Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
File: RYemiKiamJlJQWqBnMSoDepFTJ0.mft (raw, json)
Hash identifier: 2Matdaq/VKPPAI4Y2PpIK9IY4C4gK21vvfyx7s1+OBo=
Subject key identifier: 1B:80:EB:08:27:85:38:AA:8A:4C:87:E1:BB:02:B6:3D:45:C3:DD:AB
Authority key identifier: 45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D
Certificate issuer: /CN=4587a688a89a989949416a819cc4a80dea454c9d
Certificate serial: 019511353F90BEAE30FC993A0FA6195B4DDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
Manifest number: 0110
Signing time: Mon 17 Feb 2025 00:00:57 +0000
Manifest this update: Mon 17 Feb 2025 00:00:57 +0000
Manifest next update: Tue 18 Feb 2025 00:00:57 +0000
Files and hashes: 1: RYemiKiamJlJQWqBnMSoDepFTJ0.crl (hash: Q2LIme2KgQarI8w8mCuOGHIS/TsH6ZkBYwHWqWVq0Zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:3f:90:be:ae:30:fc:99:3a:0f:a6:19:5b:4d:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4587a688a89a989949416a819cc4a80dea454c9d
Validity
Not Before: Feb 17 00:00:57 2025 GMT
Not After : Feb 18 00:00:57 2025 GMT
Subject: CN=1b80eb08278538aa8a4c87e1bb02b63d45c3ddab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3a:9c:1d:28:24:06:76:6d:8b:5d:36:c3:3c:
12:13:16:1b:08:42:ca:e4:b2:96:0c:03:8a:d6:cf:
f2:72:36:44:ba:e0:e6:65:3e:54:f8:ea:17:ed:fa:
d8:38:9e:80:39:0f:b3:1e:8c:b6:2d:b8:ef:86:4e:
0e:99:02:bf:f6:87:38:14:bd:fc:2e:27:7b:3e:0b:
6f:92:cb:7a:69:7d:36:a4:13:55:27:77:3d:72:12:
48:ba:63:ad:70:ce:48:95:ac:df:50:3a:37:d3:7a:
25:36:5d:d5:c2:81:9e:aa:37:a2:47:e2:a8:c5:13:
79:4b:91:f2:e2:b1:aa:29:6c:03:08:1e:b6:05:14:
4c:6c:0b:36:28:af:7d:1b:ea:0f:cd:72:1c:17:91:
a4:e0:cd:ff:8a:7a:6d:5a:7f:d9:51:f6:f1:fd:69:
da:9c:72:17:4e:5d:ff:ac:5b:44:84:5b:9c:fa:88:
c4:6a:5d:78:44:87:57:af:8e:45:ba:fe:a4:f2:90:
92:c4:62:23:cb:fe:36:13:5c:a3:6b:0e:27:fa:10:
c9:4c:c3:60:29:18:0f:f7:14:3b:b3:03:56:6c:8d:
ed:24:0f:58:7b:98:59:7d:ea:f1:d5:9f:c5:a9:4c:
65:b6:15:53:2c:52:a9:17:17:5b:b1:29:86:2b:a5:
1d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:80:EB:08:27:85:38:AA:8A:4C:87:E1:BB:02:B6:3D:45:C3:DD:AB
X509v3 Authority Key Identifier:
keyid:45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:a4:ed:aa:15:1e:85:31:8e:11:0e:bb:46:49:3f:ab:0e:88:
37:c1:89:3f:f9:fa:4d:78:d1:a1:97:66:1e:38:da:7c:cc:6b:
6c:34:59:ff:5b:d8:09:b2:c5:ad:dc:d0:96:30:9a:60:d7:1f:
d1:2e:bb:83:a0:83:a2:c1:91:aa:68:35:c8:f5:25:11:30:09:
a3:86:de:5b:a5:29:82:d6:a6:8b:ba:d9:db:c8:4f:7b:78:6d:
e9:d7:1e:23:5e:e6:7d:d6:d3:54:cd:dc:08:97:65:30:ad:08:
15:df:5d:2f:f1:95:4f:46:40:f4:f8:83:7f:6e:72:28:23:e7:
e7:08:20:f7:3d:5c:d7:1d:17:d6:77:57:ef:33:f3:06:20:e4:
af:74:db:d9:49:95:8f:82:32:e5:d0:8b:1c:20:26:e7:d4:d4:
e0:f9:4c:9d:2a:92:2b:68:d3:d7:7f:83:55:e2:6a:45:07:ce:
21:3a:c0:e7:f9:cd:73:46:f0:59:95:e6:a3:bc:eb:5a:97:16:
d9:3d:42:49:44:b5:8f:bd:5e:e0:d4:b7:3d:da:43:da:60:cb:
51:eb:b3:3b:c8:00:5a:a4:0a:8a:64:22:c5:79:3e:3e:01:f9:
d7:4d:ff:cc:77:3f:f5:be:5f:98:58:b5:cc:6b:84:76:42:c5:
e4:80:4f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:14 2025 by rpki-client