Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json)
Hash identifier: o1EDF+6ewU0tZblDWQ+AXaUy0Nu63LMtQ5hPYsqL5t8=
Subject key identifier: 96:97:0A:F6:C5:E7:7F:61:8D:2F:68:C1:EE:FD:22:DF:69:CD:63:86
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 018F87B6A51B6689A1C2A013E844210AF8F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
Manifest number: 1177
Signing time: Fri 17 May 2024 18:00:45 +0000
Manifest this update: Fri 17 May 2024 18:00:45 +0000
Manifest next update: Sat 18 May 2024 18:00:45 +0000
Files and hashes: 1: PNvtjAWcYGneyTNmWk3dJIikmRI.roa (hash: PQ1A15EMRMXXjtaY/IFN7Mc5yBR/fpSi6w/MHp8oydA=)
2: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: yvSsstcqA/1sPGQmbvUsbpvEq6aSknLFolM0qBrykLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:b6:a5:1b:66:89:a1:c2:a0:13:e8:44:21:0a:f8:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: May 17 18:00:45 2024 GMT
Not After : May 18 18:00:45 2024 GMT
Subject: CN=96970af6c5e77f618d2f68c1eefd22df69cd6386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:88:1a:d3:c5:a1:73:19:37:e8:0f:14:3b:34:
82:75:32:70:55:47:48:0e:21:50:e1:b9:a9:ab:c6:
a9:ef:33:01:42:95:ba:e2:62:b5:16:64:e3:33:65:
9f:ee:0f:08:5d:f5:21:4b:50:e7:82:92:ac:0c:fe:
e1:a9:d5:e2:e3:99:95:4c:f7:a2:cc:6a:0f:9f:bf:
95:d5:20:34:be:02:fc:1f:22:90:c9:81:63:b2:7d:
0c:b1:ea:73:35:62:70:53:f9:73:66:8c:a7:37:32:
2d:63:a5:bc:43:73:62:89:89:91:82:bc:d3:fc:c4:
81:3c:6d:d9:c0:0e:f8:94:30:65:11:e1:9d:fb:d6:
80:f0:ea:65:c4:1d:7e:38:87:28:f9:cb:01:0f:40:
1e:b7:1e:69:7c:8f:97:45:43:47:72:8f:a6:14:c7:
2d:6b:ac:0f:e6:13:69:bf:e9:8c:28:4b:bc:e8:e1:
1b:d1:c8:0a:0c:a9:06:5f:c3:c9:8a:51:8d:29:04:
d4:55:6c:43:1a:e1:8c:75:19:e3:c5:8d:d6:b4:c9:
b6:16:a6:94:e0:65:84:c1:44:49:d8:ca:f3:1c:68:
60:bb:f4:2a:f5:23:c5:b7:90:53:b3:58:c6:fb:67:
91:86:20:30:b6:71:12:48:c7:c5:23:5a:b3:86:14:
cf:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:97:0A:F6:C5:E7:7F:61:8D:2F:68:C1:EE:FD:22:DF:69:CD:63:86
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:a8:20:b8:93:ad:b9:29:6c:6d:37:bf:ca:85:40:a7:42:f7:
88:22:c5:8f:9c:f3:39:33:07:10:0e:7d:1c:49:e5:07:be:e6:
5b:29:65:b0:b1:02:74:31:2b:72:12:06:e7:94:6a:47:56:a3:
84:e9:c0:89:d7:c5:85:51:10:31:50:de:fc:2e:d6:a9:7a:d1:
92:4f:2b:05:b9:8b:30:99:e8:a3:94:03:a4:0d:fc:f0:f5:ae:
1e:cd:1a:39:43:d4:bd:1f:4e:6e:35:56:ae:53:0a:7f:b4:98:
88:f8:ce:b0:d7:af:cd:f7:41:d6:3d:f9:e5:4a:10:2e:43:38:
49:2a:87:d0:f0:59:82:a7:6b:b8:87:a1:76:58:0c:d2:79:82:
13:a6:85:95:75:16:dd:17:d7:bb:fd:7e:be:33:3b:5e:3e:f7:
90:2f:b5:43:1b:60:6e:50:d4:d0:5b:31:d5:53:97:c3:b3:5f:
97:db:e2:32:ac:30:7a:ab:d5:45:76:c3:29:7d:89:68:56:81:
a6:bb:af:2e:f8:28:62:53:c8:bd:bd:43:05:c0:87:94:11:1d:
2b:ef:89:20:fd:f8:6b:e7:dc:b5:9f:b5:8f:c7:d0:df:57:b1:
f2:5c:d4:be:00:e4:6a:0f:fe:0f:b9:f9:9c:d8:18:c7:d8:dd:
dc:56:96:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 00:23:41 2024 by rpki-client on console-fra.rpki-client.org