Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
File: YKVAzkUEVjReyOCY709TY010vx8.mft (raw, json)
Hash identifier: 4cOpf8YidhNat1PEKU62JFzT6SUFgj/hS/fQrN56y8U=
Subject key identifier: 4F:7C:03:FF:64:5B:4C:1D:93:EA:B6:05:F0:2B:8F:0B:62:AF:27:34
Authority key identifier: 60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
Certificate issuer: /CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Certificate serial: 0191FB5A3FC711557D4810D6AD5A331AAEB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
Manifest number: 0112
Signing time: Mon 16 Sep 2024 15:01:21 +0000
Manifest this update: Mon 16 Sep 2024 15:01:21 +0000
Manifest next update: Tue 17 Sep 2024 15:01:21 +0000
Files and hashes: 1: YKVAzkUEVjReyOCY709TY010vx8.crl (hash: 4FgUCEJEqnJm4WbVTzjG28yu8/4uvNk+5ojwPpD/igc=)
2: kbkRllkr_MFbZ5hNynspGe8m15g.roa (hash: g43Ocw3JOcahnePP14dseV97RyZ11pdaVBDa2LtZRvg=)
3: lHwdW1LV9n41ENA61d-mwayeW_A.roa (hash: 6cZDK9qQ8Qcb1fl8foVR/pjBou77JNPAIgSqLr5HZCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 14:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:5a:3f:c7:11:55:7d:48:10:d6:ad:5a:33:1a:ae:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Validity
Not Before: Sep 16 15:01:21 2024 GMT
Not After : Sep 17 15:01:21 2024 GMT
Subject: CN=4f7c03ff645b4c1d93eab605f02b8f0b62af2734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:09:50:1c:29:d1:6c:a0:84:74:15:5b:d6:46:
73:7b:c3:b3:52:f3:c3:11:cc:a4:32:31:c8:e4:85:
86:bf:7f:a6:31:c3:3e:68:92:60:9d:c6:82:ba:64:
0c:4f:03:c8:7d:62:e4:db:e8:f5:3a:86:5f:7d:d7:
1e:0d:f5:3c:fc:cc:8d:60:16:12:22:10:1c:95:bb:
f5:1b:77:c7:37:cd:1b:1b:e0:d6:76:50:3e:e6:ed:
a1:ba:7e:db:2e:10:6b:42:9f:94:a8:ab:c1:04:67:
1e:86:ee:82:8e:28:40:36:c2:72:ef:9a:80:f7:0e:
5a:3e:82:55:30:8a:9d:3f:d3:b6:b5:b5:e3:e8:9d:
2d:cb:49:96:2d:36:91:8d:b5:07:c1:1f:56:d4:87:
9a:1a:44:df:95:d3:a2:02:85:ed:2a:db:d9:b2:22:
c8:07:f4:de:b7:69:63:27:e7:75:ee:c0:c0:d1:63:
29:f5:fd:ce:57:c7:1b:fc:92:d3:9d:16:a8:61:ba:
cc:c8:e7:17:72:10:5d:5e:83:40:6b:ee:05:5d:aa:
18:49:02:5f:f1:24:b3:f8:49:9e:b6:b4:9e:6d:90:
7e:3c:17:e7:54:a5:2e:89:5e:75:18:3a:f6:52:f4:
69:4e:2d:c3:78:17:de:c9:a8:fe:db:d2:20:e0:49:
ff:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:7C:03:FF:64:5B:4C:1D:93:EA:B6:05:F0:2B:8F:0B:62:AF:27:34
X509v3 Authority Key Identifier:
keyid:60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:7a:25:a1:40:de:d8:64:c7:73:4c:fe:5b:8a:f5:94:52:c0:
98:78:0d:4f:ca:d4:20:ea:6f:0e:22:11:62:25:a9:91:d8:6f:
40:83:fe:71:69:7c:b1:fe:95:e6:5f:d6:14:bb:56:53:10:fa:
c0:69:1b:ee:bd:e6:ce:fe:59:47:20:89:7e:7a:cd:46:5d:2b:
ec:9b:2e:cc:70:6e:32:fb:3d:ae:12:f9:ac:c8:6a:c6:38:f2:
91:de:ed:d3:d7:0e:4d:f6:39:58:20:43:b4:f9:20:11:a9:c5:
65:f4:8a:c2:c5:55:df:8f:29:64:26:7e:1b:d1:b3:3b:d4:7f:
1c:a9:cc:71:e3:8c:a9:98:9b:a4:63:0e:7e:fa:9e:73:66:1d:
25:57:00:06:d2:86:33:e4:68:c0:5c:da:8e:6b:11:92:09:cf:
eb:86:db:18:17:ad:d8:f7:59:e7:8d:8c:71:15:ba:4d:3d:16:
38:a9:f6:42:0b:fd:a6:c0:a2:4c:c2:a0:79:47:72:d7:19:4c:
a7:ac:0d:22:7a:7b:62:42:13:c4:4b:af:e7:15:5e:02:f6:70:
63:9a:cc:65:bc:43:81:6a:28:b8:49:22:14:4a:93:fb:19:1a:
5c:b1:eb:93:77:71:e8:04:d5:6a:9c:ec:15:da:79:6f:9c:de:
a6:04:31:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 18:24:50 2024 by rpki-client on console-ams.rpki-client.org