Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
File: yDOgOJWSdW5BXN40irvCQxKwLfY.mft (raw, json)
Hash identifier: e37PwPhIC6X5Fd3em+/Y0S3OSvtA6nxwBd2AB/uddN4=
Subject key identifier: 39:D9:DE:BC:59:81:50:CB:87:9C:99:7E:0A:A9:4C:B1:53:9B:32:A9
Authority key identifier: C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
Certificate issuer: /CN=c833a0389592756e415cde348abbc24312b02df6
Certificate serial: 01951210AC76D9ADE3EB875BEF5A16A417A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 04:00:37 +0000
Manifest this update: Mon 17 Feb 2025 04:00:37 +0000
Manifest next update: Tue 18 Feb 2025 04:00:37 +0000
Files and hashes: 1: erRTM1_91VtMTpdLg1tFc8DEnKQ.roa (hash: igv5stthjArSt6knKlRkVvpjhTI9/bVwYZs5FEOn1NI=)
2: yDOgOJWSdW5BXN40irvCQxKwLfY.crl (hash: EQjhrf/wpsA8VDQPzL4zKwaM0O+HpCBC0uFVZQM+/WA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:ac:76:d9:ad:e3:eb:87:5b:ef:5a:16:a4:17:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c833a0389592756e415cde348abbc24312b02df6
Validity
Not Before: Feb 17 04:00:37 2025 GMT
Not After : Feb 18 04:00:37 2025 GMT
Subject: CN=39d9debc598150cb879c997e0aa94cb1539b32a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2b:ba:5c:dc:c2:55:3b:11:cf:83:5d:4e:c8:
10:08:36:a2:c8:fa:ce:88:6b:dc:37:16:9b:76:09:
ca:93:ca:5f:24:2c:c8:dd:c3:1e:db:0d:5d:ac:61:
eb:20:e6:a4:d9:3f:d0:ac:ca:4a:69:94:fa:c7:6d:
4d:ad:15:35:d9:44:cd:85:61:60:7f:96:f9:0a:82:
00:e8:6d:c2:a4:5c:ce:b7:9e:90:41:9d:e9:e6:8b:
d6:a9:88:f4:16:8e:ec:a6:46:a0:e0:7b:e0:a7:34:
c4:6e:3f:6c:10:14:99:d1:59:aa:95:64:1c:80:44:
6f:d0:25:d9:95:2e:4b:ca:28:b0:ec:73:fd:c8:9c:
fd:2f:75:2a:b1:47:80:65:24:88:4a:9a:ea:96:a9:
46:e7:35:60:0c:74:7e:1f:02:11:2c:e9:2a:11:1a:
af:20:c5:98:10:68:ee:d4:dc:76:3c:df:1d:01:43:
85:7f:c9:5e:3b:7c:0b:96:f6:c2:56:e5:ba:4f:23:
6f:be:01:9e:37:28:ff:bc:ed:d0:f5:d1:5f:a3:a6:
a6:58:5a:63:08:13:45:1f:22:47:97:d3:6c:5d:48:
c0:9c:7d:86:28:c9:c1:50:e3:0a:db:52:86:db:5e:
dd:97:f1:dc:75:1c:77:a6:f6:96:60:d6:65:9a:55:
bd:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D9:DE:BC:59:81:50:CB:87:9C:99:7E:0A:A9:4C:B1:53:9B:32:A9
X509v3 Authority Key Identifier:
keyid:C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:16:55:83:de:15:49:2f:60:a4:1f:a7:28:2b:11:b0:d9:20:
65:7a:41:c7:83:e8:79:ec:d9:2d:06:66:9c:2b:5d:10:07:e3:
b0:6e:7a:de:5a:fc:04:4e:55:88:b0:08:45:39:6e:4e:fd:86:
4e:c4:de:8e:f8:99:ee:2e:32:ea:5d:bf:8a:37:63:6a:ef:01:
f1:55:cf:eb:be:23:8f:fe:c2:c3:7a:3d:23:ec:5c:64:50:6d:
c5:58:2b:2a:e7:df:d9:34:43:63:00:37:2e:03:a4:95:ca:1c:
d5:a2:b8:b6:81:97:c5:2a:30:84:48:11:2e:a9:93:fd:1b:8c:
c1:94:6f:57:d7:00:1f:65:5f:f9:c3:08:6e:df:17:f2:4c:2b:
05:a8:5d:a1:ac:b3:38:09:2f:67:f3:52:9f:49:8a:fd:25:4f:
21:09:37:4b:ac:44:44:8d:d2:86:31:14:2e:88:3d:e3:54:66:
b2:cb:ca:83:de:18:83:9b:08:2b:40:e9:6e:84:be:90:0c:94:
b1:3b:dc:11:25:2f:82:03:87:55:36:31:85:7a:7b:f3:2a:11:
5e:9f:f8:99:1d:b1:6d:15:7f:a9:4b:e3:e0:04:e6:e3:dd:ce:
35:6a:31:e5:73:76:70:29:fc:2e:ba:5e:cc:e7:51:68:3b:b9:
53:8e:3c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:56 2025 by rpki-client