Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
File: YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft (raw, json)
Hash identifier: eYi97F/ZgWIXE0XJHTm7MzfgMqtD0VZ4aRif8kKb48Y=
Subject key identifier: 78:65:D6:8C:B8:41:D9:2A:92:FE:05:2F:BC:EA:A1:B4:81:54:0A:FD
Authority key identifier: 60:62:B2:1F:B6:65:5B:89:79:23:E2:9D:6F:CB:64:4A:B1:0A:C5:30
Certificate issuer: /CN=6062b21fb6655b897923e29d6fcb644ab10ac530
Certificate serial: 01958B4DB16A1976A59F57D0D7DB83615384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
Manifest number: 1492
Signing time: Wed 12 Mar 2025 17:01:19 +0000
Manifest this update: Wed 12 Mar 2025 17:01:19 +0000
Manifest next update: Thu 13 Mar 2025 17:01:19 +0000
Files and hashes: 1: YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl (hash: 0U2iHJUNKGE1unchmQguyqScF1Ytxa17QG9isbk7Sv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:b1:6a:19:76:a5:9f:57:d0:d7:db:83:61:53:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6062b21fb6655b897923e29d6fcb644ab10ac530
Validity
Not Before: Mar 12 17:01:19 2025 GMT
Not After : Mar 13 17:01:19 2025 GMT
Subject: CN=7865d68cb841d92a92fe052fbceaa1b481540afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2d:2c:e3:f5:f0:89:a4:d7:bd:98:01:b5:c7:
7b:1f:09:dc:ae:54:ad:c5:6e:09:02:0e:eb:d3:03:
2b:5c:9d:78:fa:65:f5:e9:9b:26:96:05:ac:0e:51:
68:ee:74:e5:32:24:82:74:64:17:67:c6:a2:3e:85:
9b:16:1e:1c:97:b1:71:2e:6b:42:5b:ee:2f:c9:5f:
f0:6c:92:ae:42:a2:63:19:69:da:57:21:4a:4d:96:
88:4a:a2:d3:02:70:2c:e1:c3:42:20:64:fc:1f:ee:
5f:a4:95:18:01:e6:a4:e6:73:43:37:49:af:e2:ce:
71:d1:94:27:5c:26:e9:ee:f4:b3:ea:4f:75:33:4d:
9a:ea:e5:fa:d8:ff:45:4b:c5:60:00:e1:23:47:25:
0a:f1:44:00:71:66:b2:a2:81:d8:00:31:32:49:24:
a1:5f:02:e7:c6:47:d0:56:25:34:fc:48:25:8a:80:
8e:20:31:8b:bf:49:29:5a:ab:6e:dc:40:20:e6:53:
41:82:2f:09:2f:b0:5a:10:82:1b:d6:49:14:ec:2b:
95:ed:72:3a:c2:a4:56:98:bf:51:45:20:03:a0:03:
9e:46:72:4b:52:b0:2d:e4:34:da:a2:59:21:1c:40:
60:25:a6:fb:ab:03:f8:5d:0e:78:0f:47:b3:95:61:
66:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:65:D6:8C:B8:41:D9:2A:92:FE:05:2F:BC:EA:A1:B4:81:54:0A:FD
X509v3 Authority Key Identifier:
keyid:60:62:B2:1F:B6:65:5B:89:79:23:E2:9D:6F:CB:64:4A:B1:0A:C5:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:8d:89:35:a8:ae:2f:af:cc:69:56:fd:ce:46:4a:f0:da:9f:
4a:f6:a7:56:a9:65:06:f8:e1:61:b1:4b:a0:85:72:20:70:b2:
7d:7f:ba:db:27:2e:1f:e4:1f:15:e8:ff:1c:af:e0:81:4d:f8:
5b:72:0f:2c:21:e5:da:c8:23:ce:a1:c9:a3:39:6a:07:b7:26:
df:98:c9:c1:0e:ab:8c:1b:33:c3:aa:30:4e:3c:80:0a:17:3d:
3b:2f:03:29:96:d0:b9:3d:47:8c:89:00:d6:12:ae:a9:f8:1e:
d7:ab:7a:a5:fc:8a:fc:1d:ad:37:43:71:9c:89:a5:cf:2c:44:
9d:02:6a:4c:52:5d:21:46:f8:76:3c:d1:dc:b1:92:0c:3f:14:
2f:01:ba:09:9f:89:6d:4c:43:76:f2:2e:71:bc:bf:04:8a:9e:
2b:18:a5:c9:90:31:ca:80:45:39:14:bb:eb:8a:1d:e3:36:b8:
f6:bd:82:22:97:16:6c:05:e4:74:ad:49:5b:f6:06:f9:04:ca:
1b:35:9b:f1:1e:45:5b:41:81:35:8f:9a:6e:6e:8a:34:35:bc:
e4:3d:91:71:0a:75:04:2a:1b:3f:8a:f9:41:05:d4:c0:14:44:
9e:47:64:17:7e:e1:01:f4:ac:b0:3b:4f:71:87:2c:26:6f:e1:
c8:58:15:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:23:38 2025 by rpki-client