Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
File: NPwYIZBVFuYYMg6eRxoTsqqslv8.mft (raw, json)
Hash identifier: 2b5q5KitzQUsCXCPJXUCst4jzKFGq2DrfGckf6bP7Dw=
Subject key identifier: 32:C7:EE:F4:C9:57:45:23:07:08:53:AE:FC:7A:7B:BC:9E:E6:9B:E3
Authority key identifier: 34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
Certificate issuer: /CN=34fc1821905516e618320e9e471a13b2aaac96ff
Certificate serial: 018F874900551BBD8EFA315BF2799E55EAEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
Manifest number: 1176
Signing time: Fri 17 May 2024 16:00:59 +0000
Manifest this update: Fri 17 May 2024 16:00:59 +0000
Manifest next update: Sat 18 May 2024 16:00:59 +0000
Files and hashes: 1: NPwYIZBVFuYYMg6eRxoTsqqslv8.crl (hash: knZetPmw6RFj9qs3gc90Z8xfzcnrlyjaV98bWsNV7xo=)
2: vDbS9qJkI9LVTG1HKralhuFtSzA.roa (hash: 1NkW41jnbMe2igdsejGLTAyM+l3x5aNfS5UmBZsD2zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:49:00:55:1b:bd:8e:fa:31:5b:f2:79:9e:55:ea:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34fc1821905516e618320e9e471a13b2aaac96ff
Validity
Not Before: May 17 16:00:59 2024 GMT
Not After : May 18 16:00:59 2024 GMT
Subject: CN=32c7eef4c9574523070853aefc7a7bbc9ee69be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:69:2f:2b:75:fe:46:6c:a9:0c:3a:28:6c:e0:
e3:25:d0:fc:f2:89:fd:8a:1a:02:63:04:1f:f4:ba:
10:88:42:72:07:24:86:ff:e1:51:0b:47:7e:f3:53:
12:ed:d7:ad:5b:03:79:1c:fd:11:b3:89:09:15:29:
bc:b1:dd:85:eb:0e:35:f4:d8:a1:59:20:4b:5a:60:
29:b7:e8:c2:4d:a1:cf:fe:10:03:b1:91:d6:ea:07:
ab:a4:ab:6c:2a:fc:a2:1a:03:f6:d0:e3:dd:94:f8:
e9:7b:76:80:19:1b:08:7e:b4:f4:8f:2f:79:d9:19:
91:01:e3:df:0f:58:56:11:f0:4b:c9:c2:bd:58:72:
36:b3:5f:f5:d4:01:9a:67:0a:b0:85:b8:63:b8:ea:
ac:1b:e7:96:97:84:5b:15:46:dd:1f:e1:51:bb:a4:
1b:b8:69:9b:31:dd:1f:ef:bb:bb:4f:bd:bf:08:56:
34:63:25:ff:ae:80:f1:1b:de:bb:e4:97:98:fa:84:
a1:19:e2:07:99:97:6f:16:26:59:3d:4d:e3:46:22:
bd:c3:f5:1f:de:09:9e:70:f3:74:f8:28:0a:3b:e9:
0f:9e:7d:dc:7b:35:11:72:dd:0a:82:46:99:ea:79:
06:55:35:d4:cb:9c:3b:b3:38:a3:2d:8e:0f:51:3a:
d4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C7:EE:F4:C9:57:45:23:07:08:53:AE:FC:7A:7B:BC:9E:E6:9B:E3
X509v3 Authority Key Identifier:
keyid:34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:ef:c3:c8:a1:09:d7:dc:e7:59:ec:36:76:ed:f5:88:43:91:
9d:b9:ad:5c:5b:28:c8:d3:6f:55:d4:da:62:50:97:a9:62:44:
43:41:fd:7f:1d:41:c7:4e:2b:3a:7f:32:36:4e:14:ca:d2:9e:
a6:59:23:64:06:0a:6f:b2:af:05:22:09:6c:96:7c:d6:0a:1e:
80:f1:fb:4e:7e:9e:8a:86:24:9b:3b:4c:6d:b6:71:cf:48:c5:
3c:d2:31:a9:86:5c:09:18:91:82:6e:f5:b5:5a:3f:d0:4e:94:
61:bf:3a:b3:d1:fe:cd:48:06:78:7a:34:cd:8a:e1:ef:ae:4b:
5b:e4:57:cb:1b:83:f3:d9:d8:b0:35:9c:a1:ea:79:19:e6:72:
43:c0:2b:9c:38:48:74:75:41:88:f2:70:73:70:7b:26:14:99:
42:0a:cf:f5:16:f2:9c:34:d9:e6:d5:96:98:be:2a:43:21:a3:
0b:f2:f6:ee:64:47:41:68:5a:72:f3:26:b1:c4:05:f3:66:98:
ac:5f:5b:7c:2a:91:16:96:2c:4a:7f:96:d5:25:e6:c2:8c:9e:
09:3e:bf:25:3a:e4:63:22:7e:61:9c:44:c1:3d:63:f1:05:1e:
2d:c6:1d:c9:f2:a1:f8:fd:9d:5f:03:1e:1f:04:3a:06:ba:2d:
cc:54:23:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:51:48 2024 by rpki-client on console-ams.rpki-client.org