Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
File: NgAOvu0kK5VkrclUhTI7lr1vXAI.mft (raw, json)
Hash identifier: SVsIH90Ihy9IBcTeBwTyGpUsWgNRJ00Lx49tekDeXik=
Subject key identifier: 29:AD:72:C6:8D:BE:27:7B:9F:1A:E9:C5:F6:39:CE:EF:71:74:CE:BD
Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02
Certificate serial: 018F8823F868990AE743E53EEF1AC5C622F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
Manifest number: 0CE6
Signing time: Fri 17 May 2024 20:00:09 +0000
Manifest this update: Fri 17 May 2024 20:00:09 +0000
Manifest next update: Sat 18 May 2024 20:00:09 +0000
Files and hashes: 1: NgAOvu0kK5VkrclUhTI7lr1vXAI.crl (hash: b/W2litwER51ts1CkGPN3/WJPJtLX/qMt5G6CoIEMzQ=)
2: W-9tBFA5wq9Bcqd3MQXOZXGGReE.roa (hash: lm8n3jLQADNcCvaDf9li1iBfcqtnSAzuEDDnZv6Y9ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:23:f8:68:99:0a:e7:43:e5:3e:ef:1a:c5:c6:22:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02
Validity
Not Before: May 17 20:00:09 2024 GMT
Not After : May 18 20:00:09 2024 GMT
Subject: CN=29ad72c68dbe277b9f1ae9c5f639ceef7174cebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:50:2e:89:02:d2:db:74:b1:35:a7:0b:78:0a:
b8:e5:ab:cd:1f:38:9f:19:33:f0:68:34:e9:45:45:
2b:1b:2e:c2:46:20:9c:04:89:9e:55:b3:b1:f3:a9:
d8:fb:a5:9f:bc:e2:e0:9b:d3:0f:ec:dc:0e:64:ce:
34:bd:93:f7:86:b1:a2:4c:4a:47:33:56:6a:1a:9a:
34:44:eb:2c:97:89:3a:85:f7:37:b3:27:0d:d4:e5:
e1:12:ec:e9:7d:d1:50:c7:ee:c5:ad:cf:e9:7c:6b:
04:45:ba:49:16:68:16:73:a7:e3:b8:d2:10:6b:9e:
c3:2b:6d:8b:d0:7c:20:5a:31:bf:f0:4b:6b:50:5a:
83:ec:93:55:8e:d1:b4:fe:ac:98:ac:99:9d:5c:f2:
d8:85:ef:75:1f:45:b8:f1:bb:d0:8d:b2:8e:7c:03:
63:2f:3a:7b:56:92:26:6c:c0:d1:79:53:57:27:36:
51:b7:75:1f:7b:d7:e6:1a:a1:70:07:6c:9d:6c:90:
33:86:2d:d3:13:a6:ff:01:2f:24:9e:33:b1:b2:90:
16:ca:e3:0f:41:f6:eb:bb:cd:92:d6:80:86:f8:bb:
14:78:7c:2a:5a:ec:c0:8a:7f:2e:e0:ba:b3:ac:70:
56:fd:72:75:ac:bc:57:34:0a:18:05:52:28:e6:56:
5b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AD:72:C6:8D:BE:27:7B:9F:1A:E9:C5:F6:39:CE:EF:71:74:CE:BD
X509v3 Authority Key Identifier:
keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:53:d7:fd:82:87:4b:60:18:db:53:25:52:2e:bc:f5:ce:c2:
ba:0b:16:e0:cb:f4:9a:6c:8c:fe:38:b4:44:e4:c7:4a:d9:a1:
91:18:bd:49:9f:ee:07:e1:b4:a4:ca:67:c5:db:cb:f9:c7:4e:
eb:20:80:cc:1e:d1:4c:0e:d0:1b:b6:f1:8f:d1:f2:b4:91:ea:
21:9b:65:66:49:81:13:28:fc:4a:de:3a:31:14:95:db:3c:5f:
9a:07:82:3b:c3:df:bd:ca:b4:29:d9:49:fb:31:4d:f8:52:d3:
7d:c3:2b:08:9c:67:b0:52:05:3e:86:35:7e:de:75:fc:c7:24:
1b:9e:84:e1:40:3b:21:88:45:50:3e:14:6a:4b:a5:97:db:49:
af:4a:db:ec:63:25:84:3b:12:bc:5e:8c:db:b0:50:98:ce:9f:
81:fc:34:60:87:8d:de:eb:e9:1c:78:31:7c:be:ee:62:71:19:
73:6c:9c:30:ac:89:fb:93:93:c8:d6:0f:42:d8:f5:5d:bc:c3:
17:77:da:41:64:6c:02:b6:47:f4:cb:a1:7f:0b:40:34:0c:ae:
ea:dc:ed:5d:30:c8:72:f4:d8:8d:7a:91:15:36:9f:2e:09:2d:
51:61:ac:da:fb:f1:5f:a9:3f:4a:7b:6c:55:59:ce:de:0c:83:
11:d4:09:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:37:29 2024 by rpki-client on console-ams.rpki-client.org