Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: bdXz7VxAqjrtZW+IsmKbXK9DzYcejF62DJeT+rwk+6g=
Subject key identifier: F9:65:7C:0D:B8:EA:F6:83:92:68:1F:D4:D2:2B:5C:70:D5:EE:3E:B9
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 0194C42C2B6759C60A6DE7158269764219A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 11AB
Signing time: Sun 02 Feb 2025 01:00:16 +0000
Manifest this update: Sun 02 Feb 2025 01:00:16 +0000
Manifest next update: Mon 03 Feb 2025 01:00:16 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: wpn/MBmTCLq59lELVWp0Hn4pc6o8CEE47RUqq72IVL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:2b:67:59:c6:0a:6d:e7:15:82:69:76:42:19:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Feb 2 01:00:16 2025 GMT
Not After : Feb 3 01:00:16 2025 GMT
Subject: CN=f9657c0db8eaf68392681fd4d22b5c70d5ee3eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1d:d1:86:9b:79:ce:b1:0f:62:7d:6d:0d:52:
4e:30:37:4f:06:32:bc:65:a4:64:ec:33:d6:0a:ff:
f1:e8:39:6d:d0:64:76:30:88:4d:f6:71:1d:77:97:
4c:13:64:07:13:a4:cf:7d:16:8a:05:15:50:f9:b0:
55:d4:e1:d8:0b:f5:10:8c:69:3c:ec:5d:56:d2:e9:
61:bf:c7:0a:ae:a7:3d:04:3a:af:1e:15:94:21:ad:
d3:55:fc:2e:9f:cf:c0:80:23:7c:37:cf:6e:cc:4d:
ae:bf:43:8f:56:fd:10:5c:86:47:e5:b9:cd:54:90:
55:9c:01:2d:b1:12:fe:c8:28:1e:38:a6:e7:8f:45:
ed:65:1e:d5:4e:c6:4b:b0:cb:3f:17:89:8a:d9:13:
fa:7a:a8:bb:a9:2f:cb:0e:d8:08:5a:e5:76:2b:18:
2a:a0:c4:9d:dc:a5:15:69:74:57:40:c9:be:73:e9:
b0:90:67:bb:1d:29:b7:c3:73:1e:c9:41:93:e8:f3:
ba:48:37:bc:8a:30:b8:22:8d:99:f3:33:71:57:d4:
c8:88:d2:6d:9e:c5:d5:35:34:e2:f3:6d:6f:a2:da:
75:37:6d:06:e2:2e:13:ea:dc:fc:f5:63:d2:a3:4e:
e9:45:c2:5e:2f:f3:c2:86:ed:a0:41:de:f7:47:cc:
f2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:65:7C:0D:B8:EA:F6:83:92:68:1F:D4:D2:2B:5C:70:D5:EE:3E:B9
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:5e:a6:a0:19:0f:37:d8:b3:1e:af:b6:10:85:64:23:1f:13:
64:4c:e9:90:b4:a5:3e:41:29:8a:83:1c:97:09:78:39:4d:ec:
bc:31:30:b5:59:c9:9e:b6:ca:94:a8:96:09:09:de:c5:6b:27:
91:0d:ce:f3:51:58:d7:09:06:db:a8:b9:46:d0:e0:4a:ac:91:
58:4b:7e:c6:e0:62:2a:f9:e8:fe:bb:a8:c5:22:bd:73:89:54:
6e:20:16:2e:73:ac:ed:ed:d7:5b:5e:46:07:90:a2:41:f3:ee:
c9:10:94:ad:3d:fe:29:61:96:15:aa:3b:dd:12:e0:b5:42:87:
d2:0d:2f:89:1a:f9:35:c2:9a:e1:87:ca:f1:34:3e:9e:1a:8b:
b8:82:04:1c:7b:58:7b:35:ba:ba:8c:fa:ff:ed:e8:53:64:09:
dc:79:fd:45:47:ea:a4:4f:f8:6c:e2:8c:03:51:7d:4f:f2:81:
e2:df:d9:e9:40:16:c3:b1:1e:f9:1d:56:fa:40:d3:69:1e:65:
d2:78:cb:43:5f:f1:f5:f6:d5:a9:94:76:8f:b7:8c:1e:b7:e7:
6e:49:cc:bb:da:c9:0a:0c:7d:bd:fd:55:4f:a6:cf:6a:b8:65:
a4:a5:06:43:76:96:b5:67:ee:2c:c4:f6:e2:3d:2b:ef:2a:d6:
75:06:26:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:47:32 2025 by rpki-client