Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: +RbreuXMfxSfFFN/CAGBsuuP6+bQ0IDp9cV68QUpQ1c=
Subject key identifier: DE:5A:CD:9B:1E:9B:8C:EE:FC:90:E2:01:6B:88:99:F7:7F:9B:D8:CF
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 0195116C394FB5CE4D03BCB4BB43CF0B67E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 0689
Signing time: Mon 17 Feb 2025 01:01:00 +0000
Manifest this update: Mon 17 Feb 2025 01:01:00 +0000
Manifest next update: Tue 18 Feb 2025 01:01:00 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: dnksnRwJ8Yll/P07fHffPHSkhL+9AmNcB9K7RudRuLk=)
2: l0K6PAqN9Gt27j_CVXz67WejrWo.roa (hash: 791A1HYehBk0Xv4a4YcluI/Rrf5zyMUHKzRR42V6uDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6c:39:4f:b5:ce:4d:03:bc:b4:bb:43:cf:0b:67:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Feb 17 01:01:00 2025 GMT
Not After : Feb 18 01:01:00 2025 GMT
Subject: CN=de5acd9b1e9b8ceefc90e2016b8899f77f9bd8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:43:51:2e:57:c3:c7:78:49:0d:fe:81:2f:dc:
da:7c:22:4d:0a:7e:08:8e:38:8d:f3:47:6f:7c:66:
3b:a2:53:5c:ec:0b:35:69:5d:e0:40:85:91:86:04:
58:ee:70:ac:e1:64:4f:38:7b:db:d4:f1:b7:a8:cd:
b6:49:61:0a:3b:22:fc:98:b4:45:35:05:12:5e:59:
52:29:73:64:6a:2f:0f:8b:bb:ec:f9:ca:dd:43:2e:
d7:65:a2:67:41:be:97:4c:c9:07:70:5f:8d:de:e5:
17:b4:c9:19:1b:0d:f6:fa:56:c1:fe:09:3e:82:ff:
6c:30:38:b1:26:66:94:da:cf:d4:a4:7c:8a:91:6f:
82:ce:4f:64:d8:2b:d8:c0:28:83:53:56:02:41:00:
09:a6:fc:73:c1:15:01:ab:57:51:85:82:28:2a:0f:
13:5c:63:c5:e8:3f:02:cc:d4:97:96:62:11:9e:45:
51:52:63:b8:1e:2d:94:c2:ae:2f:1e:d3:85:9e:98:
92:d1:60:8f:80:ae:6a:10:c3:5b:39:62:fb:7d:1f:
f1:a3:ba:44:b3:4f:cd:a0:e2:84:62:6d:6b:aa:3d:
39:6e:e9:f2:da:45:f5:4a:bd:6c:9c:96:f9:9c:4a:
7e:eb:39:d6:65:95:42:4d:42:f1:16:47:2f:38:1d:
00:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:5A:CD:9B:1E:9B:8C:EE:FC:90:E2:01:6B:88:99:F7:7F:9B:D8:CF
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:2b:a4:13:fc:d1:26:f7:cb:45:fe:12:c0:ef:a0:5e:16:11:
55:52:71:f1:33:ce:20:44:a4:9a:62:d8:39:6a:69:41:98:9f:
af:ac:70:e0:13:e7:51:6e:92:47:90:ee:dd:e9:9d:9b:c9:0e:
e2:98:92:b3:8f:df:65:5f:4d:45:27:6e:2f:50:ff:9c:39:72:
3e:05:cd:b9:5f:4f:7e:bb:24:ee:bd:66:56:d4:05:8b:d2:29:
86:aa:38:6b:cc:67:f1:b0:9f:ba:62:97:36:a7:64:5d:79:b1:
be:b0:74:29:8a:0c:17:c3:18:ef:99:5f:ba:f5:f6:a9:07:a2:
33:b9:03:9a:2e:54:ac:39:1e:46:7c:4e:79:40:1e:56:d4:d7:
21:da:d2:95:0f:0a:3f:64:0d:ec:81:3f:fa:62:41:8e:60:78:
34:79:e6:87:c5:99:ce:53:c4:e6:db:3a:dc:43:75:c9:0e:55:
d5:b8:ba:62:f3:2d:d5:e9:b8:48:f4:0d:97:97:92:e5:f7:d4:
6f:63:0a:b5:7d:8d:34:49:2e:a3:fe:8e:19:20:8f:6d:77:48:
71:a2:f9:33:51:10:f2:15:95:1e:51:8c:ec:0c:aa:5c:4c:55:
2b:4b:cb:6d:33:0b:0a:95:3c:9d:83:10:f1:28:54:5d:88:ba:
6f:7a:c9:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:58 2025 by rpki-client