Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json)
Hash identifier: GkrCD1krOhJ7dqQGtJNw3JSMc0aI5miFk6wUnRbcYK4=
Subject key identifier: DA:C1:1E:14:D0:23:DB:92:DF:24:D3:D2:89:0B:3C:75:2E:EB:52:40
Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc
Certificate serial: 0194C3F5E9D26A0BCD528F0D4D9B7DBAA9E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
Manifest number: 142A
Signing time: Sun 02 Feb 2025 00:01:00 +0000
Manifest this update: Sun 02 Feb 2025 00:01:00 +0000
Manifest next update: Mon 03 Feb 2025 00:01:00 +0000
Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: bk+EhN7DpcD4OVH6b/EtJ1XlXvPPqyouIVOrmZRAizs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:e9:d2:6a:0b:cd:52:8f:0d:4d:9b:7d:ba:a9:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f31d820c32400dec0c60496178994d57752acc
Validity
Not Before: Feb 2 00:01:00 2025 GMT
Not After : Feb 3 00:01:00 2025 GMT
Subject: CN=dac11e14d023db92df24d3d2890b3c752eeb5240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:20:3d:93:74:e4:e2:5b:d9:86:45:64:de:6c:
97:82:bb:27:69:4e:2a:f9:b8:2f:c4:c6:49:63:2c:
73:d0:fe:16:bb:0f:5f:9a:03:4e:f5:99:db:bf:4a:
2c:46:6b:7d:c1:ff:78:46:fc:e4:84:1a:51:26:02:
c8:47:a4:3b:1e:cc:80:03:fb:cd:ad:3f:cc:76:89:
21:ac:be:c6:3c:19:e4:6a:41:bd:8d:c0:15:f7:a2:
6f:33:1f:0f:5c:f5:5c:6a:41:c9:2e:13:d3:21:aa:
5d:56:55:4b:3c:7c:c1:16:35:6a:57:54:d1:66:20:
db:54:4d:01:75:d8:c7:ff:1c:1b:04:58:62:ff:cb:
40:26:91:f8:5e:a2:ae:42:a4:0a:56:5a:bd:cc:86:
a0:45:4e:a7:3e:19:33:fa:d7:37:e7:66:a7:4e:df:
54:1f:d3:32:1f:e0:59:75:db:c0:2b:40:cc:0a:30:
58:5a:8c:3f:43:c3:a5:47:eb:3f:0a:5f:69:95:8c:
fe:39:a0:89:2c:7a:1f:c6:2e:d0:b5:ac:4c:b4:73:
9c:e8:f8:88:60:01:62:8b:f6:a5:b1:75:3c:0e:fe:
b0:41:a7:08:59:94:44:ac:c8:07:a2:6f:2e:d8:98:
b2:92:c0:a7:16:a9:9a:5e:fe:5a:4d:77:a1:d6:d7:
de:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C1:1E:14:D0:23:DB:92:DF:24:D3:D2:89:0B:3C:75:2E:EB:52:40
X509v3 Authority Key Identifier:
keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c4:d0:ce:d8:0e:a0:bb:4c:81:ef:bd:7d:47:d8:43:f1:0e:
c3:84:ac:c3:14:69:93:1b:6f:bf:05:7f:55:c9:c7:f4:67:84:
f1:c5:59:0a:a2:d0:8a:ca:63:58:6c:1a:9d:28:0b:c1:c3:f5:
fb:8b:09:e7:9b:0e:3d:72:3b:fa:e5:7d:62:f2:2f:24:fd:34:
68:f8:3b:0d:33:be:cf:fa:50:cc:2a:54:47:2c:df:b0:2c:a3:
6a:49:69:42:74:32:b9:60:7f:07:75:ec:1a:c2:d3:21:6a:66:
64:fd:3b:4c:d4:5e:e0:10:df:1c:4d:97:4e:a1:45:70:75:05:
82:0d:fc:e5:4a:43:46:94:2c:72:ad:54:bc:31:6c:a2:be:9a:
ac:46:1d:7a:9d:03:ac:e8:17:98:9f:e6:37:6b:a7:15:97:5b:
28:ad:16:2c:94:c7:0c:2d:0e:71:7c:6c:0e:a2:72:40:18:f1:
e7:0d:c9:60:ec:75:8d:1e:c7:d3:c9:84:bd:7e:88:49:6b:a0:
99:68:c4:b7:86:72:ff:c8:28:46:60:c7:4f:df:01:88:02:05:
96:03:5e:2f:1a:3c:27:3a:5e:e8:63:ab:45:29:c2:77:28:05:
87:b4:e1:06:a3:9f:47:e2:f9:9a:a4:e3:59:e7:b1:11:7a:96:
72:9a:bd:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:52:35 2025 by rpki-client