2W+pXxZw8S8bWyaJJ
XHo71CrQhZ2cuht/iHr4YKR9tNXCJqwyouuCm9SFYcrb8xBHeK4usIsJTWfZZ2dV
bXiuHRiWEpKgB96f6a9KrcS4OfsJeKP5k8WMF82PA1V9aoIFFLIFBczfnUiw+Mlw
zgDKx2NyRDHwMVjpz43x12MRrkSH0WyWk/axbtQJGX0qhqo/6LauYU7tx4aShDH0
zLUZUuNhjAY0JA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:37:16 2024 by rpki-client on console-fra.rpki-client.org