Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: 9Azs69tKH6Lkan6smtDGLbpY+Kcg9W3kUnXyMSwsJzA=
Subject key identifier: 76:22:43:ED:A2:84:91:90:EA:E4:DD:12:40:45:EB:0F:85:DD:71:93
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 0193587941D5F5E0980CD5C7A6CF1211CAC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0A52
Signing time: Sat 23 Nov 2024 10:02:41 +0000
Manifest this update: Sat 23 Nov 2024 10:02:41 +0000
Manifest next update: Sun 24 Nov 2024 10:02:41 +0000
Files and hashes: 1: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: /yyr2Wvo5MpCPX/4+6yg5xj2UXH0HAqoBBlBH0kZFxA=)
2: xdpG7Z8Z4cXrUvwKqabRNqa0SpQ.roa (hash: lbz+jpgJuErN2bX7rna4j7BD171ibND2jUna+ZsesL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:79:41:d5:f5:e0:98:0c:d5:c7:a6:cf:12:11:ca:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Nov 23 10:02:41 2024 GMT
Not After : Nov 24 10:02:41 2024 GMT
Subject: CN=762243eda2849190eae4dd124045eb0f85dd7193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:31:d0:5e:9e:f8:56:82:11:5c:22:25:de:36:
9c:c4:2c:7e:a6:23:9c:b1:b0:24:45:c1:d6:e0:4b:
77:37:b4:29:fe:e1:f8:4a:29:9f:d6:7e:20:83:77:
35:53:57:07:17:dc:3d:14:5f:fc:2f:f7:ba:2c:68:
82:78:94:9a:4d:4a:29:af:63:76:73:8c:f4:b4:2c:
f4:1a:a1:71:50:b8:a8:6b:c3:7d:d7:7e:29:6b:d9:
fa:4b:fc:1c:34:73:3b:39:4b:85:da:1a:7a:d2:21:
19:9e:b3:28:26:8c:fa:63:e6:39:38:b5:b2:64:ff:
c0:1c:d0:49:94:39:cf:06:66:a6:32:a1:ba:ae:a2:
ae:06:5e:db:dd:00:18:fd:3d:3e:21:a0:96:87:d1:
42:30:b8:79:af:e6:59:87:c9:75:6b:de:8c:8a:01:
fc:23:5f:6a:16:f1:9d:2e:f5:74:7b:81:53:65:db:
fb:96:ed:3f:a8:20:d5:d0:84:72:c9:ea:0e:45:ce:
2a:1c:1f:b4:ff:60:15:58:18:23:1e:61:5b:c0:2b:
fe:10:8f:3a:c8:3d:9d:9e:94:32:94:f2:bd:15:2a:
cd:25:3f:34:4b:ac:fd:16:8b:fa:93:17:02:19:3a:
63:19:37:80:9b:0b:6f:b6:e5:bc:d7:0c:eb:02:a6:
d4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:22:43:ED:A2:84:91:90:EA:E4:DD:12:40:45:EB:0F:85:DD:71:93
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:c4:ad:46:fc:1d:c5:e7:15:96:04:c5:29:f8:b3:9b:38:d3:
f6:63:c9:a5:35:3b:ee:11:8d:2d:c7:54:cc:36:a8:13:71:8a:
ba:dc:fb:0a:f6:b7:f1:46:eb:5f:d0:61:f4:aa:46:21:8a:82:
de:bb:c9:5d:72:cd:a9:6c:73:15:8c:75:c4:b2:10:ab:9a:e5:
a0:17:cd:3c:ab:9b:e3:e3:c3:a8:e5:fb:e6:28:05:8b:70:fd:
a9:d9:9d:49:0f:fb:0d:d6:78:14:ad:44:27:89:00:8e:80:70:
f4:1b:eb:9d:44:3c:86:fd:e0:ed:f9:cc:bb:51:fd:1b:fc:38:
4d:ba:c8:cd:80:0b:74:7f:e9:41:9f:0e:e1:1d:c8:2d:11:4f:
39:c5:87:37:b9:95:82:57:25:5a:9e:b0:1a:15:12:34:1f:1e:
ae:a9:42:6d:59:89:0d:ba:00:74:c0:7b:38:b3:0f:67:8c:78:
f7:b5:05:8d:ce:f2:4d:a9:67:95:52:ba:a4:f3:46:51:be:92:
5f:6c:e5:b5:4e:f3:50:7e:ef:b9:2f:c8:ab:4d:eb:45:12:66:
a2:36:d3:a0:7b:72:a0:bf:61:63:95:92:cc:f9:b9:3f:3b:fc:
29:68:c4:50:96:68:08:04:d2:33:fa:58:d4:41:19:61:2b:9b:
1e:27:71:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:05:15 2024 by rpki-client on console-fra.rpki-client.org