Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
File: nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft (raw, json)
Hash identifier: LFABhvVHnCauu8nYLyhkeM5YzqvsxTZ0E161pNTSlKo=
Subject key identifier: 96:E7:65:3F:8A:11:62:8A:6C:E6:81:B1:28:3C:09:A8:23:85:DE:1E
Authority key identifier: 9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91
Certificate issuer: /CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991
Certificate serial: 01935877ABE0B55C361FE89EBB645E679D69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
Manifest number: 0EF8
Signing time: Sat 23 Nov 2024 10:00:57 +0000
Manifest this update: Sat 23 Nov 2024 10:00:57 +0000
Manifest next update: Sun 24 Nov 2024 10:00:57 +0000
Files and hashes: 1: kXWRAw3Mp4zMgJKgxtzBvZyBYuI.roa (hash: U2ztNK39Ls99OwmFhGPq71w/pP2CHcEPd6ZEyXOY+FY=)
2: nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl (hash: sB74YhDFSa+/m7X8mi8QCdTGCbs0jU5iUHbeg+sWbeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:77:ab:e0:b5:5c:36:1f:e8:9e:bb:64:5e:67:9d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991
Validity
Not Before: Nov 23 10:00:57 2024 GMT
Not After : Nov 24 10:00:57 2024 GMT
Subject: CN=96e7653f8a11628a6ce681b1283c09a82385de1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:7a:36:b5:c1:38:b3:e4:90:54:52:d4:f7:46:
6c:31:8c:a9:81:d8:6b:3a:e0:ae:cc:fb:93:6e:12:
aa:51:e2:41:0d:97:2a:5c:5b:11:4e:fa:7a:b1:ad:
9f:1f:7f:68:45:0a:ce:f1:cf:58:04:41:a0:fa:1d:
3a:a0:84:ff:98:fd:0d:a0:7d:44:1c:ad:ab:c7:a9:
ad:0b:be:0f:6a:40:57:40:3e:57:e2:58:bc:fb:fa:
6e:3b:93:53:af:11:ea:ad:34:1f:39:a7:02:09:75:
88:4f:b7:96:ce:f6:14:11:bf:dd:12:e3:09:3f:30:
77:c9:1e:ad:21:53:d2:45:ff:5f:c8:70:29:bc:46:
7b:79:f5:fb:76:ad:3b:11:7b:2a:74:3a:bf:fa:8c:
a5:c0:65:cc:06:89:c6:2a:1f:3a:27:de:48:4e:32:
1c:0b:ee:3a:fa:f6:87:a4:29:28:24:3a:cc:85:9a:
2d:6f:d7:41:e1:98:85:0b:d3:e8:d0:29:cd:8d:84:
51:0c:aa:d8:be:df:39:d1:b8:1c:05:65:9d:de:91:
dd:81:2c:6f:b2:99:71:21:a1:5a:e7:9f:de:3d:d3:
61:4c:0f:d3:57:c3:14:16:c4:e9:49:9c:f8:02:f5:
d2:8e:c2:79:92:b2:ac:a2:b3:2c:84:5c:5f:ea:14:
8a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E7:65:3F:8A:11:62:8A:6C:E6:81:B1:28:3C:09:A8:23:85:DE:1E
X509v3 Authority Key Identifier:
keyid:9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:4d:c4:37:a4:8d:5c:97:c9:82:1b:ac:a1:c3:44:9e:34:eb:
64:c2:c1:40:59:3c:4b:c7:8f:73:4d:b9:b9:df:1d:c8:38:81:
16:53:15:15:ed:78:fa:f3:07:c2:a2:b0:2a:a3:6e:5b:3f:4b:
a5:2a:66:e2:ac:d7:9c:35:71:32:d0:b7:00:84:bf:d5:5f:4e:
a2:5b:69:a9:b6:bc:5e:b2:a3:f3:3c:18:8c:e1:33:7e:40:b8:
5b:c6:55:16:5a:e2:d1:61:d3:95:00:3a:34:25:58:61:67:f8:
a5:ff:fb:12:26:c5:e6:b1:01:8b:01:12:4f:ff:48:94:5f:0f:
23:35:36:82:44:5c:95:f8:b1:2f:63:42:64:d8:99:ff:c0:34:
83:ae:af:b4:ae:12:2c:76:6a:fa:6f:db:45:4e:69:7d:f8:30:
10:af:7a:9d:ca:14:8c:ca:38:f0:71:70:d5:50:0f:c2:04:5f:
61:d4:01:e7:9a:9d:9c:90:20:b4:56:84:e5:c1:37:38:37:2b:
6b:8e:da:8a:1b:b4:b0:af:aa:05:e7:16:6c:17:cb:b2:4e:17:
32:0a:39:b0:c4:9e:bf:f9:22:a2:21:9c:98:45:57:fb:d2:05:
e2:68:10:5d:62:d1:74:95:af:31:17:37:98:7f:cd:b7:11:90:
d0:87:ac:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYd6vgtVw2H+ieu2ReZ51pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljYTkwZTdkYWYxNWMxN2MxYjlhYmM1NzIxNTdiYzdkOTE3
YjM5OTEwHhcNMjQxMTIzMTAwMDU3WhcNMjQxMTI0MTAwMDU3WjAzMTEwLwYDVQQD
Eyg5NmU3NjUzZjhhMTE2MjhhNmNlNjgxYjEyODNjMDlhODIzODVkZTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Xo2tcE4s+SQVFLU90ZsMYypgdhr
OuCuzPuTbhKqUeJBDZcqXFsRTvp6sa2fH39oRQrO8c9YBEGg+h06oIT/mP0NoH1E
HK2rx6mtC74PakBXQD5X4li8+/puO5NTrxHqrTQfOacCCXWIT7eWzvYUEb/dEuMJ
PzB3yR6tIVPSRf9fyHApvEZ7efX7dq07EXsqdDq/+oylwGXMBonGKh86J95ITjIc
C+46+vaHpCkoJDrMhZotb9dB4ZiFC9Po0CnNjYRRDKrYvt850bgcBWWd3pHdgSxv
splxIaFa55/ePdNhTA/TV8MUFsTpSZz4AvXSjsJ5krKsorMshFxf6hSKNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJbnZT+KEWKKbOaBsSg8Cagjhd4eMB8GA1UdIwQY
MBaAFJypDn2vFcF8G5q8VyFXvH2RezmRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8yNWYzNzUtMTQwZi00NmU5LTk2N2Ut
NmU0NTlhNThlMWQ2LzEvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy8yNWYzNzUtMTQwZi00NmU5LTk2N2UtNmU0NTlhNThlMWQ2
LzEvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO03EN6SN
XJfJghusocNEnjTrZMLBQFk8S8ePc025ud8dyDiBFlMVFe14+vMHwqKwKqNuWz9L
pSpm4qzXnDVxMtC3AIS/1V9Ooltpqba8XrKj8zwYjOEzfkC4W8ZVFlri0WHTlQA6
NCVYYWf4pf/7EibF5rEBiwEST/9IlF8PIzU2gkRclfixL2NCZNiZ/8A0g66vtK4S
LHZq+m/bRU5pffgwEK96ncoUjMo48HFw1VAPwgRfYdQB55qdnJAgtFaE5cE3ODcr
a47aihu0sK+qBecWbBfLsk4XMgo5sMSev/kioiGcmEVX+9IF4mgQXWLRdJWvMRc3
mH/NtxGQ0IesTw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 13:14:19 2024 by rpki-client on console-ams.rpki-client.org