Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
File: JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft (raw, json)
Hash identifier: SOAdilobZR8uugTFFIdZXLgKQTineJ8k7Qmil2KQqS4=
Subject key identifier: 1C:26:BE:BE:B3:E9:FA:F6:52:7E:50:9A:EC:1A:4B:34:B6:B8:26:06
Authority key identifier: 25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
Certificate issuer: /CN=258906554d8c8b428ede8cb35026860d3d7771df
Certificate serial: 01951134DB4F81D9ED0957F93044F04F9E5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
Manifest number: 0B36
Signing time: Mon 17 Feb 2025 00:00:31 +0000
Manifest this update: Mon 17 Feb 2025 00:00:31 +0000
Manifest next update: Tue 18 Feb 2025 00:00:31 +0000
Files and hashes: 1: JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl (hash: 6MGfyLEEJSUAjrXnhfbqjZSuJAzVEqXyqOqUHJqudss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:db:4f:81:d9:ed:09:57:f9:30:44:f0:4f:9e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258906554d8c8b428ede8cb35026860d3d7771df
Validity
Not Before: Feb 17 00:00:31 2025 GMT
Not After : Feb 18 00:00:31 2025 GMT
Subject: CN=1c26bebeb3e9faf6527e509aec1a4b34b6b82606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f7:31:f7:2a:96:74:fe:d1:14:5d:0f:ce:69:
de:89:94:7a:67:10:76:87:d9:43:d5:50:25:95:44:
6a:fa:59:2a:a6:88:b0:44:36:02:4f:a3:1c:45:aa:
dd:db:bf:0b:46:42:4c:eb:d6:1a:ac:43:cc:27:a7:
bb:82:e8:d3:76:ef:5d:ac:44:e2:7d:e7:64:18:a9:
50:0f:40:de:bc:3a:9d:a4:e9:2e:86:81:02:fb:1b:
eb:ea:f8:13:13:6e:d4:48:a5:6d:f9:af:e3:99:c2:
cc:b8:20:6a:7d:4f:b3:f7:18:64:64:fe:e3:b0:7f:
2c:43:cd:a2:5d:47:5b:e1:24:09:40:bf:e6:9d:91:
0e:a4:f7:b9:79:2b:0d:a1:db:c9:05:c0:0b:a0:5b:
27:92:97:61:7c:da:18:07:52:7b:95:81:64:93:37:
bf:41:6a:ab:bb:d4:17:22:ca:d8:92:51:93:cf:5d:
09:2a:d5:67:2b:3a:c4:14:b9:2d:96:ad:91:32:84:
be:6d:a7:34:71:02:e4:30:6f:e2:34:00:68:b5:c9:
fc:84:b0:8b:8b:97:47:86:0c:ce:01:0f:c6:6b:2a:
ab:36:ac:d6:dd:f5:c2:54:54:07:36:28:2e:5e:98:
7d:ae:6c:6d:42:96:e6:7a:ec:bc:0a:09:17:e8:4e:
37:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:26:BE:BE:B3:E9:FA:F6:52:7E:50:9A:EC:1A:4B:34:B6:B8:26:06
X509v3 Authority Key Identifier:
keyid:25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:9c:95:be:cd:6d:54:58:3f:10:14:f1:6a:a2:86:e1:89:9b:
39:47:95:9a:c7:70:01:c7:aa:f9:45:c7:b5:46:ad:8b:5b:e8:
b9:a9:05:c5:6e:5f:5f:c3:ac:7b:7a:82:12:21:b4:84:16:58:
18:f5:51:b4:aa:dd:3a:a5:e9:e4:fb:11:a8:e3:61:12:ae:d1:
71:5f:28:2c:54:84:ce:fa:1b:08:ef:4c:8d:8a:bf:5b:05:5c:
d6:dc:d7:ee:d8:4a:4f:31:fb:2c:6b:cb:cf:1c:12:55:a3:53:
9b:46:a6:83:eb:f7:02:d7:b1:b1:ad:8d:1f:b1:85:e8:70:3e:
37:ea:f7:36:71:5d:ef:d7:65:40:35:2e:9b:aa:a2:a3:08:c1:
2d:19:a5:38:98:63:8e:89:6e:29:b1:b8:62:c2:8f:e8:ed:b3:
f9:f3:a9:5d:8d:44:19:58:5d:ba:64:db:ff:40:72:2d:8a:1e:
ad:bd:48:6c:d0:46:80:b5:c9:e9:cb:73:e0:e1:9d:12:57:a9:
94:26:27:62:0e:6a:f5:b8:ff:72:bd:35:11:9d:28:9e:a4:49:
09:26:94:68:b9:1d:94:de:89:7a:31:63:18:8d:f4:5b:38:ca:
3d:b9:54:78:a7:c3:46:fc:cb:0e:e2:fa:d0:ed:8b:c9:5a:e9:
58:80:d1:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:38 2025 by rpki-client