Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: mMIVCqfCuJdNRhn5n0SxAbjV/VpN9Wa3n1khKntcZzY=
Subject key identifier: BE:13:9C:CA:FF:15:97:C8:AB:FE:30:47:37:35:DC:D4:7C:71:5F:B4
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 0195124764B177F9F8AA731E0F42055315A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 0307
Signing time: Mon 17 Feb 2025 05:00:23 +0000
Manifest this update: Mon 17 Feb 2025 05:00:23 +0000
Manifest next update: Tue 18 Feb 2025 05:00:23 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: d6YY1PNaN/p2V1hSnic3wWetjmzYIXAk3m5drLd4NTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:64:b1:77:f9:f8:aa:73:1e:0f:42:05:53:15:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Feb 17 05:00:23 2025 GMT
Not After : Feb 18 05:00:23 2025 GMT
Subject: CN=be139ccaff1597c8abfe30473735dcd47c715fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d8:ec:97:f6:f0:1f:0e:90:5d:85:12:5f:06:
23:e8:43:d1:b3:78:56:4d:ec:86:61:9c:47:18:05:
47:26:d4:a1:5a:da:3a:60:51:2d:bc:1f:f2:cd:ff:
af:1d:ca:0b:5f:2a:2c:8d:d1:62:c9:0c:f3:cc:58:
a0:70:32:f3:ab:5a:8f:94:08:3c:84:58:9b:89:59:
88:ec:cf:ef:1f:8c:5c:b0:50:57:9a:8a:6f:3c:79:
86:59:59:f8:51:01:a7:21:13:ec:ac:2e:a7:bf:b8:
0b:09:c0:53:a3:08:58:84:d4:77:b4:eb:c3:0e:17:
8a:7f:e7:c2:c0:86:4e:03:e9:dd:55:34:96:82:02:
7a:36:ca:74:9a:0c:a3:2e:e4:2b:6d:0d:17:e4:2c:
f1:aa:e2:7f:d5:e6:fb:8d:49:5c:75:9f:39:5e:13:
99:2c:fe:c6:4d:33:4a:46:15:7e:83:4b:68:00:13:
4b:5d:cb:d1:7f:05:79:10:02:9c:72:93:e3:e7:3b:
d8:28:9b:a5:50:73:1b:a9:3b:9c:59:6d:68:da:32:
55:1d:fe:1f:d2:67:6a:45:10:ea:14:cc:5c:a6:7c:
f3:65:56:ab:60:0f:79:e1:cc:2a:a5:f9:fe:4c:c6:
90:46:5d:81:52:3b:17:72:b2:88:56:11:d7:3b:4d:
ab:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:13:9C:CA:FF:15:97:C8:AB:FE:30:47:37:35:DC:D4:7C:71:5F:B4
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:7e:d3:4b:c2:93:5e:95:74:28:f4:2c:da:44:be:07:ad:7b:
ef:53:37:6b:c3:75:47:6d:ac:de:56:4b:6e:2f:97:79:a8:30:
fe:c0:8e:ae:72:46:e5:f8:47:8a:e4:c0:bd:71:22:f6:ac:04:
8f:3d:92:a2:5b:e8:40:17:bc:3c:79:40:8d:0d:90:57:54:27:
64:77:05:e1:ea:0a:2f:9d:72:93:f6:8c:d0:eb:04:6c:ed:5c:
31:61:69:bf:48:72:5a:5e:ce:0a:ad:2c:bd:b2:70:de:22:ec:
87:04:3a:9a:05:2a:e8:55:2e:3e:f7:c4:f5:89:af:fd:18:0b:
aa:15:46:3e:80:6f:10:2c:2b:12:3b:35:16:c3:4b:84:86:14:
2a:53:33:33:64:ae:88:d7:0a:eb:5f:5c:c2:43:bc:fa:f2:0f:
0a:56:33:1d:f7:8a:6a:41:63:98:2b:c8:49:c7:d9:c3:96:d8:
a6:08:3d:40:0d:aa:73:e3:12:68:64:06:d2:f2:20:52:1b:7e:
5c:07:f9:0c:05:ea:00:9b:2e:bc:88:fd:20:86:4a:a9:eb:8d:
a1:8f:c8:c5:fe:0c:75:86:55:b8:bc:9e:60:71:35:c5:b5:8f:
02:70:fc:b7:82:4c:d8:82:ae:17:62:c9:e4:4c:47:fe:06:8f:
f5:5c:9a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:05 2025 by rpki-client