Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
File: NgHDzOanHKshpLut8KuE3ePyurI.mft (raw, json)
Hash identifier: IwxJimiUZvZgSG7eJxUJTZVPJHfUGlP6myzGC8iaJVI=
Subject key identifier: 39:B1:32:27:8C:7A:2A:A0:51:4A:3A:81:76:CB:4F:BB:06:AA:A1:9B
Authority key identifier: 36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
Certificate issuer: /CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Certificate serial: 019358E52F170C2FED8821344857CC09A728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
Manifest number: 1375
Signing time: Sat 23 Nov 2024 12:00:34 +0000
Manifest this update: Sat 23 Nov 2024 12:00:34 +0000
Manifest next update: Sun 24 Nov 2024 12:00:34 +0000
Files and hashes: 1: NgHDzOanHKshpLut8KuE3ePyurI.crl (hash: A5jtLz2zGGimvHJN6JL4y+aZCLfBpOdgRi/82jRbK+w=)
2: VCrOu3qxJsvnrL9jI759XQGd49o.roa (hash: h6gteG11f+LVWbk4jQI52xl6NGeU5G+Hj7IRZK1K1xw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:e5:2f:17:0c:2f:ed:88:21:34:48:57:cc:09:a7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Validity
Not Before: Nov 23 12:00:34 2024 GMT
Not After : Nov 24 12:00:34 2024 GMT
Subject: CN=39b132278c7a2aa0514a3a8176cb4fbb06aaa19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0f:22:0d:f0:3c:be:b9:45:8c:e8:23:9b:70:
65:3f:1c:13:b3:90:b1:cf:ec:7e:6a:90:63:50:ae:
ef:ab:d1:87:ac:26:36:72:97:ac:19:5b:16:71:6d:
81:64:f7:9a:b3:2f:55:a9:f3:18:7e:2d:e1:9a:14:
3d:f7:92:56:ef:0a:e9:38:f9:e9:40:cb:00:06:ca:
c4:77:c0:ea:fe:e9:77:22:5e:06:10:af:98:a6:f9:
2a:44:71:40:3f:14:b9:f0:7e:70:ca:00:fa:53:43:
b3:b6:ce:86:45:7f:a8:7d:f0:2a:a8:53:31:02:31:
f0:cb:fa:ca:35:ed:ae:fb:8a:7a:d0:a0:43:c8:62:
d4:95:7e:01:bd:65:b3:bd:11:d9:9f:79:a8:4b:41:
ea:50:4e:09:17:d5:89:38:fa:f5:9c:8c:00:71:8a:
c7:2f:09:a8:e3:6d:9e:f3:29:b4:1f:8a:88:d8:1f:
e4:d6:8e:05:f1:0b:46:4c:23:a4:8b:dd:43:3e:dd:
ee:ab:da:d5:a9:4a:2a:3b:85:04:e2:02:6e:7b:e7:
ad:da:72:e6:dc:47:3f:b2:7a:63:31:dd:ef:35:66:
e7:5d:94:bf:07:83:b2:a9:6f:fa:33:e4:8a:68:68:
8b:35:95:ac:79:c3:c3:39:9c:65:73:a8:d7:4a:75:
26:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B1:32:27:8C:7A:2A:A0:51:4A:3A:81:76:CB:4F:BB:06:AA:A1:9B
X509v3 Authority Key Identifier:
keyid:36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:e1:51:35:40:18:a2:4c:94:79:2f:03:fd:6a:c5:ae:81:ca:
7e:50:b6:32:05:e4:03:3b:78:93:16:dc:53:09:5e:c7:bc:d4:
0f:7c:b5:e8:3c:c8:07:d4:7f:93:b7:3b:5c:23:91:99:67:b2:
23:f6:14:c3:bf:be:a7:5a:35:eb:c4:a3:9b:22:65:04:be:78:
bd:5a:f7:67:96:df:b7:45:f9:46:1b:92:bf:d3:dc:4f:ce:f9:
22:5f:8c:22:e3:f6:43:8f:9c:71:a8:a2:54:c5:85:00:56:49:
a7:e3:db:09:f6:4b:27:38:19:72:5e:70:db:4f:8c:03:1f:2e:
85:a5:2b:ba:21:29:99:df:d0:3f:ad:d7:fb:36:07:80:a5:af:
2b:71:07:c6:c3:dc:d8:6f:14:4b:e9:1a:2c:5a:88:d4:5d:4e:
de:97:06:97:a4:2d:24:20:19:0b:db:4a:88:b7:7c:aa:f9:67:
96:0a:5b:d4:18:5c:1b:47:38:9a:b6:af:4e:18:dc:7c:89:a0:
e5:9e:9d:38:38:a6:18:82:8c:ad:cb:53:34:9c:a6:72:cd:63:
17:0e:8f:b8:02:af:81:95:b5:94:e6:c1:e1:cb:77:13:b2:79:
00:96:ae:79:8e:fd:66:44:14:de:dd:04:69:16:32:dd:49:36:
e6:98:00:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:56:38 2024 by rpki-client on console-ams.rpki-client.org