Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
File: NgAOvu0kK5VkrclUhTI7lr1vXAI.mft (raw, json)
Hash identifier: Qh7BRvpZy8wwS9YR3gKNtqwmvOuOjD2+6+X2jB1sKDM=
Subject key identifier: 01:AA:82:F9:3D:6A:75:7C:0E:AB:4F:42:A1:36:1B:79:A4:5A:1C:B3
Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02
Certificate serial: 019368C61D5500CA9578A233A04AE6C4C424
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
Manifest number: 0EE8
Signing time: Tue 26 Nov 2024 14:00:34 +0000
Manifest this update: Tue 26 Nov 2024 14:00:34 +0000
Manifest next update: Wed 27 Nov 2024 14:00:34 +0000
Files and hashes: 1: NgAOvu0kK5VkrclUhTI7lr1vXAI.crl (hash: 6d4YMlqT9/yf6n3LLk5m769y1RTiNbuGBjdLa7wxxwQ=)
2: W-9tBFA5wq9Bcqd3MQXOZXGGReE.roa (hash: lm8n3jLQADNcCvaDf9li1iBfcqtnSAzuEDDnZv6Y9ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:c6:1d:55:00:ca:95:78:a2:33:a0:4a:e6:c4:c4:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02
Validity
Not Before: Nov 26 14:00:34 2024 GMT
Not After : Nov 27 14:00:34 2024 GMT
Subject: CN=01aa82f93d6a757c0eab4f42a1361b79a45a1cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5e:aa:ff:92:9b:7c:76:a7:cf:03:1b:48:00:
2b:f9:ec:10:e2:37:f3:64:ac:d2:53:dd:28:a8:fa:
2f:36:bc:06:83:cf:6a:e1:b1:51:bf:c2:b6:43:80:
f3:22:4a:38:89:cd:d7:bf:e4:ce:ab:f7:c5:6a:f6:
c2:d6:e2:c8:e4:25:c2:33:fe:13:4e:43:f1:8b:45:
12:42:8b:f6:17:32:66:40:80:80:59:94:7b:86:aa:
54:96:c3:f1:c1:64:3a:1a:0e:ee:f0:81:97:b9:58:
9a:e9:2a:0c:d2:e6:35:c6:42:b9:de:fe:b2:b3:45:
97:fe:e5:13:90:1b:66:ca:03:5e:c2:9c:c6:5e:55:
bb:d9:82:53:1c:2f:b8:e7:d8:89:16:a2:c0:b9:ac:
a7:2a:b7:74:ce:ba:25:8f:fa:4d:a7:d8:37:c5:e5:
17:b6:b4:1b:fc:60:7b:76:50:41:e6:53:be:ca:95:
d1:ad:04:9a:28:b9:28:ad:ea:f5:f6:eb:a3:76:f9:
f9:e5:11:03:6c:1b:c7:44:07:43:fa:ef:0a:48:28:
ef:af:19:d3:c1:9c:ac:80:b9:11:d8:aa:8c:2f:8a:
55:cf:e8:96:8b:b9:f3:23:5f:6f:df:d0:4b:02:65:
ef:2f:91:a9:e3:e4:05:b6:93:bd:ec:7d:42:44:40:
d8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:AA:82:F9:3D:6A:75:7C:0E:AB:4F:42:A1:36:1B:79:A4:5A:1C:B3
X509v3 Authority Key Identifier:
keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:58:6d:0f:c8:a4:e6:65:8e:f1:0e:cc:f3:da:17:27:4e:ef:
a6:5c:2d:3b:cc:ff:6b:bc:57:ce:ab:f6:a0:a1:74:c4:11:2b:
9e:d3:af:52:45:20:43:de:58:de:29:11:34:a3:7d:45:47:2b:
5a:58:ac:02:84:f7:62:17:11:d0:0f:d4:22:1c:b0:25:2a:7d:
db:6b:55:33:f9:5c:c3:50:b3:d3:46:6a:d8:71:b1:00:da:9b:
9e:93:46:77:53:d0:96:d8:1c:a6:0e:75:d0:19:01:ac:52:fb:
1a:bc:08:e4:4c:9f:f2:9f:f3:e7:b9:c7:c3:5c:99:3f:11:0a:
63:38:f7:67:a6:84:92:94:be:2d:c5:24:18:96:6a:bd:fd:01:
59:a4:51:e1:07:01:2b:2a:58:aa:dc:ca:77:97:58:d3:5d:9c:
5a:0c:b7:1b:55:d5:82:89:c6:ea:85:c9:40:44:cd:e1:38:57:
65:3d:cb:47:cd:db:ec:d2:85:be:8b:6e:dd:a9:55:2b:ff:78:
6a:10:4f:ea:a6:76:63:3d:6e:75:2b:93:c6:d8:e0:60:d9:fc:
b8:dd:54:c0:49:34:1b:1d:7e:7f:1e:fc:8d:7c:b9:62:06:e1:
2d:07:9b:f6:63:3e:88:39:32:62:df:ec:e5:be:d9:ac:f8:27:
55:19:86:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 20:13:31 2024 by rpki-client on console-ams.rpki-client.org