Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
File: y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft (raw, json)
Hash identifier: Hqxbfo5uphMW4q/zB8boML7KDTWj3UOXtrGN0K+hwgY=
Subject key identifier: F3:5D:26:67:65:B4:09:5C:B2:EC:44:71:8A:A4:1D:55:D0:E4:FB:E8
Authority key identifier: CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
Certificate issuer: /CN=cb608201f88aeae9486b9fa87189d796c54027dd
Certificate serial: 019511D9A1CFFC54F4F7C7937CFC5EB37B72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
Manifest number: 04DD
Signing time: Mon 17 Feb 2025 03:00:30 +0000
Manifest this update: Mon 17 Feb 2025 03:00:30 +0000
Manifest next update: Tue 18 Feb 2025 03:00:30 +0000
Files and hashes: 1: TuQDQ8nJBbYLub1mzr6Exv_MEOE.roa (hash: mNd0eAJJzc4YIh0tYa+bIHu2wbr2Q6C9CMzRK0s5ooI=)
2: y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl (hash: EOmoNpjXHt/RpC0XAx8g49Y2tp3TWGQZU+TKaFdARgU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:a1:cf:fc:54:f4:f7:c7:93:7c:fc:5e:b3:7b:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb608201f88aeae9486b9fa87189d796c54027dd
Validity
Not Before: Feb 17 03:00:30 2025 GMT
Not After : Feb 18 03:00:30 2025 GMT
Subject: CN=f35d266765b4095cb2ec44718aa41d55d0e4fbe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:62:14:1c:6b:84:b1:97:d6:54:af:cc:ae:05:
4d:64:53:4c:ae:ed:d5:25:ee:6e:30:a7:3c:a7:80:
75:f9:2d:d9:b9:87:b9:00:f8:ea:d9:d8:5a:c5:d4:
67:24:3c:b5:b4:d1:48:2e:2d:e8:f4:3d:35:64:90:
78:af:9d:95:46:2a:08:06:28:92:53:68:7f:4b:e4:
3b:39:27:5c:a7:93:cd:3b:3b:3a:f1:99:a0:62:5e:
4e:88:92:fe:bd:e4:27:9a:64:49:8d:4f:50:ae:3e:
a9:41:85:90:4f:97:7e:07:60:cf:22:b6:31:ad:73:
d7:26:36:e0:86:66:08:3b:89:e5:85:3a:14:e0:68:
63:1d:84:84:81:da:8b:4d:9c:c9:6c:74:12:80:20:
8f:2a:c3:f8:51:52:98:4a:2d:c7:64:e3:95:c5:9a:
73:97:c9:26:47:0e:89:89:33:1c:d8:13:23:f1:07:
95:aa:23:81:dc:91:cb:ff:0c:f6:c0:12:6d:51:14:
ce:1c:a0:26:e8:7e:38:95:94:ba:51:f3:25:43:7c:
e6:91:af:f1:b0:0f:3e:55:86:92:61:2d:9f:6c:5e:
dc:6e:fc:96:1b:c8:98:e6:88:be:9c:e4:f2:b1:38:
ff:bd:34:cb:4a:b8:47:00:e8:95:c7:c0:16:08:24:
10:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5D:26:67:65:B4:09:5C:B2:EC:44:71:8A:A4:1D:55:D0:E4:FB:E8
X509v3 Authority Key Identifier:
keyid:CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:6c:49:f5:a4:2b:59:2e:48:82:52:88:1b:06:ff:2f:d0:30:
fb:8a:b2:cf:b2:ef:b8:92:cc:6c:db:e4:14:10:76:84:d7:e5:
7f:52:0f:a9:f9:20:c7:48:03:96:d0:da:76:42:97:33:eb:fe:
75:6e:11:64:04:1f:15:8c:27:36:a0:b7:63:8a:d9:1d:20:b6:
d9:44:bd:76:f0:ea:9d:ef:8c:c2:1c:16:53:7f:5a:57:39:8c:
3e:41:0e:72:71:7f:0d:f4:81:bc:1b:c0:53:11:c9:cc:e1:2a:
a5:00:56:3b:4d:55:f7:fb:d4:6c:63:16:ab:28:40:7d:dd:32:
cd:b7:60:a4:c9:17:88:cc:a6:2a:01:b5:f6:6d:1c:15:ca:59:
f5:6a:3a:0d:5f:47:0e:24:bf:62:65:fb:f7:51:4b:2f:4b:24:
83:ca:28:75:d3:83:2b:fd:52:5b:3d:55:55:8c:0f:81:35:15:
fa:45:4b:bf:0b:f5:e9:df:bb:80:75:a6:9f:0c:c1:fa:94:8f:
f2:c8:b1:7a:98:e6:f9:18:ac:89:5b:1f:4f:bc:24:f9:97:ec:
f8:1c:bf:fc:0e:a4:53:47:08:4d:32:51:fb:bf:c0:eb:14:9d:
9a:8e:ba:38:10:bc:60:eb:8e:f2:74:c8:3c:ae:f4:c6:a9:eb:
82:75:9c:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:48 2025 by rpki-client