Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
File: nzcg6XD6oOB_UKY4nnrlOvpDnas.mft (raw, json)
Hash identifier: TIJgVrKpRFKrXe+BCmD7uFsUdmqvJ2WGbRifOrdAcYI=
Subject key identifier: AB:29:1F:AC:6B:87:2E:2E:A3:46:6F:8B:91:0F:88:CA:CD:87:1F:52
Authority key identifier: 9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
Certificate issuer: /CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Certificate serial: 0193549AA9D99B0BF0210727FAB234191B9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
Manifest number: 1374
Signing time: Fri 22 Nov 2024 16:00:42 +0000
Manifest this update: Fri 22 Nov 2024 16:00:42 +0000
Manifest next update: Sat 23 Nov 2024 16:00:42 +0000
Files and hashes: 1: IqddwKVGNM3dMwcNyNWktXSDNoU.roa (hash: wImUcCKqHbyU9lbyjHzF+Ohtk4YlgcaQP7nHOjYLSJQ=)
2: nzcg6XD6oOB_UKY4nnrlOvpDnas.crl (hash: ZTOfXYXo6On0nR6jG8ieliu1ZfVgAsCd5jqyHIanlIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9a:a9:d9:9b:0b:f0:21:07:27:fa:b2:34:19:1b:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Validity
Not Before: Nov 22 16:00:42 2024 GMT
Not After : Nov 23 16:00:42 2024 GMT
Subject: CN=ab291fac6b872e2ea3466f8b910f88cacd871f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a4:52:b6:d1:bc:5a:ba:b7:f6:3a:4e:0d:0a:
0f:3f:2f:59:1c:f9:a4:d3:f9:2e:28:21:94:09:56:
3e:61:4d:79:7f:57:9e:23:b2:22:62:50:d3:62:8e:
07:3c:f6:ed:6f:72:2f:cf:a0:f8:b9:25:3c:6e:2e:
e8:1a:9a:e6:37:79:dd:f3:8c:a5:64:b1:74:41:4a:
66:b1:a7:18:ea:3c:3f:09:ab:3c:58:0f:36:34:ab:
a2:ce:04:57:a4:65:c0:6f:f9:42:f3:1c:09:71:c4:
88:7e:98:fc:17:a1:c4:14:9f:07:5f:09:67:8b:e4:
8f:71:47:81:22:31:fc:03:26:85:1d:97:37:5c:b2:
ad:17:11:9a:cf:81:e1:11:b6:97:b1:74:c0:db:16:
e7:34:8e:13:12:88:3e:78:60:f5:67:bf:88:f8:35:
06:61:fc:4b:cc:9d:3e:e3:5f:7e:de:ef:2b:4f:f6:
36:eb:cc:76:98:2a:f2:44:0f:06:9d:39:a8:16:0b:
39:f6:09:11:2d:e8:38:d8:d0:f8:84:50:56:37:97:
e2:d9:84:cf:91:0d:64:1c:6b:f2:19:c7:b2:8b:c2:
da:e0:ed:27:6b:aa:ec:1f:4f:63:82:46:76:66:1c:
55:7c:30:fc:39:b3:e4:31:b9:62:de:b6:be:1b:90:
61:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:29:1F:AC:6B:87:2E:2E:A3:46:6F:8B:91:0F:88:CA:CD:87:1F:52
X509v3 Authority Key Identifier:
keyid:9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:58:06:a1:5e:02:53:92:f5:0e:b5:17:5d:6a:83:37:0c:2b:
69:fe:15:da:ab:dc:a6:21:ec:3f:57:85:eb:0b:d0:c9:7a:a8:
d6:43:bc:7d:e8:04:55:83:d1:22:97:c3:42:0e:17:05:11:a6:
86:b1:e0:f2:06:20:36:21:9a:72:4e:3b:1e:af:23:15:81:1b:
a8:6f:78:90:ba:49:36:c1:c2:7e:01:38:0b:f9:4b:dd:64:fd:
eb:d7:86:4a:22:c2:b7:8a:29:51:c1:51:2e:e4:08:93:46:c6:
9f:71:0a:26:59:c7:fb:8f:31:0d:0a:8f:ad:32:0c:70:dc:3d:
95:68:5e:7b:3f:63:86:0c:33:1f:6f:aa:d5:d7:52:71:ce:50:
a8:ad:8e:b8:82:71:80:09:64:ff:91:48:fc:53:6a:b0:76:71:
61:38:65:33:bf:c0:1a:34:25:16:98:7f:cc:5e:a9:9a:ba:a8:
08:3e:32:20:5a:31:d6:f5:31:ef:cd:0f:59:47:bf:a9:4c:c3:
a9:1a:91:27:20:73:05:14:1a:99:ab:a0:1e:e3:fe:b5:6e:c1:
37:5c:01:1d:ac:fa:62:48:fc:cd:91:50:96:d9:9f:de:be:90:
8a:5f:99:88:03:71:e7:08:d8:47:56:23:f6:d2:0b:c3:14:8e:
3e:b7:be:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:25:18 2024 by rpki-client on console-fra.rpki-client.org