Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
File: YKVAzkUEVjReyOCY709TY010vx8.mft (raw, json)
Hash identifier: gzid7mUfjq+y5ZNN9sDOodxuo3b2KwQe9U9MHRhhbSo=
Subject key identifier: D6:77:EF:14:B2:36:63:7F:ED:36:56:FA:DB:E4:22:2A:A0:D7:EE:39
Authority key identifier: 60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
Certificate issuer: /CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Certificate serial: 019352E2BD4B62CF63588502E5AD858C56AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
Manifest number: 01CF
Signing time: Fri 22 Nov 2024 08:00:11 +0000
Manifest this update: Fri 22 Nov 2024 08:00:11 +0000
Manifest next update: Sat 23 Nov 2024 08:00:11 +0000
Files and hashes: 1: 17A0a9iplp4yCXjLKhLdUG2sykY.roa (hash: nm2ySevsZTpUujNyDHqEmCzChwmoeRg+UKtjLbLCFpI=)
2: HQLei49XIEcnkHVLltCY1g1Upe0.roa (hash: oeofXFKVHDYQSlgo5lqOeXbkPkOb+JFM+0mrjQptjwU=)
3: J_kIXPt_8luDVB5wTY2JaMMdfZg.roa (hash: 9hvBdVByrAvXukddCZ0U3ffRj2s+7OJzJIDfNVs/kMY=)
4: YKVAzkUEVjReyOCY709TY010vx8.crl (hash: cXp4CW3PRSbV+F0eGTPRSlpwWBeFV7NpbmO9pQVAUhY=)
5: kbkRllkr_MFbZ5hNynspGe8m15g.roa (hash: g43Ocw3JOcahnePP14dseV97RyZ11pdaVBDa2LtZRvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:e2:bd:4b:62:cf:63:58:85:02:e5:ad:85:8c:56:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Validity
Not Before: Nov 22 08:00:11 2024 GMT
Not After : Nov 23 08:00:11 2024 GMT
Subject: CN=d677ef14b236637fed3656fadbe4222aa0d7ee39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b5:66:7b:e6:20:37:05:2c:84:5c:99:6c:4f:
76:ff:a1:2d:84:ad:63:13:32:d1:db:18:05:c4:1d:
2a:33:25:af:15:d3:a8:a1:ce:00:a8:41:e0:40:63:
e7:bd:4a:50:8e:80:fc:3a:ed:e9:35:fa:59:9e:7a:
93:0c:c0:b5:36:01:62:4c:db:a3:02:a8:7f:40:17:
e9:06:c6:62:e6:f6:fd:7a:8f:3a:27:7c:b9:4d:58:
dc:31:d8:cc:d2:7a:ce:50:9f:a8:d6:7e:3f:ad:91:
f5:e8:17:e4:3a:e4:08:22:a0:e9:57:63:fd:d3:0b:
33:f5:2e:bb:f4:5e:21:46:9b:cd:37:ff:23:fe:f0:
8d:2d:65:07:34:e1:94:59:59:9e:99:31:d7:99:71:
61:3d:97:00:be:b8:2d:69:9a:0b:a0:29:e9:38:4a:
16:33:2f:16:c6:cb:74:f0:85:22:16:35:79:1c:d6:
40:b6:fb:e0:bd:23:5e:35:f0:db:a8:46:c3:16:69:
ec:29:c8:13:75:c9:df:a2:93:c6:08:be:90:df:14:
cf:50:63:fe:4c:8b:17:7a:76:49:7c:68:3a:4b:d7:
e0:51:9e:b0:b7:ef:de:b3:4b:8d:c2:e0:d5:4d:d5:
8b:8d:d8:6d:2f:1d:cd:17:03:d9:c4:50:45:f3:ab:
02:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:77:EF:14:B2:36:63:7F:ED:36:56:FA:DB:E4:22:2A:A0:D7:EE:39
X509v3 Authority Key Identifier:
keyid:60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:d4:68:5f:47:cd:83:a0:14:ea:87:e7:38:3b:98:aa:6f:79:
c9:d4:7a:ce:3e:29:98:24:57:d7:d1:99:2d:db:0e:b7:2e:0d:
7a:b2:69:4b:bf:b9:37:85:4f:23:1e:79:f2:ab:77:0c:6b:f8:
e0:14:1e:1e:ad:58:4c:ca:dd:6f:1d:85:d2:f1:a0:65:30:78:
c6:e8:dc:62:37:70:79:00:f8:f2:a4:0a:ed:4c:22:f1:86:41:
fb:a3:e8:6f:fd:82:34:72:f6:cc:08:ec:8a:4c:af:85:83:a6:
37:64:da:d4:60:37:94:c8:31:ce:a2:f3:08:ed:97:27:c4:a2:
42:a8:5e:b8:3e:ca:51:9b:52:bd:01:86:3f:b9:53:2d:94:0f:
d5:2d:34:cf:ea:14:88:c7:21:9c:76:79:2b:4e:ec:a4:0a:d7:
37:c6:56:bf:ba:80:41:f1:a0:d8:e7:df:ec:e6:d0:16:2d:78:
87:2c:62:46:37:97:c4:01:6f:fd:ff:b7:38:8c:50:2b:0d:31:
bb:0a:ef:09:eb:1e:bc:cd:4d:63:93:61:8d:0e:f3:3d:e6:7c:
e9:14:91:5f:45:1e:25:33:de:e9:e1:eb:19:b6:dd:43:77:c7:
58:c6:35:83:61:21:e1:59:10:5e:07:b7:92:ad:84:6b:fa:a9:
8e:9c:b8:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:56:06 2024 by rpki-client on console-ams.rpki-client.org