Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
File: YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft (raw, json)
Hash identifier: dPCbegc2EumHM1nODXD+ywC8H3k67X8W3CtP/qae9Ig=
Subject key identifier: 86:73:00:3F:56:07:96:88:EE:87:67:F5:52:48:76:17:A4:CC:5C:E3
Authority key identifier: 60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F
Certificate issuer: /CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f
Certificate serial: 01901D45FCD000AADD1DA9E413B055018CC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
Manifest number: 035F
Signing time: Sat 15 Jun 2024 19:00:44 +0000
Manifest this update: Sat 15 Jun 2024 19:00:44 +0000
Manifest next update: Sun 16 Jun 2024 19:00:44 +0000
Files and hashes: 1: YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl (hash: 7qdVaWL37DguQDaM2hOIha/LuGbhKM+A4Uy5+zeKeNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:45:fc:d0:00:aa:dd:1d:a9:e4:13:b0:55:01:8c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f
Validity
Not Before: Jun 15 19:00:44 2024 GMT
Not After : Jun 16 19:00:44 2024 GMT
Subject: CN=8673003f56079688ee8767f552487617a4cc5ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ac:44:f6:9e:5d:7e:05:2d:34:cb:0d:d8:41:
e5:fa:81:34:e8:d8:0f:e0:04:40:24:f9:52:55:81:
54:50:c2:eb:d8:06:d3:2b:97:25:58:f8:98:ca:3f:
2b:87:1c:9e:c7:c4:33:7f:55:bb:14:7a:86:ed:ab:
48:dd:86:55:e9:5f:51:d1:ed:01:62:58:7b:6d:7d:
e7:91:3c:44:44:b9:82:02:80:c2:9e:0f:55:3e:4b:
3c:2a:0a:e4:b5:a0:4c:d7:49:81:b2:c5:75:12:65:
ab:7b:77:fc:ed:71:04:b9:96:00:01:4e:b1:9d:5f:
18:4e:64:d5:bc:66:c2:52:c9:4b:f0:a1:8d:b1:1c:
19:e3:f1:95:0d:07:cf:7c:2f:cf:c9:52:12:4f:4e:
59:38:b2:35:fd:16:3a:52:b0:6c:02:88:ec:16:98:
5b:c9:aa:ea:a4:3d:78:e7:27:3b:43:02:1f:fc:6f:
9d:c7:97:c7:72:d3:e9:4b:d9:f5:75:32:be:0c:74:
b5:50:20:a6:d8:f9:1e:18:39:4a:29:bf:08:b5:b4:
94:bf:2f:93:92:41:8b:b1:49:1c:2b:dd:df:ce:53:
3e:83:af:57:85:22:a5:31:b0:56:67:74:d3:ee:e3:
e3:10:4b:ef:0f:e0:95:44:5f:4e:ba:46:ae:55:c4:
13:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:73:00:3F:56:07:96:88:EE:87:67:F5:52:48:76:17:A4:CC:5C:E3
X509v3 Authority Key Identifier:
keyid:60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:ba:fb:a4:83:7b:60:6c:07:bb:60:53:f4:b7:89:9f:2b:9c:
f6:43:d8:8e:a6:25:98:7c:62:63:ab:33:ac:6b:c7:f9:06:c2:
2f:a2:d3:5d:61:a5:30:97:77:a6:ee:74:02:a2:3a:86:df:ae:
c8:32:00:c1:d8:6e:24:4e:18:31:27:93:ba:6b:2f:26:88:e6:
63:51:81:56:6e:1e:61:45:46:5c:79:59:79:d5:0c:73:49:84:
73:2a:8b:f4:85:7b:42:e4:0b:e0:e1:82:5b:0d:24:7f:8f:5c:
85:a9:79:be:32:08:d2:9a:e7:a5:34:5d:6f:44:2f:54:00:d1:
0a:62:a3:71:61:92:ff:b3:23:c9:73:57:ef:31:00:ce:da:73:
bd:b3:23:86:9f:79:83:ca:e2:40:99:bc:7f:f7:17:9f:f1:df:
b6:3d:bc:f3:73:79:a3:30:11:58:34:29:d5:06:32:ee:e4:1b:
57:89:b3:22:e3:29:c2:62:67:aa:99:48:79:35:9b:58:2f:cb:
6b:bd:d2:37:ca:af:8f:3d:92:08:e8:e7:aa:09:fe:c4:fc:10:
90:dc:51:8d:74:90:26:66:ac:c7:81:cf:a8:34:f8:fc:e4:c8:
5f:ad:90:4b:bd:d2:a8:62:35:bc:16:86:4e:b2:0e:56:8d:0e:
be:7f:5a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 21:59:56 2024 by rpki-client on console-ams.rpki-client.org