Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
File: nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft (raw, json)
Hash identifier: gm+grNSfHy3aynaPDxZbOpoVqK1OF73rekelneAJKN0=
Subject key identifier: 40:9E:56:AF:09:1D:F8:4E:DB:2B:FF:B0:5D:BE:C4:23:3C:B2:79:D2
Authority key identifier: 9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
Certificate issuer: /CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Certificate serial: 0193572D931A9A42D85DFFE8F54BB8BDC290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
Manifest number: 0C96
Signing time: Sat 23 Nov 2024 04:00:24 +0000
Manifest this update: Sat 23 Nov 2024 04:00:24 +0000
Manifest next update: Sun 24 Nov 2024 04:00:24 +0000
Files and hashes: 1: NcPGHOVbinU-jA1uXDttFWRhWuU.roa (hash: mcmQMHLex/qDA0AJp/SWKVesAwqBdkUBiDgq5LVEAeU=)
2: nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl (hash: /O+vrQOConen2WbaR30O0daUHO7n52Ig0FO+y91HnWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:2d:93:1a:9a:42:d8:5d:ff:e8:f5:4b:b8:bd:c2:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Validity
Not Before: Nov 23 04:00:24 2024 GMT
Not After : Nov 24 04:00:24 2024 GMT
Subject: CN=409e56af091df84edb2bffb05dbec4233cb279d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:36:d0:03:bb:c4:65:4b:26:52:7f:b6:d1:aa:
ca:8e:97:38:2b:36:28:c1:61:83:8f:33:ab:3b:20:
08:f0:8b:59:c7:9e:84:69:36:a5:3d:16:74:ce:54:
b7:86:2b:f6:87:32:d8:eb:68:98:0b:d9:7d:a0:8a:
91:9e:b5:e3:a2:0a:9c:87:41:27:e4:2a:72:07:a8:
94:5b:a4:25:2e:b6:0c:b6:8c:1d:0e:e2:2f:e5:d4:
52:93:9c:90:14:49:32:f1:70:86:77:2b:8b:d7:ae:
37:f9:be:60:4c:f6:a7:3f:fe:31:24:d3:ec:07:3c:
99:b5:89:e4:04:75:d6:8c:43:7e:26:d8:67:5b:da:
3c:09:52:6e:ce:23:02:90:27:a6:ac:2e:78:a6:40:
2c:4b:53:e5:59:39:4f:cc:e6:01:97:ff:63:99:34:
96:db:a7:4a:67:ff:79:01:ba:3b:a9:4c:80:c6:25:
70:ea:ae:54:8f:75:dc:e7:6b:b5:f7:be:82:42:3f:
28:2a:8b:ea:75:c1:33:f3:54:5b:5d:5b:59:d4:d1:
58:8b:18:fe:92:fb:af:eb:c3:01:ef:4d:c8:7f:83:
96:d1:57:ea:d4:94:52:cd:d0:f2:c4:0d:64:68:6e:
30:3c:86:5a:a9:8a:db:2c:3a:ef:3e:35:57:b8:e5:
51:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9E:56:AF:09:1D:F8:4E:DB:2B:FF:B0:5D:BE:C4:23:3C:B2:79:D2
X509v3 Authority Key Identifier:
keyid:9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:ba:b9:e4:28:72:26:3f:a2:64:ed:ec:d5:5a:b7:c1:f4:5c:
35:7b:21:f7:42:29:99:06:85:ea:22:fe:93:41:11:ad:71:a8:
5b:4d:cd:bf:ca:e9:7e:b8:9e:24:5a:47:da:13:3f:74:03:1d:
c3:fc:b1:cf:a8:e5:73:56:7b:20:03:fa:cc:85:3f:9e:dd:84:
fb:bc:03:fd:ec:52:de:c5:ea:61:1f:f4:7c:9f:c6:cf:7c:65:
16:7a:6a:82:dd:2b:93:5b:7c:43:8b:e0:fd:d3:6c:61:e9:cf:
9e:df:bf:b0:48:d9:42:ab:58:3b:99:4e:58:e9:a7:66:af:a5:
a7:28:aa:9b:e4:2a:28:fc:7b:95:80:f1:f8:b6:19:d1:e7:ef:
9f:81:01:c1:03:e8:a1:1f:93:02:75:d1:7e:d1:0a:0e:d9:0c:
fd:fa:73:d9:6f:9a:9f:f0:ee:c2:ab:e8:79:89:f6:69:58:48:
21:25:18:a6:ca:8e:af:d1:ea:6f:6c:17:d9:7c:e1:7d:18:07:
3f:40:45:2c:b0:25:a3:ad:55:06:f1:f9:fe:04:20:64:e7:30:
0e:ed:a4:db:ea:ec:a8:f5:fc:88:76:bb:e5:cb:ad:f3:7d:1f:
a9:2c:41:0d:f8:cd:0f:04:98:59:97:ca:7a:53:cd:c6:94:36:
67:99:d2:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:18:12 2024 by rpki-client on console-fra.rpki-client.org