Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
File: YjqxggzkjFedpAxm2FJl8cLPy04.mft (raw, json)
Hash identifier: ilkEBPWz6v2mqqpA740jpBD6/BXRgfkTyzqUZ4QsGsc=
Subject key identifier: 1B:F5:02:C7:83:CB:8E:E2:36:44:8E:5B:8D:31:AC:25:D7:99:62:B2
Authority key identifier: 62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
Certificate issuer: /CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Certificate serial: 019511A2C7F2507083B9CCE02F4A2B438B57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
Manifest number: 04DB
Signing time: Mon 17 Feb 2025 02:00:35 +0000
Manifest this update: Mon 17 Feb 2025 02:00:35 +0000
Manifest next update: Tue 18 Feb 2025 02:00:35 +0000
Files and hashes: 1: YjqxggzkjFedpAxm2FJl8cLPy04.crl (hash: URNj5inMtV0tt8trWa4iiOKDRtFob7CkEP5Ge4dFMzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:c7:f2:50:70:83:b9:cc:e0:2f:4a:2b:43:8b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Validity
Not Before: Feb 17 02:00:35 2025 GMT
Not After : Feb 18 02:00:35 2025 GMT
Subject: CN=1bf502c783cb8ee236448e5b8d31ac25d79962b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:04:ac:3b:a0:0e:d3:62:9b:d9:48:04:5f:33:
32:88:4d:0e:a6:de:90:71:52:55:d9:13:66:fb:f6:
f9:a4:f4:4d:36:45:eb:f2:9e:d4:21:f4:b9:e5:7f:
ef:e9:5c:f1:7d:42:74:9b:ff:6b:84:8e:da:bd:e8:
fe:72:dd:59:f5:1d:12:ed:41:70:06:ed:0e:f3:d1:
ea:66:b9:09:ca:6c:8e:64:73:8f:16:95:4d:ff:1c:
27:50:ba:f5:2c:b7:53:51:f6:fc:a9:7a:ea:fc:b4:
6e:7a:5c:cc:98:5e:61:3f:47:3e:9b:bf:d8:77:c8:
8c:e0:d4:f9:7e:78:2e:4a:5a:67:25:b2:a4:f7:69:
ef:c0:a5:07:b8:c4:c3:e1:8d:31:3e:56:32:2b:6b:
69:1f:36:0a:5c:a1:69:6f:86:db:b5:52:63:4a:e1:
86:39:a2:4e:24:8c:c2:10:c3:22:b4:2d:40:7e:26:
18:2e:60:3e:1a:02:5d:41:c1:23:87:dc:32:f9:b0:
ba:5e:ed:bf:11:31:c2:8c:b0:46:4f:2d:68:0d:36:
87:e2:ee:a7:f1:8e:c5:e5:2b:cd:52:b4:02:bf:8b:
e7:9f:51:56:98:36:5c:1b:9f:9c:3b:4a:56:54:1d:
0c:81:1b:18:e8:df:47:c2:8f:58:b2:98:f1:6c:82:
d3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F5:02:C7:83:CB:8E:E2:36:44:8E:5B:8D:31:AC:25:D7:99:62:B2
X509v3 Authority Key Identifier:
keyid:62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:4c:ea:fd:85:2c:fe:8d:35:c2:bb:3f:5e:95:aa:22:fe:84:
a4:4e:1e:75:f2:fe:f6:0c:73:fb:59:12:5f:dd:e0:8f:f9:b0:
b0:65:df:a2:b3:90:ec:ef:f4:45:c3:dd:5c:18:09:43:ac:e8:
92:de:98:80:ec:ea:8a:c2:f6:e7:9c:67:c9:da:4d:b2:a9:69:
d1:c2:56:84:a1:70:8a:50:28:a8:98:0c:9c:e0:85:5f:67:b4:
46:ff:38:a3:19:df:2d:b6:4c:4f:f0:b0:9b:dd:c3:ee:6d:c2:
ec:b7:55:8e:40:a0:5b:8b:14:84:3b:8a:ef:23:06:f2:01:ea:
6b:99:88:22:2a:c4:b5:50:68:2b:de:01:9e:49:e4:60:f6:17:
ae:38:90:5b:68:49:33:e9:95:ea:49:26:27:51:0d:fd:24:9f:
0f:2a:c2:d0:88:7e:b6:19:2e:db:9d:25:b9:af:2c:b9:10:a1:
08:75:1b:41:a6:10:0e:e7:61:a6:8d:d4:35:e9:ef:27:65:3a:
3f:4f:6e:57:8c:b3:bd:dd:21:13:63:40:37:2c:bf:8b:fb:ad:
b7:1b:d3:8a:75:3c:3f:49:01:f7:c5:77:ad:f6:79:93:4a:79:
ac:55:c2:38:9f:e1:5b:b0:3d:b2:a8:b7:55:0d:5b:29:66:8e:
da:e4:38:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:11 2025 by rpki-client