Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: OYtbfYP0xGPH8EvFbcvnU2sK1R+T5/6NDPOOClMjmMY=
Subject key identifier: 97:5C:25:E3:E9:EE:24:D7:CC:D5:0B:04:7D:F9:EF:BC:3A:F5:CC:17
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 01935508A5A8210BC62621260FAEE9A32F89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 0ED7
Signing time: Fri 22 Nov 2024 18:00:50 +0000
Manifest this update: Fri 22 Nov 2024 18:00:50 +0000
Manifest next update: Sat 23 Nov 2024 18:00:50 +0000
Files and hashes: 1: ktcGU-uD7bDJqjQs81ERtI__Vws.roa (hash: Qyb8FHZiI7+ZqS2CR0eGqA5wFTAQYXv/1SmptFlFdSY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: w00Ih4TXka4g5rrS1BLCn+zB1dj3wRVSE3R3HHtEnQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:08:a5:a8:21:0b:c6:26:21:26:0f:ae:e9:a3:2f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Nov 22 18:00:50 2024 GMT
Not After : Nov 23 18:00:50 2024 GMT
Subject: CN=975c25e3e9ee24d7ccd50b047df9efbc3af5cc17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:89:f1:59:f6:ba:a9:3f:d0:38:a6:b2:cd:e0:
5e:b8:04:b2:ee:1a:f5:bf:81:db:2c:c2:a5:da:81:
32:d6:f6:d9:24:30:05:72:68:2f:b6:fb:8d:6b:4f:
85:a9:94:36:90:54:f7:2a:3d:70:00:9d:83:87:c3:
6c:ce:2c:bb:29:18:69:c7:14:52:0e:fd:8d:8e:e5:
66:17:fb:83:99:9d:4c:3d:8a:10:ed:65:ab:15:d9:
e3:f4:b8:a8:ec:35:43:42:95:64:de:96:05:95:35:
03:3c:dc:7e:b7:f6:8c:da:4f:5d:cf:37:d5:d2:1f:
bf:b0:e4:c6:13:c6:86:a3:1b:7a:d9:c4:0a:36:f8:
52:3f:02:dd:55:25:19:9f:f8:a2:54:54:a9:b9:a7:
48:0d:0c:18:0e:43:21:55:6b:c6:af:78:d7:30:b2:
f2:66:19:f2:a0:c4:b3:9f:79:56:7d:8c:92:65:dc:
be:80:f6:6e:a2:4a:a6:0e:cb:67:e6:85:8f:9b:b5:
6d:23:82:00:89:8f:75:da:49:a0:63:cb:be:b3:db:
33:78:2d:a5:55:cd:ae:3f:85:60:c9:0e:12:48:89:
23:31:76:f3:df:52:b5:9c:f7:19:93:b4:1d:35:c0:
68:89:4e:bb:6d:58:88:f7:cd:0f:b7:d3:78:96:b4:
26:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5C:25:E3:E9:EE:24:D7:CC:D5:0B:04:7D:F9:EF:BC:3A:F5:CC:17
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:ed:02:91:25:ea:3d:3c:2b:36:94:07:5a:0e:c4:dd:13:35:
76:c9:55:e7:2f:14:60:76:dd:0d:04:52:2e:01:6b:43:a8:23:
83:95:65:91:8f:1f:7f:eb:94:04:d7:66:95:33:15:75:8e:31:
f7:ab:11:1c:0a:03:a4:53:2a:94:fd:4f:71:37:e4:d9:6c:95:
2d:87:03:70:56:49:2a:c9:74:81:f9:87:bf:9a:d1:1c:ac:2f:
a4:4d:4d:2e:db:70:6c:13:42:22:37:fe:98:9c:4a:b0:da:20:
19:4d:55:e3:f3:1e:22:25:24:46:78:9e:b6:c3:0c:05:f6:1c:
de:40:c1:38:ab:9e:b8:61:61:f3:29:57:4c:ad:3e:e0:7e:2c:
db:84:98:ba:e5:3d:f2:ff:f9:6b:42:ac:31:ab:ed:f8:cb:b6:
8c:06:c7:52:0f:43:2a:e1:67:0b:2f:ae:b8:8a:3a:9b:00:d5:
60:5b:b8:3c:20:9d:27:6c:9d:6d:e7:4a:29:ea:4a:52:45:26:
83:88:47:61:c6:c4:c5:cc:52:33:b3:47:72:34:25:03:ed:f1:
11:fc:22:aa:f4:ae:23:24:75:9b:13:7e:c1:07:72:6e:4f:26:
56:7c:fc:42:1d:c9:1d:3e:96:76:73:ca:06:8b:fa:27:db:b6:
66:af:74:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:09:26 2024 by rpki-client on console-ams.rpki-client.org