Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
File: YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft (raw, json)
Hash identifier: 3Nd4B3QEg2rrIbA7/bvVWZBdZKuY4nN+cIMtw68dYSI=
Subject key identifier: F6:D2:0C:81:A0:B5:A8:C9:D6:EB:13:68:66:0E:81:2E:1F:C4:72:CF
Authority key identifier: 61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3
Certificate issuer: /CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3
Certificate serial: 0194C3F5B7B689BF3689B755D7C62614EACF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
Manifest number: 0AF3
Signing time: Sun 02 Feb 2025 00:00:47 +0000
Manifest this update: Sun 02 Feb 2025 00:00:47 +0000
Manifest next update: Mon 03 Feb 2025 00:00:47 +0000
Files and hashes: 1: YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl (hash: NjNsn5Q3cEsLUG4Im9v0tBtksOFFTbUXoPQqW7/KYYE=)
2: tm8Rt7Sc2c1PcYKasPfyO3eBX9M.roa (hash: fWTds4doBQAqbglPwbw6IGwEFIO7de7/7OMc6gbtl08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:b7:b6:89:bf:36:89:b7:55:d7:c6:26:14:ea:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3
Validity
Not Before: Feb 2 00:00:47 2025 GMT
Not After : Feb 3 00:00:47 2025 GMT
Subject: CN=f6d20c81a0b5a8c9d6eb1368660e812e1fc472cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a7:9b:13:52:91:53:b8:d2:d4:91:2c:51:30:
c4:84:7d:15:54:2a:9e:37:54:55:59:ea:84:56:2f:
75:53:9b:aa:6c:2e:55:fb:25:67:0c:f4:28:82:e6:
b0:f9:d9:55:a2:08:8b:ee:b0:0d:1e:0d:8e:9f:f4:
c7:05:8f:9a:22:da:79:f3:77:06:d5:bd:f9:33:a2:
24:b4:9c:46:02:4a:70:05:6b:55:bf:c8:8e:56:13:
46:3c:34:47:59:4a:8f:d5:e0:6d:2e:63:20:3d:ee:
f1:c7:1c:46:f0:46:cd:aa:66:2e:2e:0a:05:c2:22:
14:b5:bf:7a:71:59:73:2a:e4:3a:0f:de:16:df:17:
c0:b4:b9:32:54:02:71:dd:ff:74:c4:ef:d8:b3:15:
6e:ac:38:2f:06:fa:3f:9e:0d:fa:99:82:d8:41:3a:
e1:b4:a2:2f:fa:57:fb:1d:47:32:1e:83:d3:8c:07:
91:7c:4f:6e:43:c3:33:6a:9e:be:a0:b7:17:16:77:
9e:35:c2:35:1c:c0:09:68:47:38:f3:b8:35:4e:aa:
d9:1d:56:77:ed:bc:6d:9d:e3:3e:37:a2:20:88:7c:
53:9e:fc:85:3a:23:2f:fa:e8:1a:21:af:29:cd:e3:
a9:36:00:8b:2e:77:8a:1b:fd:01:61:a8:e2:86:ca:
9a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D2:0C:81:A0:B5:A8:C9:D6:EB:13:68:66:0E:81:2E:1F:C4:72:CF
X509v3 Authority Key Identifier:
keyid:61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:24:9c:c1:54:ea:e8:1e:00:a5:e9:13:5c:46:5b:05:3c:e5:
af:3b:5c:39:88:8f:2f:80:fc:ac:bc:16:4d:c1:93:ad:cf:dc:
26:18:06:cc:4f:03:16:61:3e:6b:2a:27:65:26:1c:dc:26:0a:
8e:ac:41:e8:47:a3:b5:e8:8c:fe:bc:d7:95:07:85:46:dd:df:
50:d0:a8:cf:e4:dc:b3:21:a5:ad:db:b9:79:4b:25:c9:ce:df:
21:5f:6e:60:64:69:b1:c8:c6:23:90:53:ec:51:18:8d:02:a4:
e5:a5:e9:af:ad:c6:81:bd:d4:dc:15:5b:eb:e8:48:82:7d:c7:
fe:90:e6:6f:d1:c4:2e:37:55:55:39:c9:9e:03:2a:c4:ed:7e:
3f:36:50:db:6a:bd:cb:b6:68:f8:db:d0:5b:9b:0a:40:73:4f:
85:31:91:32:13:cf:e2:d8:cc:8c:0c:b1:82:2d:60:cd:39:8e:
d8:df:a3:46:c8:a4:86:fe:72:d1:cf:9b:59:c6:a6:ad:1e:41:
6b:05:0f:1e:02:68:38:a5:1c:5f:43:6e:79:72:e0:01:e1:a3:
97:c6:4a:b4:3b:ca:41:87:80:bd:6b:29:26:eb:86:5e:36:57:
e2:0c:e4:e5:70:23:96:0e:0d:f4:8f:90:2b:8e:f0:c8:ce:86:
6b:7e:f9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:05:56 2025 by rpki-client