Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json)
Hash identifier: Qnx00yy6VkUECYJ7OCbuOe3Gtf1ULEndh6g+3dUDS/w=
Subject key identifier: 6A:85:EC:49:1A:A4:9F:F5:F4:71:67:9B:83:40:3D:03:A6:D0:FD:84
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 01901E58933D63AD1AF833C23351E15D8B36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
Manifest number: 11C5
Signing time: Sun 16 Jun 2024 00:00:39 +0000
Manifest this update: Sun 16 Jun 2024 00:00:39 +0000
Manifest next update: Mon 17 Jun 2024 00:00:39 +0000
Files and hashes: 1: PNvtjAWcYGneyTNmWk3dJIikmRI.roa (hash: PQ1A15EMRMXXjtaY/IFN7Mc5yBR/fpSi6w/MHp8oydA=)
2: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: tyf5d5+iFyTazVWlBxbZs/xKJyWah5nrjD4br7AfPwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 19:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1e:58:93:3d:63:ad:1a:f8:33:c2:33:51:e1:5d:8b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: Jun 16 00:00:39 2024 GMT
Not After : Jun 17 00:00:39 2024 GMT
Subject: CN=6a85ec491aa49ff5f471679b83403d03a6d0fd84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2b:97:f6:9b:db:4c:69:61:35:a2:15:be:6f:
b1:cc:2e:31:60:5b:1d:ea:2c:c7:a5:7d:66:67:f7:
13:f4:8c:23:a4:40:2e:b8:bb:f7:98:84:97:01:3b:
3b:ca:f7:4d:61:71:da:36:df:6e:9c:88:b5:52:17:
13:a7:a1:21:e0:2e:99:67:fc:89:50:a4:91:bb:58:
fd:0c:b8:5e:e5:a0:e3:d2:dd:a9:7b:f9:d5:0d:85:
cd:b1:8e:cb:5e:99:f8:d5:65:f0:d5:1e:f3:31:4c:
fe:5d:f2:9b:ce:29:4f:f3:b0:ad:f0:16:16:a6:2f:
de:f4:fe:74:46:50:43:fe:77:be:31:d5:ab:6a:70:
01:fb:c1:5a:17:07:c7:b5:75:9d:1a:23:4e:97:54:
da:f4:af:ef:ed:25:30:69:88:99:f2:50:23:24:6e:
3a:c2:97:16:4f:06:4e:81:be:5a:74:e8:47:46:d0:
34:89:37:67:3e:13:b0:45:37:b8:1d:d3:89:9a:47:
70:90:50:7e:b3:b2:52:3d:0d:e8:7b:44:52:7c:3a:
96:66:2f:5d:38:cc:2c:c8:8f:f4:2f:97:0d:55:75:
24:a6:38:17:a1:6f:aa:f8:4a:b2:1f:42:d6:93:c7:
21:6a:8a:a5:3c:1f:f2:1a:2c:7a:0c:2f:20:29:8b:
ba:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:85:EC:49:1A:A4:9F:F5:F4:71:67:9B:83:40:3D:03:A6:D0:FD:84
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:53:c3:3e:62:36:2f:a6:2a:79:1e:86:f0:06:4f:d5:b6:e4:
0c:e7:7c:94:0f:f1:ca:3d:24:86:29:98:e9:d8:60:fe:88:30:
bd:d6:03:b9:60:56:80:70:04:c5:a8:72:26:ab:45:13:89:58:
e3:ed:1d:58:40:78:5c:a2:09:e0:c0:1d:63:aa:1b:a6:48:a3:
78:28:7a:c7:85:d1:24:27:00:47:a6:1b:79:9e:ec:8d:68:af:
0d:b5:29:36:73:47:9c:87:67:d4:ca:74:9e:cf:20:44:87:b7:
15:ee:b9:16:f0:b9:d1:23:b9:49:1a:11:a0:de:a5:8f:35:28:
23:77:11:5f:90:e5:dc:f7:e3:7e:cf:7c:4e:f2:4d:50:4a:70:
68:c2:f4:72:bd:42:77:f4:c0:7b:58:1e:d6:48:b7:f8:ef:c0:
e9:44:2b:ed:3c:84:3b:02:91:e2:37:bc:20:e2:98:cc:de:9f:
6d:0c:b8:ba:ce:65:fc:a1:02:b6:ce:9c:c7:f1:97:ed:62:13:
6f:ea:15:c8:07:9e:19:f6:e6:60:2c:ca:c0:f4:76:5d:8b:a3:
8b:ad:31:d9:9a:d9:e8:a5:77:29:b7:a8:f1:b8:8d:e1:01:05:
eb:ef:82:d5:f6:ef:d9:6d:08:56:3a:f2:8e:9a:ce:f5:e0:47:
47:f8:42:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 01:03:49 2024 by rpki-client on console-ams.rpki-client.org