Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
File: NkYhMZiJnt-otCrdRzraIYdI4QQ.mft (raw, json)
Hash identifier: sKq3wZClP7FBP7b+fkaV+uO1CjaN7Xmzh4c1MV69x+I=
Subject key identifier: 4D:B5:14:32:4E:F0:9E:94:E5:F5:07:A2:38:5A:2A:56:EA:44:1C:B4
Authority key identifier: 36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04
Certificate issuer: /CN=3646213198899edfa8b42add473ada218748e104
Certificate serial: 0194BB294EB9D5B011DB63D147BB1F9F0ADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
Manifest number: 099E
Signing time: Fri 31 Jan 2025 07:00:34 +0000
Manifest this update: Fri 31 Jan 2025 07:00:34 +0000
Manifest next update: Sat 01 Feb 2025 07:00:34 +0000
Files and hashes: 1: G2aa7vj-d_CA2HuKW-IASCzWaSQ.roa (hash: pv32os3ZPwMAxeQUj3RBQ+FwWykK77hFOgeqqDGQkeE=)
2: NkYhMZiJnt-otCrdRzraIYdI4QQ.crl (hash: 8ub0l4rHYcWm2BeZ+T8UfTE4HvhjY6gb55FlB8akxpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:4e:b9:d5:b0:11:db:63:d1:47:bb:1f:9f:0a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3646213198899edfa8b42add473ada218748e104
Validity
Not Before: Jan 31 07:00:34 2025 GMT
Not After : Feb 1 07:00:34 2025 GMT
Subject: CN=4db514324ef09e94e5f507a2385a2a56ea441cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0b:5c:93:bd:95:df:23:35:b3:6c:6f:74:3c:
be:31:03:37:9c:ae:91:fb:72:86:ab:2a:c2:75:00:
fd:13:25:cc:2d:6d:83:85:14:fb:d8:e9:dd:12:84:
5e:81:ac:c1:c6:d7:ce:03:9e:8c:41:12:c3:c3:29:
24:32:7b:d2:de:cd:c3:7f:9d:ab:cc:f3:02:62:6c:
2f:26:80:fb:d2:85:bd:7b:f4:ef:4c:d2:67:ff:95:
62:d6:0e:d8:95:b0:86:8a:42:b5:b7:1e:9d:fe:6a:
86:11:c8:de:ad:68:44:c5:a7:63:35:a1:b7:de:12:
9a:69:03:20:38:17:0b:12:be:7b:7f:0d:29:cf:db:
e6:8d:e2:fa:c9:a4:b6:ee:e2:94:16:43:f6:c0:7c:
05:12:76:86:77:fb:c2:d9:f0:c5:c3:46:b5:1c:31:
2b:70:6c:95:10:d5:02:5a:e1:7d:35:b3:28:b3:b2:
dd:16:7f:ad:60:00:02:27:5f:f7:83:86:eb:53:fb:
d5:a2:b3:8f:16:3a:bc:ff:b6:e4:e2:3e:d2:63:76:
a8:1d:e0:ef:78:d5:1a:24:f3:53:90:66:6f:d0:65:
b5:08:92:fb:f2:d2:db:bf:53:69:bf:41:d8:a7:f5:
9c:69:45:6d:99:13:67:93:06:1b:d1:fe:06:19:d1:
9e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B5:14:32:4E:F0:9E:94:E5:F5:07:A2:38:5A:2A:56:EA:44:1C:B4
X509v3 Authority Key Identifier:
keyid:36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:9c:18:2d:28:cc:a3:b5:b9:fc:52:a5:1b:2d:31:75:7f:a3:
88:35:26:2d:80:41:87:ca:a2:8c:27:11:39:06:c0:b5:7b:11:
f9:4e:cc:5b:f5:8c:fe:a0:f4:93:27:31:83:8e:be:85:2f:25:
03:75:66:25:35:01:9d:8c:27:0c:55:df:95:08:42:ec:9b:47:
c4:39:e9:28:fa:fa:b3:44:57:4c:fb:41:54:5a:a7:d8:b5:cf:
e7:df:66:65:92:78:92:2e:a6:98:3f:62:d2:4d:a9:d5:f8:47:
ed:c1:82:09:ad:d3:37:91:d9:5b:90:f9:91:c7:2d:e6:16:c4:
37:be:df:72:87:ad:ad:ca:9c:cb:7e:89:a9:fa:15:a5:39:ca:
7f:96:c7:2a:48:23:d3:ea:4d:82:2d:ac:8d:7e:51:80:d9:88:
fb:6c:28:bd:f5:95:bb:58:30:c0:ce:a3:53:c7:c6:8e:f5:ce:
0b:5a:84:09:79:b2:98:05:cc:c9:21:fe:cc:83:17:0e:b2:e8:
f1:53:73:8e:9f:1f:a5:98:51:06:4b:90:a7:0c:2f:da:fa:db:
6b:23:5e:80:33:fe:ba:24:3b:84:bd:4a:88:5c:58:96:62:17:
35:36:75:86:95:82:7b:4e:16:f1:95:39:ce:45:96:97:7f:cc:
ed:b4:13:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:45:14 2025 by rpki-client on console-fra.rpki-client.org